Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZYIjjTNlocUiAMVuj-dt1CElzsg.roa
File: ZYIjjTNlocUiAMVuj-dt1CElzsg.roa (raw, json)
Hash identifier: LOofgZOU666T723uQJz+OIf2s0hXFeDMhyEhR12YwBE=
Subject key identifier: 65:82:23:8D:33:65:A1:C5:22:00:C5:6E:8F:E7:6D:D4:21:25:CE:C8
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 137D2131
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZYIjjTNlocUiAMVuj-dt1CElzsg.roa
Signing time: Sat 01 Jan 2022 05:56:12 +0000
ROA not before: Sat 01 Jan 2022 05:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42881
IP address blocks: 185.115.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326967601 (0x137d2131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6582238d3365a1c52200c56e8fe76dd42125cec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:28:13:09:4d:e2:50:62:fa:6a:2b:c8:39:5f:
1d:c6:53:07:4a:df:d6:ca:6f:1a:6c:97:81:e5:25:
00:9c:d9:e9:3a:ae:eb:81:3b:f2:73:82:85:4f:77:
ad:5c:52:b8:a7:4d:26:bc:2b:50:7e:ed:a4:70:61:
ae:1d:c0:fe:52:2c:3c:33:f0:cb:68:57:4f:58:a0:
ed:48:f4:c2:71:bd:f9:72:2e:8a:17:f4:02:c7:1e:
ac:2d:55:c5:32:1a:c4:04:fe:6a:c4:70:3f:df:83:
cf:02:56:10:6c:c6:91:fc:f3:86:ee:a1:30:a2:bd:
16:77:d5:38:0f:3d:b5:df:e1:75:5e:d1:3d:31:3e:
1b:ad:0e:38:90:97:0c:82:f2:6b:23:c0:a4:07:60:
e0:e0:e3:4f:9e:60:f6:08:12:51:bb:48:8c:90:08:
d8:52:38:51:8f:ee:35:d5:9a:d7:8e:8d:ca:79:9d:
77:06:e2:85:ba:a2:84:c3:b6:43:44:f3:dc:59:ea:
68:d4:55:3b:0e:8d:d4:64:b7:e0:48:f0:ba:12:32:
d2:d7:22:9e:16:47:f9:a0:7c:fd:c7:16:41:00:b9:
7f:18:7f:7c:ef:e5:c7:95:b1:4e:8d:42:83:39:74:
d1:0f:9f:15:af:2d:92:3d:cd:15:27:1d:2e:55:f8:
fd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:82:23:8D:33:65:A1:C5:22:00:C5:6E:8F:E7:6D:D4:21:25:CE:C8
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ZYIjjTNlocUiAMVuj-dt1CElzsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.92.0/22
Signature Algorithm: sha256WithRSAEncryption
51:56:b3:52:7a:bb:5e:2e:3f:7d:b1:61:d9:59:a3:f1:1d:ce:
46:5f:9d:db:14:b3:f3:87:96:f5:77:a2:19:9f:ed:34:cd:fb:
56:94:f4:d8:d9:10:61:e9:0b:f4:62:38:47:4f:56:49:69:90:
06:38:84:31:2b:4c:12:1d:fd:e1:9f:4a:8c:78:af:28:07:7f:
06:df:8d:c7:24:f0:ba:b2:eb:32:a9:02:03:89:dc:47:f9:54:
64:0f:ad:43:25:b6:a2:57:d9:4a:eb:a9:c6:cb:35:35:12:d8:
cc:0c:97:b4:dd:fc:98:87:e6:3d:3b:9b:2d:8e:f7:39:ab:a6:
6a:dc:e4:09:03:a6:1b:0e:f9:fc:d5:6b:d9:a6:b9:a1:61:cf:
31:de:b7:08:b1:d9:e2:7d:bb:67:39:1c:58:0e:19:01:de:fb:
d6:f7:1f:73:f9:d7:e0:59:3b:50:f5:38:a3:fa:c6:20:9e:02:
a9:ba:65:31:cb:28:ca:b4:03:4f:f0:6c:c1:d5:3d:fd:ab:8b:
9c:2e:de:c9:ba:a9:71:8a:31:54:cb:bf:fb:10:ff:1e:44:f0:
39:31:6c:cb:38:4e:36:3f:36:69:86:68:e2:27:02:e1:0f:13:
e3:d3:df:f7:cf:15:e3:96:ea:bb:1f:18:c2:71:08:1b:e3:33:
b5:53:2d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org