Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/ZVrgVJiEsMDOPCg59vA57U930qI.roa
File: ZVrgVJiEsMDOPCg59vA57U930qI.roa (raw, json)
Hash identifier: 2LxZslUubNQX198dRfCCralIu14yK+IvHTGJUbWAU0A=
Subject key identifier: 65:5A:E0:54:98:84:B0:C0:CE:3C:28:39:F6:F0:39:ED:4F:77:D2:A2
Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Certificate serial: 0188101D8204353BB207DD56C066FC5CBBEB
Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/ZVrgVJiEsMDOPCg59vA57U930qI.roa
Signing time: Fri 12 May 2023 13:19:09 +0000
ROA not before: Fri 12 May 2023 13:19:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 185.28.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:10:1d:82:04:35:3b:b2:07:dd:56:c0:66:fc:5c:bb:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Validity
Not Before: May 12 13:19:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=655ae0549884b0c0ce3c2839f6f039ed4f77d2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:df:5e:32:f6:40:ef:4c:12:81:af:76:42:f9:
e8:14:4b:7d:0e:33:83:85:03:a2:20:3c:01:25:b7:
24:7b:a7:ed:f3:69:5e:d2:fd:91:50:75:7e:01:e1:
48:e7:c2:26:97:5e:35:00:01:1f:3c:f8:6e:d3:61:
8b:fa:89:0f:13:07:7d:d4:b6:52:64:ba:13:d7:a3:
29:9b:ef:bf:48:3f:d3:d2:a8:04:4e:f4:66:f8:29:
24:21:52:53:1a:88:a3:53:c7:aa:e4:8a:9e:35:ed:
10:13:60:2f:6b:9d:9f:70:5f:12:26:ee:ab:24:5f:
96:66:52:b3:3b:7a:af:b3:78:88:21:0a:65:3a:5d:
f2:fe:6d:e5:0c:3f:83:ae:75:fa:91:30:a9:27:7c:
30:df:c0:aa:ff:1e:dc:63:5c:15:32:54:5f:c5:12:
67:52:24:65:06:c2:2d:2b:40:13:12:dc:b8:91:5a:
c8:ee:3d:f9:bd:f0:7f:08:16:d6:6d:a4:3b:ae:b3:
dd:ff:ca:b0:7b:e7:12:a2:d1:86:d9:66:53:fd:61:
8d:b5:5c:29:47:0a:89:d7:fa:1f:3d:c0:14:63:9b:
b1:99:0b:5d:33:ba:8c:60:21:f8:4d:6d:51:3b:5f:
ad:5f:5c:6f:27:78:d0:a8:b9:80:c3:e5:d0:a9:df:
f4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:5A:E0:54:98:84:B0:C0:CE:3C:28:39:F6:F0:39:ED:4F:77:D2:A2
X509v3 Authority Key Identifier:
keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/ZVrgVJiEsMDOPCg59vA57U930qI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.62.0/24
Signature Algorithm: sha256WithRSAEncryption
48:46:36:bb:af:6f:00:e9:ca:0e:10:4f:37:d9:ea:43:2c:c0:
ab:0c:59:ba:6d:0b:f2:ea:f2:51:ef:08:b7:1d:bc:32:2a:8f:
ab:3a:ed:8f:a8:2a:04:33:2c:f7:49:db:e9:99:0b:bf:94:4a:
ff:3c:cf:29:ee:09:69:39:03:a5:1c:63:28:35:f8:44:e9:54:
44:58:b6:2b:c1:f7:f4:c2:5b:9c:dd:77:e9:3f:0c:d6:1f:81:
63:a0:bf:be:5e:02:a7:6e:e4:6c:43:93:53:87:26:00:c7:d2:
72:c6:f0:b9:d4:7c:d0:3b:ce:68:36:82:b9:6b:8c:47:27:86:
e2:c3:3c:fc:e2:14:7f:23:aa:ff:ab:e0:89:45:ac:13:f8:7b:
f7:16:67:6f:9e:5a:8b:be:e8:a7:94:d0:2e:88:e1:e8:f0:99:
24:7e:fc:a1:1c:da:58:77:92:61:3a:e0:56:1a:cb:96:ef:10:
ae:cc:dd:e6:74:45:e8:8a:39:5d:4c:db:b1:f1:6d:b9:89:1c:
93:96:83:ba:5f:ce:69:0e:04:a9:e3:54:1b:2c:0e:06:3e:ed:
8a:a1:e6:8c:9f:f1:9a:2e:5b:75:bf:3a:ae:c5:7f:bc:32:e8:
84:d8:58:12:a4:dc:d6:a5:12:36:0e:57:8c:f3:bd:76:a5:1d:
70:55:5a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:37 2025 by rpki-client