Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZlwWrbozSKIbNMdBZouJd8J2_rI.roa
File: ZlwWrbozSKIbNMdBZouJd8J2_rI.roa (raw, json)
Hash identifier: y5qI10jhWaoOlIU+/XFEHi3GQWxPJ6hrGdBIU6UrzAk=
Subject key identifier: 66:5C:16:AD:BA:33:48:A2:1B:34:C7:41:66:8B:89:77:C2:76:FE:B2
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1ACDA501
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZlwWrbozSKIbNMdBZouJd8J2_rI.roa
Signing time: Tue 26 Apr 2022 14:25:57 +0000
ROA not before: Tue 26 Apr 2022 14:25:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47458
IP address blocks: 85.120.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449684737 (0x1acda501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 26 14:25:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=665c16adba3348a21b34c741668b8977c276feb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:46:8d:d2:7f:cb:7d:73:80:4d:ee:f9:bc:f1:
cc:1a:bc:9e:49:e0:a6:ac:d8:f7:26:73:21:db:84:
33:dc:d0:58:2a:d4:85:98:4e:2a:9e:67:8f:bc:46:
8b:3f:70:ea:6a:01:f0:4f:93:a4:52:42:82:60:ae:
08:ba:61:90:9c:a6:4f:09:38:3c:ea:7d:10:e2:cf:
f9:79:fe:36:a6:78:40:5a:be:a2:50:3e:0c:47:48:
c0:d8:d8:fc:cb:6e:39:8a:70:eb:34:06:40:86:59:
16:51:ce:1e:e5:29:67:bd:f0:a2:50:ea:6e:98:00:
e4:ef:c4:8b:be:c8:25:8a:62:56:98:0b:e6:d6:ea:
7f:2d:3d:b4:f6:2c:a9:ff:60:78:37:0c:c1:1e:cb:
f8:d7:2e:a8:b9:30:4a:aa:c7:36:76:f3:21:32:d7:
a9:3b:2f:be:e9:55:6c:78:d5:6d:e3:c1:05:ff:df:
77:10:59:19:db:95:5b:a7:c7:36:26:9e:cd:73:4a:
d0:87:6f:e3:cb:50:c6:a4:8f:e5:01:1f:e6:a2:53:
e8:7b:92:e9:ed:65:5d:fc:09:4d:76:c7:81:51:4a:
35:12:6b:e3:69:62:ac:22:8e:37:2d:73:32:40:9f:
87:60:7b:e7:3c:26:cb:ff:5d:bb:4e:08:32:af:b4:
d1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5C:16:AD:BA:33:48:A2:1B:34:C7:41:66:8B:89:77:C2:76:FE:B2
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZlwWrbozSKIbNMdBZouJd8J2_rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.21.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:1e:3a:5f:a7:9c:af:f3:21:84:26:fe:94:23:fb:76:4c:f4:
4b:97:4e:d9:b5:10:a3:7f:ca:af:cc:08:92:05:a7:41:bb:67:
64:29:9c:ef:9c:6d:7f:ca:48:cb:ad:ee:f0:3f:aa:9c:dc:ff:
5c:df:74:61:09:40:07:b7:ad:d0:13:74:3f:98:06:40:96:58:
42:df:e5:2e:f4:b2:23:c4:0a:fb:d8:1a:aa:20:a3:80:89:fd:
49:e6:07:46:a0:f6:26:79:27:d3:80:93:b9:8c:0a:4c:9f:2a:
4d:01:36:95:d7:64:51:20:a7:0f:0b:fd:5a:b3:0b:38:84:05:
c3:af:a2:da:d5:f0:7a:3f:80:9b:dd:9c:cc:d5:43:d8:8a:98:
ac:69:b8:dd:6e:53:57:aa:82:33:c7:51:0b:50:4c:77:2a:dc:
88:ba:1b:d4:67:ee:44:3c:f5:d5:c5:22:d1:9a:db:86:bf:a5:
50:a1:08:1b:f9:74:ea:33:53:b5:87:c7:ca:c9:af:54:8f:69:
1c:2f:e9:78:f7:19:8c:c4:1f:d9:c1:39:90:36:95:5e:2a:00:
70:d0:e4:40:d7:d9:1d:07:a7:00:b7:82:3f:23:db:6f:0a:19:
4a:3e:18:16:3e:bc:9e:85:d6:c4:06:de:5f:28:26:21:e1:36:
f5:42:9e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org