Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/zbQyZBmaqG46703ld8c2NSgrjU4.roa
File: zbQyZBmaqG46703ld8c2NSgrjU4.roa (raw, json)
Hash identifier: +G/rkZzTWOuZT0zZ6pLNf3Qgl6GdxAeXBTQT/Cm6YPM=
Subject key identifier: CD:B4:32:64:19:9A:A8:6E:3A:EF:4D:E5:77:C7:36:35:28:2B:8D:4E
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0185655BF153A8A6B4140DB217B4F27FB6E6
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/zbQyZBmaqG46703ld8c2NSgrjU4.roa
Signing time: Fri 30 Dec 2022 23:26:42 +0000
ROA not before: Fri 30 Dec 2022 23:26:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210027
IP address blocks: 185.180.145.0/24 maxlen: 24
91.236.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:5b:f1:53:a8:a6:b4:14:0d:b2:17:b4:f2:7f:b6:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 30 23:26:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdb43264199aa86e3aef4de577c73635282b8d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b4:40:c3:39:d7:12:45:bc:ba:d7:05:66:75:
0e:e4:ff:4f:65:92:bd:c0:40:a8:2c:aa:8f:17:4a:
d3:38:40:82:aa:57:7c:87:5e:5b:e6:92:d3:74:2d:
33:29:00:5a:2a:85:50:02:e7:65:80:71:17:02:f4:
31:85:d0:94:60:61:df:08:d8:1a:13:60:7c:7f:a2:
00:f2:eb:13:5f:1a:0f:61:6d:e8:63:d7:b6:fe:fd:
91:09:15:17:8b:23:1f:54:a9:ca:c3:9e:91:f2:1d:
1d:57:46:a7:2b:ae:bc:b2:10:4d:34:a3:ff:b1:f1:
f8:c5:f2:62:0b:8b:1c:b2:44:43:53:8d:8e:d5:d4:
9c:84:74:32:67:3f:34:4b:8b:f7:d8:61:56:c8:ce:
2e:d9:36:55:3a:da:fb:60:d4:96:a5:89:d9:77:c4:
c2:e1:ae:95:f7:7e:78:02:01:e2:8f:1f:30:9f:63:
f7:08:42:c4:2b:62:d5:82:ab:d3:e0:17:87:bb:b6:
2e:4a:d8:bb:2f:0a:36:f5:ec:1c:af:6e:c9:20:2a:
87:f0:6e:f2:bb:4f:2d:ef:fd:2a:fd:ea:c7:d1:b5:
bf:da:66:e6:74:b2:c6:a1:90:e1:8a:d9:f5:f3:f6:
58:e2:bd:92:3d:89:38:02:e5:09:e8:e2:c2:05:ec:
fe:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B4:32:64:19:9A:A8:6E:3A:EF:4D:E5:77:C7:36:35:28:2B:8D:4E
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/zbQyZBmaqG46703ld8c2NSgrjU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.195.0/24
185.180.145.0/24
Signature Algorithm: sha256WithRSAEncryption
96:75:30:3c:d6:b6:3a:07:43:75:00:fd:d2:1c:1a:c5:44:7e:
ec:e6:e2:2c:8c:d7:32:be:3a:32:6c:cc:d0:af:aa:4b:36:2c:
a6:44:70:d4:12:da:ab:c5:70:91:f7:88:5c:bd:1d:9b:da:4d:
30:f4:0b:79:d7:c8:ac:b5:ab:1b:03:f1:44:d6:c9:ad:2f:8b:
a1:9e:b0:32:69:a2:16:4d:78:92:96:5c:20:47:6c:46:e4:3e:
0b:11:18:fa:33:10:2d:87:a0:11:5a:56:a6:35:fb:72:aa:c0:
5e:28:81:7c:86:05:39:ea:f8:90:43:1f:ac:59:89:08:a4:07:
34:ef:2f:36:f3:61:9f:3e:db:07:d1:6d:9f:7c:1c:93:88:e0:
a8:4e:8d:bc:60:05:93:f7:d4:8d:3b:7f:f4:36:34:92:81:72:
09:dd:a9:e6:84:e9:bc:35:3e:8c:cc:90:b6:e4:39:c3:c6:b2:
a6:29:54:a4:ee:e8:89:fe:e3:97:54:be:f9:ca:20:f8:19:67:
75:90:11:ce:a6:c7:95:a7:87:c3:85:6f:2c:cb:93:56:1c:4e:
5a:71:1f:7d:e2:b2:3a:14:b8:8e:fd:ae:a7:b9:18:e6:39:c0:
80:a6:1f:33:bb:45:dd:d7:62:d5:3b:42:76:a3:1a:5e:96:50:
6e:03:6f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org