Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZJRGHy8DHBq7Rcao_iaVc-Zk7g8.roa
File: ZJRGHy8DHBq7Rcao_iaVc-Zk7g8.roa (raw, json)
Hash identifier: u9ywX4WFcZKXoQ8UMhzHu43bbhdKMd/VrBGmxE0Jc+c=
Subject key identifier: 64:94:46:1F:2F:03:1C:1A:BB:45:C6:A8:FE:26:95:73:E6:64:EE:0F
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01837A4116237D06CD6B96B8DC46044F519B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZJRGHy8DHBq7Rcao_iaVc-Zk7g8.roa
Signing time: Mon 26 Sep 2022 14:43:49 +0000
ROA not before: Mon 26 Sep 2022 14:43:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209896
IP address blocks: 95.214.152.0/22 maxlen: 22
2.57.152.0/22 maxlen: 22
45.86.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:41:16:23:7d:06:cd:6b:96:b8:dc:46:04:4f:51:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 26 14:43:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6494461f2f031c1abb45c6a8fe269573e664ee0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:f8:78:f8:0e:fc:9e:8e:b0:aa:34:20:83:
7e:cb:1a:c8:1e:ac:95:cb:c2:f9:70:74:11:63:62:
da:3f:8e:b7:b8:3e:e5:19:c9:15:1f:58:f3:eb:6b:
77:9c:c9:72:f4:95:74:c4:33:06:b6:cc:53:77:ea:
03:23:be:7b:d8:d5:fe:a5:a5:e5:36:6c:a2:89:d1:
d0:c4:b5:ca:6d:fa:23:d1:c5:c9:05:f1:6d:65:11:
6d:56:7c:9b:fc:7d:fd:9a:ba:92:d1:c1:bf:ef:49:
42:19:d3:c0:0a:4c:b5:4d:21:93:b9:ac:50:8e:9b:
ee:5a:a7:05:25:ce:39:d3:b9:02:48:73:a6:2f:5d:
d8:cb:ce:7f:67:e3:a4:ff:5a:13:9c:5d:90:16:aa:
7e:31:d6:b1:87:58:5b:97:81:15:fa:8e:c6:d8:39:
fb:a7:62:06:2c:4f:09:f7:cc:25:d4:ac:41:a7:6e:
1c:a1:d0:92:9c:c1:12:09:f6:ff:02:8e:31:52:fc:
8b:cc:f8:04:d2:37:40:81:45:1f:7c:f3:1c:b6:c1:
af:11:b3:56:32:61:da:1d:2b:f8:63:94:58:b0:9b:
f4:69:15:15:9e:3c:cd:b6:81:6b:9f:c3:34:1a:0a:
ec:03:93:d5:0c:eb:c9:2b:55:f3:d2:9d:f9:65:a0:
6c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:94:46:1F:2F:03:1C:1A:BB:45:C6:A8:FE:26:95:73:E6:64:EE:0F
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZJRGHy8DHBq7Rcao_iaVc-Zk7g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.152.0/22
45.86.20.0/22
95.214.152.0/22
Signature Algorithm: sha256WithRSAEncryption
35:59:3f:58:4e:e6:8e:ba:e0:38:91:81:d7:8f:65:8a:f7:41:
1f:ce:0e:19:7b:0c:08:c9:6e:a6:a0:2c:a9:d0:e4:f4:da:d9:
42:fc:e3:00:ee:33:85:a7:9c:52:b0:34:ae:76:5e:c2:d6:8f:
aa:30:b5:f4:6b:1e:32:4d:7c:47:6e:b2:8c:5e:7a:a0:ed:c7:
3a:2b:8d:04:71:00:d5:f5:b0:c3:34:94:99:c0:75:9a:a9:b6:
86:51:2a:24:d2:0a:66:66:5e:8d:25:79:05:78:6d:88:78:74:
e9:8d:64:9c:ee:06:8e:67:bd:68:11:82:85:32:52:3a:ea:88:
0e:78:7b:e6:92:23:cc:c7:d0:4a:e0:91:f4:f7:ff:db:9a:8f:
7d:91:25:67:4a:5a:a2:d7:8a:d0:05:a5:32:71:bc:07:c7:18:
d0:62:48:20:a9:52:26:5b:ba:3e:01:1f:06:2a:a0:e1:f0:b7:
70:be:5e:13:47:09:62:d2:f0:49:36:64:e4:41:69:71:5b:20:
10:d0:c5:a8:20:c5:82:f8:1b:65:97:6e:44:95:03:43:fd:3d:
c6:9a:65:06:fb:fd:53:03:f1:24:b0:63:6c:29:ea:e9:76:f0:
cf:a4:9a:a2:ea:0f:93:ad:9c:71:9d:80:4b:b8:79:f6:27:65:
d0:a9:e5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org