Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/zAc-vb4dC2j66YkRI6h1E8_Eq9g.roa
File: zAc-vb4dC2j66YkRI6h1E8_Eq9g.roa (raw, json)
Hash identifier: 63P4abSMMFqA0586MwsWlfiWUMdwiw9FhCpJkt23u0Y=
Subject key identifier: CC:07:3E:BD:BE:1D:0B:68:FA:E9:89:11:23:A8:75:13:CF:C4:AB:D8
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3AF5CE34
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/zAc-vb4dC2j66YkRI6h1E8_Eq9g.roa
Signing time: Wed 09 Feb 2022 20:58:04 +0000
ROA not before: Wed 09 Feb 2022 20:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206442
IP address blocks: 195.136.204.0/22 maxlen: 24
82.177.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 989187636 (0x3af5ce34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Feb 9 20:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc073ebdbe1d0b68fae9891123a87513cfc4abd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a7:a5:57:b5:5d:03:ed:7c:c1:57:d7:99:a4:
35:7d:2e:6f:fc:d0:c3:7f:96:60:8d:f9:8c:c0:8e:
67:e3:fc:9f:ba:6c:4d:9e:60:64:0d:c0:b3:23:5d:
63:d1:b5:47:1d:95:b9:af:c8:27:a7:00:bf:46:02:
e2:1d:1e:69:af:69:df:8c:0b:06:99:b8:e1:9c:23:
50:7f:c0:62:71:69:45:c8:c0:11:e7:50:b3:a8:f3:
7e:90:d3:ea:26:84:e0:96:cd:27:2a:a8:71:4e:9f:
3d:d6:91:d3:70:b6:da:ac:0f:82:01:64:29:33:35:
32:7f:c7:6c:57:3f:00:1f:fe:57:2e:68:93:00:10:
25:a5:06:0a:1b:80:f1:bf:ee:4a:4f:97:77:82:2e:
71:95:57:7c:94:bf:57:d4:aa:fa:c5:f5:ca:52:9b:
87:36:36:5d:1f:8c:24:e2:5a:81:cb:47:8f:85:16:
e0:34:a0:18:24:72:cf:dd:b3:57:5c:fc:56:32:57:
05:67:19:2b:0b:a4:a9:b4:c3:86:ce:4b:3f:29:19:
d0:f7:44:4a:2b:af:c7:67:e5:d5:15:b7:9f:a5:b0:
4f:32:13:6b:e4:38:d8:69:32:6f:a3:31:d4:ff:f3:
48:1e:13:3b:61:0f:f7:8a:72:63:4b:63:3d:a3:64:
73:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:07:3E:BD:BE:1D:0B:68:FA:E9:89:11:23:A8:75:13:CF:C4:AB:D8
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/zAc-vb4dC2j66YkRI6h1E8_Eq9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.202.0/23
195.136.204.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:7f:10:b5:90:c2:5e:d5:1d:c8:62:b3:56:45:63:bd:9f:8e:
b6:83:b7:c5:fd:63:d9:30:ac:89:ee:a0:94:c5:aa:ed:36:c9:
f1:c9:7a:5f:bc:20:03:35:e3:ef:49:3c:9b:ae:79:fe:0f:d3:
f7:ed:41:f6:f9:79:61:64:75:86:40:5e:00:91:17:44:b9:39:
bd:36:d4:87:ff:f1:57:90:b9:e4:38:42:46:d0:27:f8:e6:7d:
44:a4:0c:59:74:cf:a8:04:21:df:7b:5d:08:2d:93:46:bc:93:
96:23:06:87:5c:14:05:dc:b2:42:7e:be:f3:c7:e3:30:19:a2:
9b:7a:fd:05:2b:04:2c:fa:f2:6f:8b:a3:df:60:27:33:9e:10:
0f:0e:fb:5b:03:92:fd:a6:a9:5a:0e:a9:30:b3:ce:63:11:82:
f8:89:d2:72:ab:db:5b:82:5f:ec:8c:b9:5b:2b:cc:1c:2c:4c:
2b:c1:21:11:c5:d9:01:65:53:14:0d:e1:38:0c:15:01:34:2f:
cb:1a:49:90:78:e4:79:87:e5:69:08:a0:ef:02:3a:1e:c7:22:
04:37:ce:e9:94:2d:b8:f7:64:58:ab:ee:19:7e:e9:55:54:4d:
bb:30:09:af:86:1a:13:a0:90:e2:fc:68:fc:07:96:d8:a6:42:
50:6b:6e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org