Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/71cb0c-3be0-4a9e-9b82-7d68366b59b7/1/Zm3wI-Tl-hN7skfErsEZjdZ81ZI.roa
File: Zm3wI-Tl-hN7skfErsEZjdZ81ZI.roa (raw, json)
Hash identifier: sJJ7age1yZPSJurSJm1of2h3D+JuSg5cPbPrIxWiiOk=
Subject key identifier: 66:6D:F0:23:E4:E5:FA:13:7B:B2:47:C4:AE:C1:19:8D:D6:7C:D5:92
Certificate issuer: /CN=87b9313753bc0931af4393dbda009b0ff45ec7c2
Certificate serial: 0184198BE1E5BFD5F5C9F2036C30ADD15E3F
Authority key identifier: 87:B9:31:37:53:BC:09:31:AF:43:93:DB:DA:00:9B:0F:F4:5E:C7:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7kxN1O8CTGvQ5Pb2gCbD_Rex8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/71cb0c-3be0-4a9e-9b82-7d68366b59b7/1/Zm3wI-Tl-hN7skfErsEZjdZ81ZI.roa
Signing time: Thu 27 Oct 2022 13:05:08 +0000
ROA not before: Thu 27 Oct 2022 13:05:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201395
IP address blocks: 176.105.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:8b:e1:e5:bf:d5:f5:c9:f2:03:6c:30:ad:d1:5e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87b9313753bc0931af4393dbda009b0ff45ec7c2
Validity
Not Before: Oct 27 13:05:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666df023e4e5fa137bb247c4aec1198dd67cd592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ab:c7:5e:70:31:be:36:61:56:6c:8f:0b:d1:
18:f2:1e:e8:1b:ba:76:c6:8d:01:1f:8e:4b:69:7b:
8b:e5:15:03:b7:89:ce:dd:82:4e:b6:0a:a0:e2:e8:
c4:fa:ed:32:ee:ba:86:a0:65:56:d4:39:72:2f:48:
28:05:d5:73:e4:54:52:3f:06:00:a0:7a:15:2f:2f:
56:f1:fc:9f:bf:9e:cd:52:db:09:5d:b2:7a:31:eb:
a4:1a:91:fc:ec:7b:16:25:54:52:d4:23:2b:50:55:
e9:82:9c:b8:5f:21:2f:3d:1d:a9:34:a3:12:95:45:
91:27:bc:20:8f:f9:a2:df:ae:11:fa:e1:2d:a3:ef:
ad:6c:20:88:d3:69:c6:f8:19:60:58:d2:98:13:91:
e5:c9:9e:71:cd:cc:20:60:73:6e:0f:1c:b7:2a:b4:
67:6a:c2:f1:7c:ef:33:04:53:8a:bf:be:39:0e:ce:
d4:83:89:a7:07:11:21:60:42:6b:00:8e:2f:49:b2:
76:25:79:b3:15:41:c8:ec:09:77:d5:8b:bb:c1:ca:
4b:dc:9f:90:f2:4d:eb:2e:07:9a:c6:52:7a:26:bd:
38:7f:63:56:e2:35:55:be:79:0c:50:cf:e5:d6:8d:
b9:b6:5d:4e:49:96:38:a9:4e:95:fa:31:ab:cd:3d:
6d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6D:F0:23:E4:E5:FA:13:7B:B2:47:C4:AE:C1:19:8D:D6:7C:D5:92
X509v3 Authority Key Identifier:
keyid:87:B9:31:37:53:BC:09:31:AF:43:93:DB:DA:00:9B:0F:F4:5E:C7:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7kxN1O8CTGvQ5Pb2gCbD_Rex8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/71cb0c-3be0-4a9e-9b82-7d68366b59b7/1/Zm3wI-Tl-hN7skfErsEZjdZ81ZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/71cb0c-3be0-4a9e-9b82-7d68366b59b7/1/h7kxN1O8CTGvQ5Pb2gCbD_Rex8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.240.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:d5:63:e6:09:1c:a9:85:98:7f:6b:97:d6:db:57:cb:d5:cc:
a7:ff:f8:d8:62:96:51:de:5c:de:40:e1:71:a0:b9:87:fb:4f:
e2:26:fe:bc:d5:92:88:18:78:22:ed:17:3b:07:7f:59:c4:25:
e4:b4:15:eb:16:ba:e2:6c:1d:4b:f5:38:6c:32:55:60:5d:4f:
4c:75:08:26:3c:44:04:f2:e9:c0:bd:4d:22:6f:8c:35:9a:a3:
92:35:2e:ae:25:5e:95:32:87:b2:75:03:65:dc:a7:8c:76:74:
36:1b:ca:e3:36:69:69:b4:de:74:bc:ac:f1:f0:8d:ce:a3:c0:
1c:dc:52:43:71:05:67:55:ca:cb:9d:f2:49:4b:6b:20:49:4c:
d8:12:10:bb:1c:f1:a0:40:e9:fe:2e:be:5e:24:e3:f4:d5:b8:
7b:37:c8:98:75:9a:fb:3d:1e:83:3d:a6:36:44:ce:c2:51:62:
82:90:e0:08:0d:82:55:39:d2:06:b7:12:61:e7:30:91:42:f3:
fc:d0:f4:ad:12:40:e7:36:8c:99:da:a8:64:41:04:86:ab:52:
1a:79:fb:72:db:ea:da:c3:9a:2a:ea:ac:d4:4b:2f:f1:4b:9f:
f7:d7:05:84:1c:1f:90:04:8a:e3:9f:e8:36:c2:de:03:54:ef:
13:84:d5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:09 2023 by rpki-client on console-ams.rpki-client.org