Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/ZjO6l5sjrAAC51crOYLeaW4U-PI.roa
File: ZjO6l5sjrAAC51crOYLeaW4U-PI.roa (raw, json)
Hash identifier: fgIxEiNMRluR1FM2Z8HXuZF2FvsZ6/6IHCpd9xA/dyY=
Subject key identifier: 66:33:BA:97:9B:23:AC:00:02:E7:57:2B:39:82:DE:69:6E:14:F8:F2
Certificate issuer: /CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Certificate serial: 01821C081B6F8464C67B35D93F71BA644EF5
Authority key identifier: 82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/ZjO6l5sjrAAC51crOYLeaW4U-PI.roa
Signing time: Wed 20 Jul 2022 14:34:27 +0000
ROA not before: Wed 20 Jul 2022 14:34:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210043
IP address blocks: 155.140.82.0/24 maxlen: 24
159.50.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1c:08:1b:6f:84:64:c6:7b:35:d9:3f:71:ba:64:4e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Validity
Not Before: Jul 20 14:34:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6633ba979b23ac0002e7572b3982de696e14f8f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5c:c2:fd:5f:24:6b:f4:ea:07:74:bc:f6:a9:
2c:bc:32:dd:88:24:38:9b:f2:99:06:24:42:f8:d7:
af:7f:d4:1d:f3:ee:ce:4f:e3:bc:ec:9c:05:e2:05:
3f:b2:2e:b2:8c:56:51:93:5b:0d:5b:a4:fe:6c:94:
1d:c0:30:27:0e:19:e0:b1:db:f9:8c:48:53:05:1b:
2a:c0:72:22:a8:87:8b:b0:a5:93:25:ec:06:47:fd:
88:06:0d:e8:09:73:c5:28:c0:d6:4d:02:c7:75:05:
4e:62:52:c3:5e:fd:3d:59:f5:55:9b:6c:52:b1:59:
c6:86:28:ba:6a:cd:1c:6f:27:02:e8:04:67:3e:87:
ee:8d:3c:4a:7a:94:04:04:b5:56:a0:ee:57:8d:a7:
ba:94:46:54:ea:11:42:60:82:16:42:a9:17:bc:68:
db:18:a7:95:2a:04:19:43:4c:7b:4d:59:15:6d:f5:
1b:39:97:78:4d:e2:c2:81:38:79:33:a4:07:19:fc:
18:1e:b2:3e:03:94:18:18:e4:df:34:1a:4e:2e:1c:
0d:68:a5:ac:64:8b:f8:57:77:18:13:b4:fb:cf:b3:
e4:aa:60:33:d2:2f:34:2f:68:af:f7:e5:68:36:ff:
a1:69:da:ed:1c:8e:dd:14:68:4f:c5:fc:42:4c:df:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:33:BA:97:9B:23:AC:00:02:E7:57:2B:39:82:DE:69:6E:14:F8:F2
X509v3 Authority Key Identifier:
keyid:82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/ZjO6l5sjrAAC51crOYLeaW4U-PI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/gvolsvyxRoEUtziSirINh2G_iDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.140.82.0/24
159.50.174.0/24
Signature Algorithm: sha256WithRSAEncryption
49:55:7b:d3:92:e4:2d:93:00:3d:6a:5a:2b:23:71:0e:35:83:
35:e7:ee:02:18:95:c7:46:c7:ec:ae:e9:2c:2f:3a:16:c2:62:
1d:ad:7f:97:09:12:cd:0e:08:93:99:12:c5:0c:5b:72:32:c8:
93:87:3c:4a:93:e6:0a:d6:a5:e9:8f:79:35:bb:88:aa:8f:89:
d3:3c:bf:53:ea:d4:dc:7c:8a:8c:f8:58:42:39:a8:22:98:c0:
37:0e:a1:cc:5f:db:32:80:37:5a:b7:c6:d3:1f:02:4c:42:a2:
0e:37:13:58:fa:9f:80:d4:2b:eb:aa:39:2b:55:53:b0:3c:1d:
1c:e1:83:00:cf:5c:7e:eb:6e:1c:a6:b1:5b:07:af:d8:42:fa:
1a:63:45:c9:1a:8c:f1:d5:9c:2e:ac:d9:cd:ea:01:28:fc:f1:
15:8c:e4:49:df:f6:83:a8:30:c2:f9:f8:11:3d:15:b0:bd:6c:
75:ec:68:49:fe:2a:2e:c6:37:a2:53:36:46:e8:16:10:78:af:
0f:27:31:8f:5a:0a:40:6d:67:39:b8:79:a0:fa:65:53:d4:cb:
90:85:c1:77:6e:6b:d2:4a:3b:33:30:9a:33:11:30:5c:67:1f:
d8:83:93:f0:d7:cc:5c:93:0c:7b:27:88:cc:bf:6a:95:86:0c:
f9:a3:7e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:35 2024 by rpki-client on console-fra.rpki-client.org