Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/ZBFq0SBrOhk4wtTOV0Nr5AMko3I.roa
File: ZBFq0SBrOhk4wtTOV0Nr5AMko3I.roa (raw, json)
Hash identifier: 5fFHSqplE+pOeCsa0HSV75u/sgwQSNZ1QdMMp6BrQwk=
Subject key identifier: 64:11:6A:D1:20:6B:3A:19:38:C2:D4:CE:57:43:6B:E4:03:24:A3:72
Certificate issuer: /CN=e68ce86d409e824376560fe3b1a168f2ba0082e3
Certificate serial: 01831CBEB60C83F9A60B9A1DC2467793D025
Authority key identifier: E6:8C:E8:6D:40:9E:82:43:76:56:0F:E3:B1:A1:68:F2:BA:00:82:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ozobUCegkN2Vg_jsaFo8roAguM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/ZBFq0SBrOhk4wtTOV0Nr5AMko3I.roa
Signing time: Thu 08 Sep 2022 10:56:43 +0000
ROA not before: Thu 08 Sep 2022 10:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47961
IP address blocks: 91.207.34.0/24 maxlen: 24
91.207.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:be:b6:0c:83:f9:a6:0b:9a:1d:c2:46:77:93:d0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e68ce86d409e824376560fe3b1a168f2ba0082e3
Validity
Not Before: Sep 8 10:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64116ad1206b3a1938c2d4ce57436be40324a372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9a:c2:11:eb:7e:84:ee:f7:31:a6:be:fe:38:
c0:24:62:62:91:f7:10:aa:c7:02:e1:c0:e6:1c:a9:
79:1c:dc:af:1d:25:7d:48:48:60:88:29:50:20:0b:
20:01:0e:e9:22:ab:fa:74:af:fa:80:a4:97:c2:ca:
4f:89:91:fc:fb:48:d5:aa:ab:ec:54:be:6f:37:d2:
7d:ec:a9:5b:ff:5e:99:e9:5d:5c:13:da:2f:c2:be:
d5:ec:e2:3b:e0:6d:87:fb:a7:0e:02:e7:61:70:eb:
ad:16:f1:62:47:42:60:73:2e:43:89:21:06:78:ca:
20:15:31:e0:2e:8b:31:d7:bc:0e:ed:69:16:54:a1:
50:15:ff:b7:63:6a:10:eb:4f:14:c9:14:6f:80:95:
6e:45:2f:23:18:35:a8:fd:20:5e:1e:bf:8a:a7:f2:
cb:35:f0:55:57:06:6d:c1:e4:12:f7:f2:09:56:06:
1e:a9:c0:08:8d:93:29:53:7b:6e:22:eb:9b:c1:2f:
a0:48:00:ba:a5:d7:53:cf:b4:68:49:1a:a2:f6:d8:
cc:c1:40:ac:2d:b8:fe:e8:7e:04:58:61:9e:27:89:
5d:aa:c5:fc:a2:90:77:89:95:a6:79:2d:94:f3:1a:
a3:5a:8c:c1:fb:92:d2:3e:84:57:25:fc:49:2e:13:
32:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:11:6A:D1:20:6B:3A:19:38:C2:D4:CE:57:43:6B:E4:03:24:A3:72
X509v3 Authority Key Identifier:
keyid:E6:8C:E8:6D:40:9E:82:43:76:56:0F:E3:B1:A1:68:F2:BA:00:82:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ozobUCegkN2Vg_jsaFo8roAguM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/ZBFq0SBrOhk4wtTOV0Nr5AMko3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/5ozobUCegkN2Vg_jsaFo8roAguM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.34.0/23
Signature Algorithm: sha256WithRSAEncryption
42:88:b1:7f:bd:fe:e5:b8:0f:26:7f:07:d0:f7:cd:c6:cf:28:
ff:69:e0:dd:c5:7b:d6:69:0a:91:dc:26:58:89:af:3c:89:39:
ab:72:b1:2d:27:ef:89:ee:46:0b:d5:09:6f:71:46:43:81:91:
7c:83:2e:6f:b2:e5:9b:9e:fd:1e:da:97:f7:40:81:cc:f5:cc:
06:63:e9:41:76:1d:b3:d4:5e:cd:6c:bd:f6:4b:c0:59:cf:30:
b5:f7:1c:47:20:71:b9:1a:1b:e5:31:ea:42:d2:68:4d:d2:b2:
f4:b9:6f:1a:9d:c7:f8:4e:01:5c:12:61:ab:6b:4c:b5:ad:38:
cd:cf:af:85:77:37:13:b4:10:b7:63:24:5e:0f:0b:19:60:24:
40:01:ba:49:fc:8b:3b:eb:84:d2:57:e0:91:6b:55:63:a7:10:
2e:26:dc:9e:c5:6d:35:fb:af:f8:f2:cd:5f:be:6d:17:83:05:
0b:65:53:6b:0e:0c:c7:2c:6f:65:eb:1e:73:21:b6:23:b6:75:
61:ba:c9:23:1b:b8:81:ea:3d:23:92:d9:fb:ac:c4:2a:e2:b6:
f5:4f:07:f3:c1:b7:60:1f:be:80:16:bc:38:19:2b:d0:2a:d7:
31:30:25:87:3e:58:a8:84:d3:d3:f6:9e:41:12:2c:1e:41:8a:
e3:30:fd:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org