Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/Zimzi5DFGv7Wldy7uX9cRLYMDek.roa
File: Zimzi5DFGv7Wldy7uX9cRLYMDek.roa (raw, json)
Hash identifier: Z+df10zkGRSgX15BRjYDLEAUmMtuZoZEq/JsT51X8g4=
Subject key identifier: 66:29:B3:8B:90:C5:1A:FE:D6:95:DC:BB:B9:7F:5C:44:B6:0C:0D:E9
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 036F3D1D
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/Zimzi5DFGv7Wldy7uX9cRLYMDek.roa
Signing time: Sat 01 Jan 2022 13:58:49 +0000
ROA not before: Sat 01 Jan 2022 13:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12357
IP address blocks: 185.195.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57621789 (0x36f3d1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Jan 1 13:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6629b38b90c51afed695dcbbb97f5c44b60c0de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:dc:c8:6a:e3:91:da:4d:5f:ba:89:d6:7e:f9:
af:e9:4e:f8:88:9f:7d:3e:e9:c1:e7:3f:aa:08:0b:
1d:30:77:d9:1e:a2:c7:a3:39:e9:5e:08:9a:fb:c9:
83:c9:12:bf:f5:8d:d1:02:eb:43:fd:1d:b5:ee:64:
5a:8d:00:ec:21:df:2d:51:d6:6d:ae:5a:1d:20:a5:
ac:71:ee:9a:ab:3e:e8:92:71:4a:5e:a4:dd:59:95:
67:9f:f3:54:2e:58:79:cd:41:f8:a8:3b:0e:76:6f:
c8:9d:b7:5b:93:66:a3:fa:be:c2:39:1c:09:78:91:
d6:f1:81:7f:76:a8:a1:55:75:3b:e3:54:9c:95:65:
4b:4c:1c:84:79:d0:e0:6e:b0:e3:5e:da:d5:36:b1:
76:50:c6:73:fe:94:19:83:bc:ea:b8:e2:93:6c:69:
2a:d3:53:ce:3f:e4:56:6f:a6:bd:0f:bf:8c:b2:c4:
8b:af:30:6f:30:cf:48:a7:57:7c:0c:81:9d:e6:56:
cd:46:26:90:72:2b:e5:50:8b:fa:25:a9:c3:bc:4b:
43:4a:1a:d5:c3:d4:aa:ce:1a:37:48:c7:cd:87:31:
76:ea:32:21:81:b4:d1:18:73:86:00:f3:05:93:24:
31:30:2f:e6:cd:13:6e:e2:9c:3e:0c:62:3b:50:78:
19:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:29:B3:8B:90:C5:1A:FE:D6:95:DC:BB:B9:7F:5C:44:B6:0C:0D:E9
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/Zimzi5DFGv7Wldy7uX9cRLYMDek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.176.0/22
Signature Algorithm: sha256WithRSAEncryption
71:3a:0b:ba:b7:2f:4a:29:c3:46:ce:3d:7d:2a:6b:9a:f6:5d:
7a:eb:bb:4e:32:bd:e0:d8:30:ea:b8:a0:fc:93:ed:13:84:9e:
e3:d3:dd:ff:18:9c:53:3a:52:30:92:c2:18:0b:6e:b3:41:8a:
2f:95:4b:3f:fb:2f:30:b5:cf:af:e8:78:a9:13:d4:30:61:17:
14:88:5a:9d:92:40:59:64:b0:17:f0:49:46:f6:cb:ca:9d:58:
9d:80:ba:ff:b0:37:fd:2e:32:ab:ac:13:b6:c2:1f:65:1b:7f:
32:35:1c:8f:2d:e9:22:7f:18:f9:64:c1:b9:90:85:10:78:65:
01:09:6a:a3:9c:93:55:9d:5e:5a:6f:00:ed:ca:ab:21:25:ae:
30:18:a2:08:a0:0f:aa:e3:db:c5:c1:2f:8c:1d:ea:a3:91:30:
31:53:d3:eb:dc:5d:98:de:9c:e9:0d:94:22:39:dc:d0:c6:87:
10:f7:f4:61:f6:ec:e4:61:87:92:c3:31:cb:0e:67:4b:7e:ca:
77:45:8a:12:e3:27:52:51:89:96:6e:36:d9:fd:12:a7:58:18:
c0:19:e1:2f:3a:4b:3f:80:75:42:73:17:19:2f:40:82:18:46:
0a:01:32:1e:c3:e1:cd:4a:dc:8e:48:2c:fd:00:bd:9a:ab:2d:
f5:8a:fc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:16 2024 by rpki-client on console-ams.rpki-client.org