Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/c5e498-c895-4354-be85-704eab6ca3e8/1/3zqpZ19JzLiTYSr2qzL1thrnqJQ.roa
File: 3zqpZ19JzLiTYSr2qzL1thrnqJQ.roa (raw, json)
Hash identifier: LRG6IRrZZskXw19M11HH69zibU0gSOljwsknKv6FshM=
Subject key identifier: DF:3A:A9:67:5F:49:CC:B8:93:61:2A:F6:AB:32:F5:B6:1A:E7:A8:94
Certificate issuer: /CN=20c7eac45c8dbb5e5efdd65c18814498603f0209
Certificate serial: 01840E2CA24CD47A327BA8CB2B01D0A3E39E
Authority key identifier: 20:C7:EA:C4:5C:8D:BB:5E:5E:FD:D6:5C:18:81:44:98:60:3F:02:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMfqxFyNu15e_dZcGIFEmGA_Agk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/c5e498-c895-4354-be85-704eab6ca3e8/1/3zqpZ19JzLiTYSr2qzL1thrnqJQ.roa
Signing time: Tue 25 Oct 2022 08:05:16 +0000
ROA not before: Tue 25 Oct 2022 08:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203402
IP address blocks: 185.134.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:2c:a2:4c:d4:7a:32:7b:a8:cb:2b:01:d0:a3:e3:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c7eac45c8dbb5e5efdd65c18814498603f0209
Validity
Not Before: Oct 25 08:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df3aa9675f49ccb893612af6ab32f5b61ae7a894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:39:9c:95:a6:17:dd:e5:6d:73:7d:45:c2:a9:
a7:79:4b:a9:75:25:8a:df:93:41:9e:bd:78:8f:21:
f7:f9:1b:56:78:12:f2:68:75:74:82:c5:f9:57:2a:
a4:ac:cd:67:70:30:19:e2:ea:de:f3:79:35:8f:95:
91:5f:e8:db:07:19:c3:51:3b:a0:8b:f6:8c:b8:9b:
0a:45:71:95:ab:71:2d:1d:c1:51:ba:b9:ea:19:57:
e2:64:13:c5:51:0c:39:d9:b5:6b:05:36:b8:e0:24:
40:46:1f:35:f0:4c:df:a6:6b:50:6f:9e:ff:41:e0:
20:73:d7:0d:eb:b7:55:86:e5:b6:b6:f4:d9:e1:f6:
13:53:73:48:fb:da:fb:11:a4:54:1e:c8:ee:46:2f:
69:be:08:21:cb:d7:01:87:8f:c4:d2:c8:15:f5:40:
df:79:c9:77:af:b8:38:1a:8f:c4:78:91:d0:bc:6f:
d7:67:fb:a7:7d:54:35:d6:15:b5:12:cb:56:fe:ab:
fb:b4:c6:9f:e0:30:93:b9:78:64:0e:06:82:73:97:
ac:95:ee:20:8c:24:ab:31:5b:83:46:69:35:19:c2:
ce:c7:6d:53:5b:a3:fd:52:fe:7b:68:ca:87:69:cb:
80:84:d7:28:0f:76:28:54:e7:14:d1:15:c7:e6:2b:
d8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3A:A9:67:5F:49:CC:B8:93:61:2A:F6:AB:32:F5:B6:1A:E7:A8:94
X509v3 Authority Key Identifier:
keyid:20:C7:EA:C4:5C:8D:BB:5E:5E:FD:D6:5C:18:81:44:98:60:3F:02:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMfqxFyNu15e_dZcGIFEmGA_Agk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c5e498-c895-4354-be85-704eab6ca3e8/1/3zqpZ19JzLiTYSr2qzL1thrnqJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c5e498-c895-4354-be85-704eab6ca3e8/1/IMfqxFyNu15e_dZcGIFEmGA_Agk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.116.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:62:eb:13:35:4f:5e:a4:33:4d:a5:9d:e9:0b:27:c1:64:b3:
2e:06:d8:14:b0:6a:8e:58:f9:ea:9d:bd:69:8f:9f:ff:a3:6c:
ad:9e:07:e1:35:ad:b4:dd:63:68:05:74:c0:e0:a2:4d:7b:a0:
9e:02:2a:88:39:a6:cd:08:a2:ee:89:dd:e9:27:64:08:9e:68:
94:4e:19:12:67:c2:03:b1:d2:c6:5b:fb:8b:b6:f4:b6:06:8a:
1c:83:d8:9d:c7:ad:1e:7a:31:7c:42:4b:4e:66:e3:e5:bc:af:
26:9b:aa:55:80:bc:29:38:1f:26:7d:c5:cf:17:ce:6a:a0:e5:
ef:f2:15:b8:1d:b6:86:9a:09:92:b1:ea:d3:7b:2a:13:84:6a:
28:33:80:13:da:bc:96:8e:6f:af:e8:61:1f:f2:62:79:d2:d1:
5b:95:0c:d3:d4:1a:6e:a6:6e:0a:81:62:b0:b7:be:c1:9d:23:
41:7a:3f:e1:65:9b:49:79:c0:bb:02:d7:bb:df:90:d7:bc:87:
30:fe:96:a0:f9:eb:b9:15:46:21:d7:a9:f0:f6:c8:f5:ce:d9:
64:c6:22:05:0e:ed:fd:cf:94:be:5f:3c:5d:f6:73:3a:c2:00:
49:89:d3:af:1a:86:f7:c5:ec:23:81:8d:c0:c2:aa:d8:53:1a:
7b:97:e0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:00 2023 by rpki-client on console-fra.rpki-client.org