Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/a8e04b-0dba-40ec-b126-f457d404ae2f/1/Czfu-MICDtIWm2bdtFoBPNKgnJA.roa
File: Czfu-MICDtIWm2bdtFoBPNKgnJA.roa (raw, json)
Hash identifier: 3ZNk35POOjBmQkes5cPVGMs5zdu+54XDFBIVeaFYuZw=
Subject key identifier: 0B:37:EE:F8:C2:02:0E:D2:16:9B:66:DD:B4:5A:01:3C:D2:A0:9C:90
Certificate issuer: /CN=2c88db81fdfbeccee75f4a9f698a3c1b3a84626e
Certificate serial: 051512E4
Authority key identifier: 2C:88:DB:81:FD:FB:EC:CE:E7:5F:4A:9F:69:8A:3C:1B:3A:84:62:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LIjbgf377M7nX0qfaYo8GzqEYm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/a8e04b-0dba-40ec-b126-f457d404ae2f/1/Czfu-MICDtIWm2bdtFoBPNKgnJA.roa
Signing time: Mon 30 May 2022 18:31:13 +0000
ROA not before: Mon 30 May 2022 18:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58096
IP address blocks: 193.160.204.0/23 maxlen: 32
91.220.69.0/24 maxlen: 24
193.105.114.0/24 maxlen: 32
185.154.72.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85267172 (0x51512e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c88db81fdfbeccee75f4a9f698a3c1b3a84626e
Validity
Not Before: May 30 18:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b37eef8c2020ed2169b66ddb45a013cd2a09c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:96:6d:3f:43:6f:00:e9:61:a7:11:22:d8:36:
83:f4:8d:e6:d7:56:2b:a3:2c:45:06:9a:8d:f0:28:
78:01:45:1a:4e:b2:54:2d:49:a2:b0:a9:49:c8:89:
33:e5:16:23:48:50:42:90:f0:f3:75:ad:60:ad:cc:
fd:e6:49:eb:16:46:de:a0:27:87:8f:f4:b7:d7:ad:
b4:26:fc:e0:59:05:56:4f:88:e9:fc:30:56:20:ff:
a5:bf:9e:86:cf:0f:4f:1e:05:c7:7a:57:02:92:db:
a1:09:38:ed:8e:ce:14:e2:95:c7:d3:5c:b4:2c:ab:
c0:78:c7:61:dd:bd:95:28:b8:5c:02:f1:45:1e:be:
8c:ac:59:5c:27:d1:60:08:7d:b3:98:d5:fa:eb:19:
77:22:90:08:24:5f:c9:ee:80:ed:e0:cd:44:11:c4:
2d:a1:92:21:b9:94:37:f6:74:8c:b3:4d:d8:49:8d:
ca:69:ad:d9:b6:d7:b9:e2:29:a0:14:e9:6f:ea:b3:
24:07:c7:40:7a:e2:cf:85:bd:ca:77:dd:3a:3b:bd:
16:fc:03:db:f0:b0:ac:0c:4e:ba:be:83:28:34:61:
d8:7a:02:b3:64:f5:d0:3f:af:0e:8e:31:0a:3f:e5:
d6:2b:5c:0a:42:51:9a:7f:c2:d8:86:33:68:dd:c7:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:37:EE:F8:C2:02:0E:D2:16:9B:66:DD:B4:5A:01:3C:D2:A0:9C:90
X509v3 Authority Key Identifier:
keyid:2C:88:DB:81:FD:FB:EC:CE:E7:5F:4A:9F:69:8A:3C:1B:3A:84:62:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LIjbgf377M7nX0qfaYo8GzqEYm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a8e04b-0dba-40ec-b126-f457d404ae2f/1/Czfu-MICDtIWm2bdtFoBPNKgnJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a8e04b-0dba-40ec-b126-f457d404ae2f/1/LIjbgf377M7nX0qfaYo8GzqEYm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.69.0/24
185.154.72.0/22
193.105.114.0/24
193.160.204.0/23
Signature Algorithm: sha256WithRSAEncryption
62:98:f3:17:37:30:51:e3:05:c4:2a:83:97:a3:85:88:4c:01:
90:d9:35:7a:37:7c:70:10:12:a6:66:8f:57:f5:ad:4e:ac:cd:
7a:53:9c:9d:02:6f:e4:92:b7:5a:6f:07:1d:2b:66:cf:42:4d:
f6:d3:42:ba:14:c9:9c:d3:47:1f:b6:cd:dd:04:07:1b:05:a9:
ad:8d:9b:c5:eb:bc:0e:dd:13:d1:2a:c1:c0:d0:84:95:cb:5c:
bd:ea:ab:9b:3a:2d:1a:cb:1d:87:04:c2:12:c7:35:54:a3:14:
1f:27:bf:5d:37:63:6b:ef:16:9c:26:77:0b:9d:94:84:63:39:
be:1e:ba:fb:fd:4f:5a:d0:b5:41:8d:59:4e:9f:35:4a:89:ac:
f1:32:d3:15:86:9c:9f:3f:2c:9d:e6:45:28:d2:77:bb:ed:6f:
cd:03:ef:55:0c:9d:ed:45:32:b3:db:a8:3b:10:b8:24:ac:f6:
da:7d:71:86:5b:92:1f:d3:cc:fd:26:e6:da:b5:54:e1:90:5c:
ae:80:38:f0:30:cc:a5:af:d5:95:ce:da:fc:bd:65:51:7b:10:
4a:8a:0e:29:b6:0d:16:eb:10:42:fe:37:4d:cc:68:91:11:f3:
4d:8b:cd:84:a6:10:c9:1d:20:eb:52:27:73:6f:35:1a:e0:76:
a1:ea:e9:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:25 2024 by rpki-client on console-fra.rpki-client.org