Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/39zczpwwpuClNhbfNXiigpeTw1A.roa
File: 39zczpwwpuClNhbfNXiigpeTw1A.roa (raw, json)
Hash identifier: wOL09O2fh6eXBw/lRaZiYT+XQpKlXyh4ZYBrsaVST+k=
Subject key identifier: DF:DC:DC:CE:9C:30:A6:E0:A5:36:16:DF:35:78:A2:82:97:93:C3:50
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0A13612C
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/39zczpwwpuClNhbfNXiigpeTw1A.roa
Signing time: Fri 25 Mar 2022 15:45:08 +0000
ROA not before: Fri 25 Mar 2022 15:45:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213250
IP address blocks: 185.234.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169042220 (0xa13612c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Mar 25 15:45:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfdcdcce9c30a6e0a53616df3578a2829793c350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b7:32:71:0a:18:4e:5f:0e:69:42:94:c0:aa:
6e:20:bb:4e:fa:d2:b3:8c:a1:7b:f0:f6:3b:9c:62:
a3:5c:85:a8:f3:b8:13:a2:06:57:e7:f7:d0:23:57:
c3:67:a6:52:20:02:ea:07:91:e6:02:32:cc:70:a5:
19:7d:18:09:96:3c:b5:46:a3:ef:cf:25:4c:72:a3:
11:b8:6f:27:41:2b:93:b2:db:aa:bf:d1:72:3b:77:
0d:50:58:c2:58:52:09:41:20:0f:9e:42:41:fd:c8:
52:3a:72:c3:d0:51:f3:a7:dc:f6:fd:99:e1:f0:03:
1f:a9:2a:5c:aa:c4:05:a3:b8:a6:b4:8f:ce:a2:0a:
f8:a3:68:ef:0e:c6:45:4a:dc:f0:96:7d:a2:fc:16:
21:eb:ff:02:a1:d9:64:45:01:da:bc:81:e8:3b:69:
f4:99:90:ac:71:7e:b0:bb:c6:39:80:38:9f:9f:1c:
17:eb:e1:00:d6:99:49:94:6a:8b:d8:7e:25:b6:53:
2e:89:ef:a0:5a:6d:b9:e6:af:ea:a5:7c:29:86:0d:
9c:ca:b6:d4:fb:21:37:0c:98:7a:e6:7a:44:bb:1e:
6b:cc:e8:44:ba:06:ed:bc:6f:1c:c1:bd:53:7c:60:
3e:48:8f:33:57:fc:96:5d:21:5d:26:e0:92:3b:88:
25:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DC:DC:CE:9C:30:A6:E0:A5:36:16:DF:35:78:A2:82:97:93:C3:50
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/39zczpwwpuClNhbfNXiigpeTw1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.72.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f9:85:c6:31:4f:00:f4:69:2a:34:88:ce:4f:f8:ce:01:21:
e4:be:ac:e4:5f:a9:20:29:d7:97:3d:d5:8e:df:95:74:f0:ef:
aa:bb:2c:65:cb:e4:7e:ca:61:90:7a:32:cc:a5:76:b4:e4:ff:
51:7b:25:23:7e:aa:f0:65:70:ba:b4:58:ed:be:01:e8:4e:b2:
62:3d:24:6f:84:c2:66:15:2c:43:04:7d:00:9d:cb:16:5f:7f:
54:1b:4d:bc:ad:be:eb:35:16:57:47:7e:4c:f7:95:a7:2e:df:
c2:c0:99:68:62:cb:ab:ed:e7:04:94:61:34:81:bb:c0:8c:9b:
6b:b4:68:37:e3:57:c1:80:31:bd:7a:b7:1f:b4:da:ba:57:b5:
4a:9d:06:c5:5b:13:1e:71:62:0e:8a:1c:36:2d:c3:33:0b:34:
c8:53:ae:98:8a:54:30:1d:4d:7b:fb:bc:1c:23:dd:bc:e6:05:
92:26:72:12:b2:07:ae:01:54:ba:36:38:51:c8:b8:56:77:8a:
c8:42:a6:f8:8c:20:e0:fa:0b:5a:db:6d:cc:46:93:17:ba:fa:
7a:29:ed:05:75:5c:82:4c:ba:32:d4:42:5f:32:12:03:3a:28:
79:14:9f:f4:94:52:5d:00:a2:99:e2:2b:19:47:c3:6b:09:5d:
6f:67:3c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org