Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/dzxuz9ZzO07mT9aOyHPOBBj652Y.roa
File: dzxuz9ZzO07mT9aOyHPOBBj652Y.roa (raw, json)
Hash identifier: iOvS55mVyyGm16i/KSHDYJ1yHoUtD5mWnaKkIHLXaU0=
Subject key identifier: 77:3C:6E:CF:D6:73:3B:4E:E6:4F:D6:8E:C8:73:CE:04:18:FA:E7:66
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01845944604CC441BB08E150C23A77F82767
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/dzxuz9ZzO07mT9aOyHPOBBj652Y.roa
Signing time: Tue 08 Nov 2022 22:02:44 +0000
ROA not before: Tue 08 Nov 2022 22:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13259
IP address blocks: 83.171.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:59:44:60:4c:c4:41:bb:08:e1:50:c2:3a:77:f8:27:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 8 22:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=773c6ecfd6733b4ee64fd68ec873ce0418fae766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:f9:c2:ad:b1:be:d3:b6:c1:64:03:61:92:
90:95:8a:4d:30:72:6f:4b:82:e7:74:b3:07:fd:ea:
bb:1e:0d:fd:9b:f8:d4:59:9e:5e:1b:58:e9:47:bf:
94:fa:84:e2:8e:7c:e5:c8:46:ea:d8:af:e6:53:39:
48:02:c9:a8:dc:4e:22:e7:52:d2:bc:40:b4:c7:ee:
54:76:1a:89:ec:bf:25:13:c9:66:52:86:84:81:48:
a5:53:14:7c:cd:ca:9c:da:2d:ed:49:51:56:01:8a:
b1:f1:9b:7a:4b:97:da:f3:f8:38:4c:16:dd:45:5d:
92:f6:cd:2e:52:b7:4b:12:6c:40:5e:88:3e:26:aa:
50:07:86:46:cf:4f:22:d3:d6:1b:bd:1e:16:9c:74:
6b:55:c1:51:23:3e:e2:64:fe:1a:df:b7:13:01:81:
aa:09:44:71:ca:ff:dd:8c:33:eb:55:37:30:8f:90:
7e:27:17:71:31:b8:de:94:39:ae:b6:61:cc:27:92:
cb:61:78:ed:bf:89:46:1e:36:f9:0b:66:1d:d9:bb:
fe:fd:9f:27:e6:ae:d9:85:61:f5:3a:9f:dd:87:3e:
5f:39:19:9c:2d:c2:c6:46:d2:4c:0f:c1:14:eb:ba:
80:5d:62:65:e6:57:64:96:13:c4:a5:95:87:e1:d7:
37:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3C:6E:CF:D6:73:3B:4E:E6:4F:D6:8E:C8:73:CE:04:18:FA:E7:66
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/dzxuz9ZzO07mT9aOyHPOBBj652Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.241.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a8:c9:59:05:ae:28:1a:1e:91:84:91:d0:f3:8a:12:44:68:
04:b5:61:81:4e:78:b3:ee:f6:55:d3:86:8f:bc:47:d1:14:4f:
39:8d:de:00:10:57:a4:59:df:21:1e:c6:9b:8a:fb:e8:c8:61:
46:28:f0:64:65:4e:ae:12:4e:59:1d:bc:03:96:f2:8d:ec:b0:
9d:af:1d:5d:62:c2:e9:8a:5f:6e:76:7f:00:ac:25:98:20:6c:
c5:28:b0:d1:e6:36:4c:b0:0e:6e:33:ae:ec:f9:5a:56:32:81:
ec:f0:83:fb:f5:81:ee:e9:10:b1:41:53:04:b8:93:a9:b7:63:
d8:00:e8:1f:4b:cb:94:7e:35:18:3a:69:b4:d1:30:ac:8b:d6:
9d:a1:ce:49:09:2c:22:01:86:db:86:e0:d4:b2:29:37:dd:c7:
9e:85:30:37:98:dd:03:e8:06:48:77:0e:2a:09:a0:45:c0:94:
9e:ba:a2:c1:1f:5b:e3:fa:70:96:a2:4d:de:1d:63:91:d2:03:
d0:3e:6f:51:f8:73:ad:2f:43:c6:69:36:56:d6:1a:06:52:b6:
dd:91:6d:a8:5c:6c:c5:cd:14:b3:91:e6:49:97:e3:55:db:d4:
43:b8:db:a4:a0:79:b5:b6:a4:6d:b1:7f:33:7f:b7:4d:31:32:
3a:ef:76:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:46 2023 by rpki-client on console-fra.rpki-client.org