Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/fKzlgcSdRVJEW-dDdGHx9CgEgjM.roa
File: fKzlgcSdRVJEW-dDdGHx9CgEgjM.roa (raw, json)
Hash identifier: c417qCaTLHx016Y/c/ercC/NGs++pw1pO4UXMU5F+cw=
Subject key identifier: 7C:AC:E5:81:C4:9D:45:52:44:5B:E7:43:74:61:F1:F4:28:04:82:33
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 018368CD4D63D37C9436E1C2BE33C5FA9E19
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/fKzlgcSdRVJEW-dDdGHx9CgEgjM.roa
Signing time: Fri 23 Sep 2022 05:23:48 +0000
ROA not before: Fri 23 Sep 2022 05:23:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213006
IP address blocks: 185.21.135.0/24 maxlen: 24
195.182.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:68:cd:4d:63:d3:7c:94:36:e1:c2:be:33:c5:fa:9e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Sep 23 05:23:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cace581c49d4552445be7437461f1f428048233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ac:9a:5f:d0:fb:b2:fb:ac:52:2d:10:92:f1:
59:0a:26:46:67:f2:8a:dd:14:3a:2c:57:64:70:e1:
79:f5:cb:80:05:ac:5f:4c:f7:0f:7f:8d:b5:95:10:
ab:e4:b2:8d:26:19:49:49:0f:96:ed:d8:26:d0:0e:
f0:5a:d7:1d:68:04:4a:f6:d4:ca:3e:6e:1d:aa:b9:
4d:fd:31:17:79:75:8e:8a:bf:15:1f:e6:7c:fe:80:
f5:b7:8b:8f:1b:30:09:cb:28:f6:d2:9a:26:32:41:
f6:c5:6c:1c:34:c4:2f:db:a3:2b:48:d5:27:e0:d7:
bb:bb:90:be:98:4c:14:de:3b:fd:9a:0b:f2:7d:14:
dd:e0:71:90:0d:26:33:72:97:44:3a:b6:92:1d:72:
54:b6:68:1c:ad:50:96:88:7e:82:56:24:07:0c:2c:
36:9c:9f:7a:b7:73:7e:d9:78:75:ea:0f:aa:41:a2:
7d:f2:c2:ce:bb:d4:f2:be:59:c0:56:fb:be:28:c9:
d8:5e:32:e5:fc:d4:4d:24:a2:02:35:25:d7:86:27:
c4:cc:84:e1:66:63:69:99:1e:cb:6a:b8:5f:5e:da:
c8:bb:50:d4:cb:c5:e0:58:fe:ed:a0:56:f3:05:f2:
86:11:4e:05:59:69:e9:a2:e9:66:44:b8:f4:dd:45:
7e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AC:E5:81:C4:9D:45:52:44:5B:E7:43:74:61:F1:F4:28:04:82:33
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/fKzlgcSdRVJEW-dDdGHx9CgEgjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.135.0/24
195.182.204.0/24
Signature Algorithm: sha256WithRSAEncryption
28:21:57:3d:a5:df:b5:11:5e:18:20:f9:8f:bd:c2:21:2d:cf:
61:07:50:21:02:29:0a:d6:7d:c5:24:d2:c2:0d:88:a0:c2:69:
94:91:bf:c0:ba:26:73:b6:76:3d:74:3d:3a:fb:5c:11:4d:ed:
a6:0f:12:af:94:22:b5:db:f9:00:da:a5:ca:7e:4f:74:4e:c4:
cb:58:8a:4a:cf:42:63:e9:f1:67:50:d2:ac:e2:2e:b6:23:78:
80:ca:dd:86:01:d0:a0:37:dd:42:1d:59:97:4e:bb:f9:fd:88:
b0:85:09:17:e7:ca:69:c9:56:99:92:f6:14:28:86:56:04:31:
da:b3:5d:40:10:77:8c:8c:4d:1c:2b:10:83:6a:1d:88:28:cd:
d7:53:15:3d:f8:d7:0f:48:8f:e3:f5:31:dc:71:46:6e:b7:ae:
2d:50:e0:1a:b4:b0:ba:05:ce:43:71:93:32:4b:0b:99:e6:66:
20:46:fb:31:e7:2f:48:d9:27:27:40:e2:16:46:e5:48:41:8b:
ca:02:ba:0a:e9:f6:be:a2:50:59:2d:eb:80:a0:20:36:a2:2e:
04:70:28:23:45:1d:32:bc:fd:20:53:b7:94:94:8b:f0:9b:64:
42:2f:90:15:b3:48:a7:0e:b4:f3:8e:71:f5:b7:a8:65:b6:13:
c2:f8:a2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org