Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f1edc0-63c1-42b4-a040-3ff926085527/1/zH95ORcmSoFvIlarv3qZLwKaMlA.roa
File: zH95ORcmSoFvIlarv3qZLwKaMlA.roa (raw, json)
Hash identifier: qcikpfI6aCue44bCITMKrkEXy1d38QQillEfkAdgjz8=
Subject key identifier: CC:7F:79:39:17:26:4A:81:6F:22:56:AB:BF:7A:99:2F:02:9A:32:50
Certificate issuer: /CN=35d1cdaba31559de12ab19d79f1ae2d218c379f7
Certificate serial: 0B3D781E
Authority key identifier: 35:D1:CD:AB:A3:15:59:DE:12:AB:19:D7:9F:1A:E2:D2:18:C3:79:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdHNq6MVWd4SqxnXnxri0hjDefc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f1edc0-63c1-42b4-a040-3ff926085527/1/zH95ORcmSoFvIlarv3qZLwKaMlA.roa
Signing time: Sat 01 Jan 2022 07:56:20 +0000
ROA not before: Sat 01 Jan 2022 07:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200553
IP address blocks: 185.100.33.0/24 maxlen: 24
185.100.32.0/22 maxlen: 22
185.100.34.0/24 maxlen: 24
185.100.35.0/24 maxlen: 24
185.100.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188577822 (0xb3d781e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d1cdaba31559de12ab19d79f1ae2d218c379f7
Validity
Not Before: Jan 1 07:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc7f793917264a816f2256abbf7a992f029a3250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0d:43:41:f6:15:71:cf:2e:fe:1b:5e:a3:05:
1a:d2:b2:eb:00:c7:53:39:5e:96:d4:70:43:2e:73:
7c:ae:eb:dd:b3:cb:89:b0:15:e4:57:e4:be:31:a7:
3f:1a:b7:6e:aa:51:ff:59:5a:74:71:d6:30:fd:e5:
dc:0f:78:e9:40:02:36:a8:c5:a7:2c:a6:3a:19:fb:
05:63:a7:b2:80:99:04:4d:5a:12:d7:e3:2f:e9:a3:
5b:a2:90:27:30:74:04:95:ac:06:91:73:a9:26:ca:
73:15:d5:6c:06:d2:77:39:32:59:d0:64:a1:8d:95:
26:6c:da:73:05:48:5a:9d:35:0b:b3:03:a5:f0:96:
1d:be:99:df:fd:35:fe:9c:2c:c0:f2:3d:65:f7:65:
65:8c:8a:6f:74:8c:6c:69:1e:bb:30:1e:15:1b:1a:
6f:f7:93:40:27:64:fc:97:12:04:b5:8f:54:f3:4c:
94:a2:5f:9d:69:43:72:19:46:ce:f4:f4:da:94:4d:
79:51:ff:74:c5:4b:46:79:1d:d7:b6:15:53:28:57:
53:15:c8:1e:81:a1:db:f9:ae:7e:66:30:8d:09:e7:
83:ac:95:26:86:d3:b6:f1:2c:5b:b1:d4:90:59:13:
b3:b5:70:83:7f:8a:3b:e8:fd:4d:ef:6c:88:cb:88:
1e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:79:39:17:26:4A:81:6F:22:56:AB:BF:7A:99:2F:02:9A:32:50
X509v3 Authority Key Identifier:
keyid:35:D1:CD:AB:A3:15:59:DE:12:AB:19:D7:9F:1A:E2:D2:18:C3:79:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdHNq6MVWd4SqxnXnxri0hjDefc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f1edc0-63c1-42b4-a040-3ff926085527/1/zH95ORcmSoFvIlarv3qZLwKaMlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f1edc0-63c1-42b4-a040-3ff926085527/1/NdHNq6MVWd4SqxnXnxri0hjDefc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.32.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:86:8b:2c:a9:a3:04:ef:1f:53:bd:95:e8:12:15:64:86:60:
61:10:6e:3f:c0:d5:29:5b:72:19:d4:64:50:0c:7d:63:c8:62:
8c:4c:f6:51:22:b0:49:9d:cf:3c:d8:12:71:05:ae:72:6c:b9:
b2:d8:5d:6a:97:34:d6:4e:9a:d2:a5:07:27:3d:f6:27:51:25:
c5:78:4f:ba:67:75:c4:91:66:bd:78:0d:97:89:f6:ec:fe:40:
96:c8:ce:92:1e:b4:e7:d0:4e:2c:b0:bd:76:ea:99:79:19:e6:
5c:f3:9c:b1:cd:a1:44:bc:30:a4:da:0a:f3:4a:df:6a:f9:dc:
17:90:e3:ac:f4:d4:f2:9a:db:db:20:33:f7:23:3d:e9:80:7e:
46:8d:51:14:b7:bd:49:20:c3:fc:16:f3:06:da:52:5e:6a:df:
8c:75:78:36:02:96:00:7e:90:b6:b6:a8:a7:61:9c:5e:a1:bd:
f0:67:59:88:84:1c:30:b8:d2:04:c3:55:28:9e:ff:cb:1c:0b:
0b:96:4b:d8:94:f8:84:30:50:72:76:91:6e:8c:e6:0e:0b:f1:
34:01:7b:d1:e8:c8:91:48:3c:81:a0:16:29:4d:16:76:61:bd:
9d:f0:50:95:51:08:25:56:92:2e:81:aa:c5:fb:18:54:df:ad:
3a:d5:92:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org