Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/rzdfs9KaElpP21EuAtyDa_tiyUo.roa
File: rzdfs9KaElpP21EuAtyDa_tiyUo.roa (raw, json)
Hash identifier: JhHz+EyR8Ml2zmwKncmyJ/jolXTpnKe0OwpR37BIkac=
Subject key identifier: AF:37:5F:B3:D2:9A:12:5A:4F:DB:51:2E:02:DC:83:6B:FB:62:C9:4A
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 91AA9F
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/rzdfs9KaElpP21EuAtyDa_tiyUo.roa
Signing time: Sat 09 Apr 2022 20:37:12 +0000
ROA not before: Sat 09 Apr 2022 20:37:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 185.84.217.0/24 maxlen: 24
185.84.219.0/24 maxlen: 24
2a05:a882:de10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9546399 (0x91aa9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Apr 9 20:37:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af375fb3d29a125a4fdb512e02dc836bfb62c94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9c:d2:cb:9c:f6:6f:d8:0d:9b:06:3a:b8:41:
bf:e9:a7:83:7c:6a:f3:71:96:82:dc:9f:1b:69:b4:
a8:d3:2d:9e:a2:a2:c4:bd:d8:52:64:54:74:00:c8:
5f:af:c6:15:c6:5e:dd:de:df:79:6b:7c:85:28:68:
3a:a7:0c:95:a8:1b:e4:be:cf:d4:f3:f5:2c:5d:84:
e6:1a:9f:10:63:7e:f5:f3:01:71:74:20:32:ca:7d:
f6:63:8a:87:c4:14:25:48:cc:e8:15:77:56:61:d0:
5f:c5:24:a5:e6:25:63:fc:c8:97:07:45:97:c2:e1:
d3:3b:fe:51:51:99:32:30:3e:8c:21:36:fc:c9:54:
db:e9:34:47:f9:ab:68:97:c3:21:2a:e3:82:f4:5a:
3f:1c:53:94:0d:14:de:ae:77:ca:47:97:a9:b6:72:
30:10:4e:eb:3a:cc:87:48:da:3e:91:9b:86:43:3d:
b0:68:72:a5:fc:d4:87:da:37:52:49:2e:ff:32:ca:
aa:4e:c1:87:00:eb:75:d9:7b:6a:08:61:58:63:d4:
8e:2b:db:00:16:46:f1:a9:22:a5:bb:cc:35:ec:bb:
df:3c:30:1f:2a:74:8d:38:82:67:96:bb:ce:46:d2:
59:5e:d5:b5:9e:44:9c:99:e2:c5:68:70:d8:5b:6f:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:37:5F:B3:D2:9A:12:5A:4F:DB:51:2E:02:DC:83:6B:FB:62:C9:4A
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/rzdfs9KaElpP21EuAtyDa_tiyUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.217.0/24
185.84.219.0/24
IPv6:
2a05:a882:de10::/48
Signature Algorithm: sha256WithRSAEncryption
51:27:c6:42:50:f3:f1:7c:aa:ba:35:73:f9:07:4e:e2:73:15:
e9:dd:0e:d1:fc:1f:23:93:e2:e4:0c:c2:54:98:bf:05:05:0f:
b7:05:f2:d5:c0:d1:c7:65:92:88:3f:29:7e:42:f2:4a:4d:80:
93:06:c0:57:02:50:c9:e0:45:76:17:8e:bb:0b:11:b2:a2:a3:
48:15:19:05:1c:91:f2:97:be:9c:f1:0f:d0:d2:e8:7e:b7:3f:
47:74:28:4e:cd:f4:4a:09:55:ff:57:bb:a9:e2:b8:10:2d:70:
8d:81:09:fc:59:3e:94:f6:41:51:6d:b1:46:48:ef:6a:e1:f7:
f7:38:37:32:3b:c3:6d:22:2f:99:22:9d:a6:4c:b9:f1:92:7e:
00:4e:30:3f:2b:be:67:9a:7b:ed:47:ce:ec:66:71:f3:7f:50:
c0:84:09:b0:6e:1e:0f:fd:fa:10:2b:ef:62:4d:12:d9:15:99:
46:e5:d4:2d:1e:79:d2:5e:d4:dd:81:3a:b8:92:01:b0:f0:28:
ab:1f:5e:a4:52:08:22:19:e8:5c:25:dd:84:ac:65:62:c7:bc:
d1:37:d7:3e:6b:1b:3b:36:68:b2:f2:32:e6:83:3e:6c:b0:39:
f2:8e:08:99:f3:48:1e:af:fc:7f:90:d2:dc:75:52:a7:c9:84:
9c:78:6b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:56 2024 by rpki-client on console-ams.rpki-client.org