Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/42be5f-2432-4899-a4ff-198adda5a281/1/ZvUq3RlSCzPbscLKVA_jaV-d2ss.roa
File: ZvUq3RlSCzPbscLKVA_jaV-d2ss.roa (raw, json)
Hash identifier: kWWTrb0ALM3D+xr9sqqOkxs9t+j77xN9CeMEpnZ9Ehw=
Subject key identifier: 66:F5:2A:DD:19:52:0B:33:DB:B1:C2:CA:54:0F:E3:69:5F:9D:DA:CB
Certificate issuer: /CN=e4e17e07b04dc76c9d6c91fafc2d5a8402c64b8e
Certificate serial: 041B8313
Authority key identifier: E4:E1:7E:07:B0:4D:C7:6C:9D:6C:91:FA:FC:2D:5A:84:02:C6:4B:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5OF-B7BNx2ydbJH6_C1ahALGS44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/42be5f-2432-4899-a4ff-198adda5a281/1/ZvUq3RlSCzPbscLKVA_jaV-d2ss.roa
Signing time: Sat 01 Jan 2022 03:56:55 +0000
ROA not before: Sat 01 Jan 2022 03:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206141
IP address blocks: 185.155.188.0/22 maxlen: 22
147.28.48.0/20 maxlen: 20
2a07:9540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68911891 (0x41b8313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4e17e07b04dc76c9d6c91fafc2d5a8402c64b8e
Validity
Not Before: Jan 1 03:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66f52add19520b33dbb1c2ca540fe3695f9ddacb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:95:4f:8a:38:e9:de:87:48:8a:8f:3d:98:4c:
6f:33:1e:19:4b:dc:56:fd:b2:8f:7b:c8:8b:45:71:
2b:3a:67:aa:62:d8:34:dc:f7:72:64:11:99:e0:dd:
d6:8e:0f:64:fb:ee:b1:76:ac:ed:f4:8b:ea:f5:22:
de:96:69:16:2a:8e:ed:fc:d2:db:01:e1:51:4f:c0:
97:f7:58:c7:53:ee:18:0a:1a:79:52:f7:cb:cb:e9:
a6:1c:da:4c:e8:d4:ca:90:50:8a:33:f9:8c:0e:95:
f1:21:88:fc:26:03:5b:19:23:98:6c:6f:48:d0:13:
cd:a2:9d:7d:c5:d6:82:83:e2:c6:91:fb:8f:c5:ec:
03:1e:96:da:86:cc:18:a4:0b:58:d4:25:de:c4:b9:
4c:82:03:d0:ad:d4:a6:48:e3:05:c9:9f:3b:c9:5f:
12:68:4d:b9:6b:60:23:79:11:f0:7d:b1:c5:f0:9c:
bc:98:ab:fd:c9:b9:2d:c3:4a:92:ab:f1:bb:0e:89:
df:c4:a3:0a:d5:76:61:3b:67:69:1f:e8:52:a3:93:
a1:7b:9d:be:1b:74:a2:6e:4d:f2:1a:17:b9:cb:11:
c4:03:3a:e1:8f:fe:50:f2:d0:4b:9c:1b:4a:68:1a:
83:8c:8b:13:53:ec:24:d6:62:b5:eb:12:75:f9:b9:
27:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F5:2A:DD:19:52:0B:33:DB:B1:C2:CA:54:0F:E3:69:5F:9D:DA:CB
X509v3 Authority Key Identifier:
keyid:E4:E1:7E:07:B0:4D:C7:6C:9D:6C:91:FA:FC:2D:5A:84:02:C6:4B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5OF-B7BNx2ydbJH6_C1ahALGS44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/42be5f-2432-4899-a4ff-198adda5a281/1/ZvUq3RlSCzPbscLKVA_jaV-d2ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/42be5f-2432-4899-a4ff-198adda5a281/1/5OF-B7BNx2ydbJH6_C1ahALGS44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.28.48.0/20
185.155.188.0/22
IPv6:
2a07:9540::/29
Signature Algorithm: sha256WithRSAEncryption
1f:cf:c0:4b:8d:9d:22:7e:fd:d8:77:b2:7a:01:4f:be:44:0a:
64:ee:91:48:c8:b9:70:8e:0f:f6:0f:b1:4f:38:a2:19:5d:4b:
87:41:57:d9:83:a1:ab:83:dc:38:bf:13:7e:23:4b:20:b2:09:
31:f1:c1:0c:05:01:b8:92:52:e0:ae:c6:d8:92:e8:0f:ee:87:
0e:e0:24:d1:90:67:56:73:ae:8c:27:72:15:dc:db:4b:0f:f3:
e5:7f:00:8a:ca:07:79:23:ad:2b:32:4c:22:f3:0c:12:85:fe:
89:e2:14:b1:a9:97:1e:66:53:ac:54:11:c3:69:f5:27:37:84:
72:e8:1c:6c:42:4b:ef:7a:27:c7:26:aa:7c:2f:59:a9:4f:16:
22:11:b7:3a:ab:d1:15:77:61:c0:fe:4e:db:f9:c0:6a:4f:82:
ef:20:8c:bd:96:d8:b4:f9:2e:97:ee:f0:ee:da:df:58:ee:32:
07:1e:d6:7e:68:04:ff:f3:93:f1:4b:49:6e:08:ad:34:df:7c:
2c:7d:90:ab:7d:76:6c:93:73:b8:75:eb:fa:04:15:47:bf:83:
5d:88:8f:72:fc:72:10:c5:41:db:2c:2f:59:9f:26:fb:fb:77:
c2:9b:7d:78:9a:7b:cd:39:2d:35:09:52:c7:a5:5f:e3:a2:64:
48:0c:8b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:55 2024 by rpki-client on console-fra.rpki-client.org