Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/08f9b4-115c-4488-b567-5cf7c0621065/1/zLqsZiTL00rg2FBY9mX1VLPKpFU.roa
File: zLqsZiTL00rg2FBY9mX1VLPKpFU.roa (raw, json)
Hash identifier: xbI1ZUruE+Gq+a+lL75YLWfvmfhFP75eQ+vlsz4Vx8Y=
Subject key identifier: CC:BA:AC:66:24:CB:D3:4A:E0:D8:50:58:F6:65:F5:54:B3:CA:A4:55
Certificate issuer: /CN=f3751cf8c3a2d36c9744c96519899945ac607820
Certificate serial: 082252BE
Authority key identifier: F3:75:1C:F8:C3:A2:D3:6C:97:44:C9:65:19:89:99:45:AC:60:78:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/83Uc-MOi02yXRMllGYmZRaxgeCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/08f9b4-115c-4488-b567-5cf7c0621065/1/zLqsZiTL00rg2FBY9mX1VLPKpFU.roa
Signing time: Sat 01 Jan 2022 01:55:06 +0000
ROA not before: Sat 01 Jan 2022 01:55:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209749
IP address blocks: 37.46.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136467134 (0x82252be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3751cf8c3a2d36c9744c96519899945ac607820
Validity
Not Before: Jan 1 01:55:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccbaac6624cbd34ae0d85058f665f554b3caa455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:13:0d:66:cc:1c:9c:bb:d2:fc:d6:7d:f7:f0:
6d:12:7f:32:86:43:b3:5e:c4:89:66:c7:fc:70:0c:
ad:98:8f:0e:74:5f:d5:d0:af:8e:67:6c:70:67:97:
48:e3:26:60:1e:44:a1:a3:9e:55:bd:0f:03:d8:3b:
88:86:50:9a:55:fc:3f:09:92:1a:b0:da:4c:ca:af:
91:89:03:4d:c6:dc:19:54:bb:24:61:95:63:28:5e:
ba:74:a0:b1:15:1a:bd:f8:f5:71:93:39:71:01:c3:
2a:35:a5:4f:13:57:9b:b9:97:65:14:f5:fe:85:e1:
06:16:6b:2a:10:33:e3:5d:46:36:0c:c1:27:16:ec:
58:18:1f:e1:9c:bc:ee:50:69:ef:1c:6a:3d:e5:6b:
d1:db:df:1d:d4:71:ae:db:d9:d1:15:74:7d:09:6b:
a8:00:56:93:54:89:81:8b:e0:86:6f:f2:ce:5e:ee:
a1:d6:2f:7e:ab:3d:dd:91:3a:7a:df:98:a6:e9:93:
23:d6:d7:99:f4:74:f5:b7:43:e8:32:bc:83:62:4f:
36:eb:cf:e7:bf:d7:24:d6:3b:f3:e4:51:ff:fe:a2:
36:07:d1:e0:15:01:a8:ad:63:2a:11:ea:5d:39:28:
df:11:f1:8b:e1:96:76:a4:45:ac:b4:88:a6:65:63:
cc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BA:AC:66:24:CB:D3:4A:E0:D8:50:58:F6:65:F5:54:B3:CA:A4:55
X509v3 Authority Key Identifier:
keyid:F3:75:1C:F8:C3:A2:D3:6C:97:44:C9:65:19:89:99:45:AC:60:78:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/83Uc-MOi02yXRMllGYmZRaxgeCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/08f9b4-115c-4488-b567-5cf7c0621065/1/zLqsZiTL00rg2FBY9mX1VLPKpFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/08f9b4-115c-4488-b567-5cf7c0621065/1/83Uc-MOi02yXRMllGYmZRaxgeCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.12.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:14:05:e0:87:12:58:5f:a0:ef:22:d7:2a:90:2f:63:9f:9f:
46:32:08:6b:82:9f:b2:b1:2c:90:ee:ef:c7:da:3c:9d:1d:bb:
34:eb:16:6f:b6:6b:02:75:fc:82:77:fb:4d:a2:45:f3:f5:ec:
01:f5:b8:85:f7:d6:dc:d8:c6:23:93:57:c2:8a:ba:04:85:42:
2f:c4:49:01:21:ee:51:07:30:2d:1f:76:e9:c7:4d:f0:77:28:
1e:af:c5:a5:80:ba:2f:57:11:21:5d:97:81:ee:01:7b:2a:52:
d8:8e:f9:ce:46:99:fd:2a:c5:4a:7d:32:dc:e6:27:9e:83:09:
e8:40:ee:32:ef:90:84:bb:b1:08:51:49:9a:0c:97:08:89:31:
cc:af:b7:ff:7f:f2:d2:a3:9a:a4:4f:66:45:e6:0b:e3:30:5f:
90:cd:01:53:1d:19:54:c3:82:83:19:68:34:0c:38:c1:39:a8:
ad:a1:20:20:83:6b:a4:2e:3e:f2:2e:73:e6:f1:ee:16:5e:d2:
29:3a:39:2e:0f:bf:39:8c:9f:3c:73:2b:5a:37:a8:6c:3a:e1:
00:ce:78:59:37:93:98:93:d4:99:97:f9:6d:9b:f8:49:70:11:
13:33:46:c0:db:5c:83:d9:e1:47:83:98:37:07:0c:e4:da:00:
22:f3:f6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:08 2023 by rpki-client on console-fra.rpki-client.org