Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/0df2ef-ffc9-4457-9f4a-7712fbf161c1/1/ZS9T9V2ABoqhIFDPbJYuFh2mb7Q.roa
File: ZS9T9V2ABoqhIFDPbJYuFh2mb7Q.roa (raw, json)
Hash identifier: rrPhHCxjzThjiahq5BInXiDKCnihQPcpSha+5nhwU8w=
Subject key identifier: 65:2F:53:F5:5D:80:06:8A:A1:20:50:CF:6C:96:2E:16:1D:A6:6F:B4
Certificate issuer: /CN=f81a2052052675d4539b87f5fb9c694dbf43261e
Certificate serial: 01BDBB
Authority key identifier: F8:1A:20:52:05:26:75:D4:53:9B:87:F5:FB:9C:69:4D:BF:43:26:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BogUgUmddRTm4f1-5xpTb9DJh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/0df2ef-ffc9-4457-9f4a-7712fbf161c1/1/ZS9T9V2ABoqhIFDPbJYuFh2mb7Q.roa
Signing time: Thu 16 Jun 2022 09:47:44 +0000
ROA not before: Thu 16 Jun 2022 09:47:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43656
IP address blocks: 194.28.4.0/23 maxlen: 23
194.28.6.0/23 maxlen: 23
91.198.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114107 (0x1bdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f81a2052052675d4539b87f5fb9c694dbf43261e
Validity
Not Before: Jun 16 09:47:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=652f53f55d80068aa12050cf6c962e161da66fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6b:33:fd:de:3a:39:37:41:27:18:43:68:a4:
3a:bf:b5:ba:f1:18:68:9b:4b:bf:3e:5b:62:a1:69:
e9:04:37:27:28:8e:9d:7d:8d:71:8a:bc:4f:80:6c:
1f:4e:14:31:7c:c1:11:36:6c:8f:e6:22:2f:c6:6c:
ec:ab:b8:90:95:43:e7:fc:81:c1:5c:0a:cf:bb:8c:
2c:24:d6:c3:19:05:31:9d:7f:68:ca:be:88:c9:77:
5a:99:96:1e:b2:21:94:cb:f1:e7:94:80:3f:5b:d3:
2c:a2:ec:8e:66:b8:b0:6e:08:6e:f3:a2:d1:f6:66:
87:dd:fe:24:67:91:b6:f1:aa:b1:9b:08:2a:81:2c:
13:87:b3:e9:71:8a:4a:5f:cd:e1:a9:3a:de:03:23:
60:e4:32:c1:9e:56:1b:89:c4:aa:70:d9:84:f1:ee:
31:2e:82:75:50:f8:58:48:8a:01:58:a9:b7:c8:79:
d6:78:d2:48:68:c3:9f:d4:f5:38:7d:7e:e6:70:63:
a2:48:40:b8:d9:5c:3c:16:9e:83:64:aa:09:5f:b9:
aa:18:ee:c4:82:e4:3b:f7:5d:17:c8:35:40:0b:04:
db:75:a5:26:80:bf:9a:1a:8e:ca:4f:77:35:c1:89:
12:44:5b:17:f4:0f:8b:3f:d3:6e:28:0a:33:98:c7:
59:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2F:53:F5:5D:80:06:8A:A1:20:50:CF:6C:96:2E:16:1D:A6:6F:B4
X509v3 Authority Key Identifier:
keyid:F8:1A:20:52:05:26:75:D4:53:9B:87:F5:FB:9C:69:4D:BF:43:26:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BogUgUmddRTm4f1-5xpTb9DJh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/0df2ef-ffc9-4457-9f4a-7712fbf161c1/1/ZS9T9V2ABoqhIFDPbJYuFh2mb7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/0df2ef-ffc9-4457-9f4a-7712fbf161c1/1/1-BogUgUmddRTm4f1-5xpTb9DJh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.83.0/24
194.28.4.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:a9:60:79:ee:23:e9:5f:c8:61:43:58:2f:89:4f:83:c1:88:
0e:dc:fe:85:77:ba:8c:5d:aa:fc:81:a3:64:7c:4a:67:f5:a5:
cd:61:e4:8d:71:48:a5:29:70:54:b4:a4:ba:58:96:f6:a7:48:
64:8a:a5:69:70:c9:04:03:28:d6:76:59:c3:19:7f:25:23:69:
38:3f:35:3c:e3:79:bf:17:f9:a1:8d:54:88:eb:5f:b5:19:12:
a8:92:26:41:06:bf:c7:be:85:b1:a4:da:54:e1:63:48:72:05:
c7:f9:35:46:64:f2:af:28:d2:98:88:10:27:86:8b:5c:82:5e:
d8:15:5f:1d:cc:84:b9:de:14:21:ea:1b:58:aa:a9:a8:b3:a0:
2b:09:81:28:f5:6c:1f:9e:7b:23:59:16:40:68:eb:ac:94:60:
e8:8d:62:90:90:ed:4e:15:36:d8:17:fc:71:ed:2e:60:09:dd:
b4:2b:0d:51:b7:07:8d:4c:14:00:71:c5:d3:5a:54:51:fd:b6:
51:9d:6e:2d:10:4d:52:61:a1:e7:dc:42:13:1f:7d:da:95:15:
e3:29:07:92:90:ff:f7:a5:7c:41:96:a3:b8:c3:59:f4:bc:d0:
f3:46:0b:41:73:d0:04:81:66:42:20:75:15:b5:63:c2:45:29:
10:2e:b8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:13 2023 by rpki-client on console-ams.rpki-client.org