Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/66f829-5129-4842-a5c0-3740b0941db8/1/ziL1EsemCcQxih9gnC_4oY4rBko.roa
File: ziL1EsemCcQxih9gnC_4oY4rBko.roa (raw, json)
Hash identifier: 9fy2LUi66nTohudK75UYZ6q+ZeIcGeW+/GYxDZAarRE=
Subject key identifier: CE:22:F5:12:C7:A6:09:C4:31:8A:1F:60:9C:2F:F8:A1:8E:2B:06:4A
Certificate issuer: /CN=9d257190821f7058a8eafd48196974368bad8f14
Certificate serial: 0C0CEC0B
Authority key identifier: 9D:25:71:90:82:1F:70:58:A8:EA:FD:48:19:69:74:36:8B:AD:8F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSVxkIIfcFio6v1IGWl0NoutjxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/66f829-5129-4842-a5c0-3740b0941db8/1/ziL1EsemCcQxih9gnC_4oY4rBko.roa
Signing time: Sat 01 Jan 2022 13:06:46 +0000
ROA not before: Sat 01 Jan 2022 13:06:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35805
IP address blocks: 92.241.64.0/19 maxlen: 24
185.51.16.0/22 maxlen: 24
109.238.224.0/20 maxlen: 24
213.131.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202173451 (0xc0cec0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d257190821f7058a8eafd48196974368bad8f14
Validity
Not Before: Jan 1 13:06:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce22f512c7a609c4318a1f609c2ff8a18e2b064a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:30:4a:c9:bc:7b:18:6a:9c:71:31:86:93:cd:
9e:a2:6e:15:52:2e:e5:7d:49:0d:cc:cc:45:50:9a:
a1:eb:8d:a4:a4:01:a9:a2:cf:45:d8:80:ef:6f:63:
0b:e2:63:50:60:f5:33:d0:45:02:76:cf:54:6b:66:
49:84:4d:6e:c4:51:60:17:08:ed:4d:52:19:03:87:
44:53:17:c4:80:29:f5:18:54:3b:6c:af:84:43:ff:
11:55:8d:f8:a2:83:db:90:ec:20:a2:05:0f:d0:30:
02:19:13:3a:19:1e:75:44:01:a2:a6:3e:99:f5:40:
4e:b3:d7:1b:1a:26:65:3f:d5:eb:76:da:32:be:3f:
e5:e9:e6:9a:44:40:4a:7d:9c:c7:b9:da:56:75:1b:
2e:82:d6:b4:f9:10:97:f3:0a:24:25:c8:db:33:3d:
31:7d:0e:f1:a3:66:d4:92:dd:d3:cf:76:86:ad:78:
28:af:9c:14:38:0d:9b:6e:d6:f3:a8:ba:e2:92:ad:
18:61:9d:e7:85:1a:58:43:03:d1:00:98:e6:2f:5a:
ac:ac:ee:5a:e1:80:3f:9a:95:73:47:4c:c6:ef:a9:
53:30:90:76:ab:f7:8b:99:70:b2:0d:91:a8:d7:32:
19:ef:64:d9:a8:e1:40:11:31:b0:29:8f:90:b1:e8:
40:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:22:F5:12:C7:A6:09:C4:31:8A:1F:60:9C:2F:F8:A1:8E:2B:06:4A
X509v3 Authority Key Identifier:
keyid:9D:25:71:90:82:1F:70:58:A8:EA:FD:48:19:69:74:36:8B:AD:8F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSVxkIIfcFio6v1IGWl0NoutjxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/66f829-5129-4842-a5c0-3740b0941db8/1/ziL1EsemCcQxih9gnC_4oY4rBko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/66f829-5129-4842-a5c0-3740b0941db8/1/nSVxkIIfcFio6v1IGWl0NoutjxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.241.64.0/19
109.238.224.0/20
185.51.16.0/22
213.131.32.0/19
Signature Algorithm: sha256WithRSAEncryption
13:20:8a:4a:71:fd:c1:db:56:05:b9:90:bb:d9:7f:3b:3d:1b:
a3:da:b8:fe:e5:5a:f8:17:b9:8c:be:73:2d:35:58:04:b8:39:
d4:e1:a4:da:1d:85:81:64:7b:58:9b:ad:55:bb:df:0a:7c:4b:
6a:7b:f5:49:6d:d4:5b:c6:ea:32:93:2c:f2:a2:a2:41:33:5b:
c3:cd:4a:e3:01:8d:a6:d0:10:c7:62:c0:24:a6:d8:26:da:ff:
c2:48:80:0f:52:4f:d8:97:2b:e3:66:b9:38:51:2b:79:5e:f1:
aa:e5:68:6b:0b:e3:85:d0:3c:15:43:ad:1d:62:7f:0f:ab:af:
4b:bd:0a:5a:d7:ec:90:9a:be:51:39:e3:7b:7a:fb:b6:92:18:
ba:12:dc:9e:fe:75:13:5a:8c:56:6b:42:b4:6b:a8:61:1f:ab:
ba:96:4c:f3:2e:85:95:72:13:16:91:96:ca:53:86:00:12:c1:
7c:46:17:9f:31:83:2a:7f:6d:13:c3:09:04:4c:78:5d:e0:7f:
dc:51:7a:90:05:79:d9:dd:9f:46:09:96:d0:a0:f6:fc:d5:2b:
d5:68:c9:6c:21:02:a1:6f:e8:56:9c:52:ec:e3:d2:01:1d:22:
ff:51:4c:83:d6:bc:cd:6a:27:aa:bf:bd:02:ca:ed:09:f0:e4:
88:9f:c9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:41 2023 by rpki-client on console-ams.rpki-client.org