Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/ZaZRB2__dAYaHkNC1bj2NzCzlUA.roa
File: ZaZRB2__dAYaHkNC1bj2NzCzlUA.roa (raw, json)
Hash identifier: DVyn1OXVEsr0En1RNbc6Ak34cEF33+hOXAP3HEZ3OKI=
Subject key identifier: 65:A6:51:07:6F:FF:74:06:1A:1E:43:42:D5:B8:F6:37:30:B3:95:40
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 0183863A42A0715912B204C833CCC35FE224
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/ZaZRB2__dAYaHkNC1bj2NzCzlUA.roa
Signing time: Wed 28 Sep 2022 22:31:48 +0000
ROA not before: Wed 28 Sep 2022 22:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207849
IP address blocks: 89.234.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:86:3a:42:a0:71:59:12:b2:04:c8:33:cc:c3:5f:e2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Sep 28 22:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a651076fff74061a1e4342d5b8f63730b39540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:af:eb:8a:00:1e:1f:f9:2f:94:73:b3:d3:8a:
01:a8:73:da:1d:99:05:fb:42:f9:29:b5:34:59:c0:
37:1a:68:04:a1:37:cf:1e:b4:13:aa:0b:31:6a:34:
98:c4:7f:b9:b8:11:3f:d7:88:c4:c7:50:18:12:72:
e9:eb:59:f8:a8:44:83:6f:a8:52:d3:32:f1:e3:e0:
b5:39:e0:ba:7e:4f:90:6b:27:bf:76:63:48:57:7c:
66:ac:02:f8:be:68:5d:44:86:6c:bd:93:e2:67:82:
78:21:6c:68:ee:6c:64:2b:67:f0:1a:f1:5e:e7:92:
6b:d9:96:4b:ad:40:fa:ba:e6:a0:4d:6f:11:53:a3:
36:34:3e:5f:b3:ad:8c:ab:f6:7a:23:a4:c3:a4:35:
89:b8:a4:a2:c1:db:25:f9:58:4a:e8:08:dd:ed:80:
ab:d6:6d:c8:95:02:fb:57:6a:2b:50:55:46:ad:d6:
a5:f7:3f:dc:fa:6f:86:94:0e:4f:26:ab:e7:a7:aa:
8b:61:9c:1b:5a:e6:c1:5e:a5:27:15:72:2b:49:e9:
28:fc:a1:f1:dc:0c:7a:a7:45:f0:fa:f8:2f:90:df:
5c:42:71:93:a8:e6:43:05:07:e9:a0:45:be:a3:99:
3c:5a:b9:4f:53:ca:49:5d:85:20:b8:fb:cb:8f:d0:
a5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A6:51:07:6F:FF:74:06:1A:1E:43:42:D5:B8:F6:37:30:B3:95:40
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/ZaZRB2__dAYaHkNC1bj2NzCzlUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.164.0/22
Signature Algorithm: sha256WithRSAEncryption
53:d0:71:94:b6:f6:1c:b9:4b:9c:96:2c:9d:58:e2:a3:02:89:
cd:a9:8a:f9:4c:31:4c:7e:7b:62:df:c3:89:d2:70:80:32:07:
09:52:92:67:8e:7b:e6:c5:c9:21:13:41:2e:6f:cd:43:60:96:
dc:7e:7c:d8:1a:6c:8c:a3:2e:b5:c9:88:98:a3:b7:af:76:61:
6a:2a:60:dc:de:fe:81:7d:78:e6:75:26:0e:ff:53:7e:91:f9:
a3:44:f4:16:f5:3e:22:bc:7e:06:33:bd:67:11:fe:fd:f4:be:
41:70:de:3c:ed:b4:fb:cd:7d:7e:9c:d5:aa:4e:58:00:e6:5e:
de:b7:4f:20:27:c8:5f:98:73:26:ec:d3:3b:c3:0f:55:d8:99:
93:e5:75:6f:1e:69:b5:54:23:a2:a6:42:ed:bd:e5:9a:b3:68:
b8:13:ca:af:bc:16:9f:b9:c8:c1:cf:07:7d:bd:10:e5:af:4f:
78:33:90:b1:49:9b:e9:67:5c:82:8f:77:e6:92:fe:21:7f:72:
de:34:fc:98:8e:97:f6:24:5e:de:7e:5d:1e:1f:d8:75:26:5c:
1f:38:13:50:ca:cf:b5:c7:6b:3a:d2:55:78:eb:7d:39:dc:57:
72:47:3b:87:f5:2f:3a:ff:9e:ca:65:a4:51:2a:79:31:07:ea:
f3:05:59:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:03 2023 by rpki-client on console-fra.rpki-client.org