Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Z7FqH8bW-xAZ4KnvtSlbxXWUeXE.roa
File: Z7FqH8bW-xAZ4KnvtSlbxXWUeXE.roa (raw, json)
Hash identifier: Ysnk+MwvhvZViGui9tA181pWARwdlwp3eMaGVMzk6Rw=
Subject key identifier: 67:B1:6A:1F:C6:D6:FB:10:19:E0:A9:EF:B5:29:5B:C5:75:94:79:71
Certificate issuer: /CN=a7436375fb0322756b55daff64e265ef72c0da52
Certificate serial: 0EB453A3
Authority key identifier: A7:43:63:75:FB:03:22:75:6B:55:DA:FF:64:E2:65:EF:72:C0:DA:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0NjdfsDInVrVdr_ZOJl73LA2lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Z7FqH8bW-xAZ4KnvtSlbxXWUeXE.roa
Signing time: Sat 01 Jan 2022 06:53:38 +0000
ROA not before: Sat 01 Jan 2022 06:53:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206575
IP address blocks: 185.155.224.0/23 maxlen: 23
80.253.160.0/24 maxlen: 24
80.253.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246698915 (0xeb453a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7436375fb0322756b55daff64e265ef72c0da52
Validity
Not Before: Jan 1 06:53:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67b16a1fc6d6fb1019e0a9efb5295bc575947971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:18:cf:2e:6a:ed:d1:e3:34:05:05:ff:8d:44:
ad:f4:57:b6:9e:24:5e:ce:56:ee:27:9b:13:ee:0d:
0d:25:a7:f3:77:f1:c6:b5:98:26:b2:d1:a3:df:d1:
92:b3:6c:1a:39:f0:ba:6b:a5:c2:8c:45:5f:3b:72:
df:bd:bd:ac:8a:61:cc:c7:7a:49:11:09:b1:a1:80:
e8:98:c8:f9:18:2b:9c:74:ba:4a:32:09:5d:a9:cd:
c1:e9:dd:81:63:44:b3:63:22:ae:8b:24:f4:b6:f0:
a0:d4:cf:72:c7:c6:8b:d9:12:bc:2a:40:60:43:6f:
19:69:11:05:a4:ee:4a:54:b5:ea:6e:68:a8:7a:06:
cc:d8:b7:2f:71:9d:d4:5e:0c:35:16:e1:20:5c:0a:
cd:c8:02:21:6c:d0:f4:2b:9a:3f:8f:21:97:b0:99:
c9:21:4d:2e:29:19:44:0b:ee:0a:fe:cc:75:5a:ba:
cf:ed:e0:a1:83:38:67:e5:53:59:a1:ab:90:d6:9f:
7a:e2:3e:4f:b1:40:35:44:21:96:10:3d:1b:fc:d6:
72:65:2d:98:b7:5d:42:49:c5:37:9e:bd:bd:1d:f1:
f4:ca:c1:c6:0b:4f:63:25:fe:c4:9f:4d:8f:da:c9:
09:31:3d:07:33:02:cf:62:ee:f8:2e:88:12:5f:a3:
bc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B1:6A:1F:C6:D6:FB:10:19:E0:A9:EF:B5:29:5B:C5:75:94:79:71
X509v3 Authority Key Identifier:
keyid:A7:43:63:75:FB:03:22:75:6B:55:DA:FF:64:E2:65:EF:72:C0:DA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0NjdfsDInVrVdr_ZOJl73LA2lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Z7FqH8bW-xAZ4KnvtSlbxXWUeXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/p0NjdfsDInVrVdr_ZOJl73LA2lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.160.0/22
185.155.224.0/23
Signature Algorithm: sha256WithRSAEncryption
65:e4:32:e7:ee:11:f0:96:d6:5e:65:e6:b2:44:f1:08:72:39:
78:df:62:02:43:99:d7:42:e7:7c:11:4b:82:9b:4c:c0:d3:b9:
4b:5d:08:2d:19:90:d0:6a:17:84:4f:d2:58:70:93:41:66:33:
c6:6c:23:18:30:7f:03:80:8e:0a:65:fe:79:55:d2:d9:ef:48:
08:83:c3:f5:b7:d0:f1:9a:02:74:33:6f:4b:54:df:03:2d:3e:
bf:84:84:3a:fa:4c:1f:42:56:0f:a4:17:06:6d:be:dd:e2:a4:
ce:bd:8e:b1:18:41:37:fc:11:f9:4f:27:0a:a0:be:f7:d3:b2:
12:e7:61:cc:e4:e3:0f:c1:98:f8:d3:2d:58:60:49:8d:57:6c:
5c:f0:43:ab:20:fa:dd:7b:7d:c7:7e:63:41:4a:50:9f:5a:83:
0c:0e:44:f0:5e:4e:87:1d:81:9c:6e:de:12:36:1b:7c:ae:b7:
25:0f:dd:1d:77:36:e6:d6:3d:a1:87:01:d9:93:fe:2e:d5:6f:
5e:b1:46:16:7a:07:e8:30:e3:a7:ea:69:61:83:5b:14:9a:c3:
d4:29:67:ce:9c:05:34:50:73:5e:82:a3:18:1b:b9:89:71:d1:
ad:b9:d4:ab:28:14:bc:ea:dc:ff:ee:33:b0:82:d6:27:61:16:
fa:99:7b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:08 2024 by rpki-client on console-ams.rpki-client.org