Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ZlXOdhtNiJ-JkjnfyYAEnWTQoB4.roa
File: ZlXOdhtNiJ-JkjnfyYAEnWTQoB4.roa (raw, json)
Hash identifier: vQBP7gz7fzsrK2JOaAZEqWhv8NTbJFtT+P477Ug3NmA=
Subject key identifier: 66:55:CE:76:1B:4D:88:9F:89:92:39:DF:C9:80:04:9D:64:D0:A0:1E
Certificate issuer: /CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Certificate serial: 0182E8C785415D8F8149E6859331A815B040
Authority key identifier: B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ZlXOdhtNiJ-JkjnfyYAEnWTQoB4.roa
Signing time: Mon 29 Aug 2022 08:46:05 +0000
ROA not before: Mon 29 Aug 2022 08:46:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209030
IP address blocks: 82.202.191.0/24 maxlen: 24
82.202.190.0/24 maxlen: 24
82.202.189.0/24 maxlen: 24
82.202.188.0/24 maxlen: 24
2a13:c80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:c7:85:41:5d:8f:81:49:e6:85:93:31:a8:15:b0:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Validity
Not Before: Aug 29 08:46:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6655ce761b4d889f899239dfc980049d64d0a01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7a:e0:44:0b:70:0f:d9:66:30:69:fb:26:6b:
42:cd:91:a5:db:5f:f4:ca:da:cc:47:16:bf:f2:b6:
dc:f2:12:fc:54:5c:56:b3:3a:11:da:ae:2f:a5:6a:
e6:c8:dd:11:6c:49:b6:43:ea:f6:2d:67:f5:5f:23:
31:d8:46:1c:9b:72:c7:b9:a5:d0:95:cd:d8:b4:ce:
68:c9:67:f5:91:60:df:4c:65:37:df:21:66:48:d3:
66:60:db:cc:be:5c:b4:26:d8:ee:f2:f2:10:3c:d2:
a3:c0:3e:f7:fa:cc:57:db:fb:42:3e:94:24:f4:1f:
9b:3f:7b:5e:d0:28:98:9f:c3:c3:a6:77:f1:d4:88:
2c:19:96:ba:4e:ed:cc:7c:5f:b8:b3:d1:00:15:cc:
b6:02:dc:62:54:06:6b:73:3f:32:a5:95:f0:37:e4:
ba:42:dd:9e:3e:75:f3:90:17:22:a2:3f:cf:d7:a7:
ce:e7:2f:d7:e1:51:4f:17:1b:2f:59:42:29:5a:09:
49:d4:46:94:0e:5c:46:c3:c0:e3:1c:c7:e5:41:76:
f8:c2:10:20:61:48:22:be:62:5d:cd:0b:fe:da:e7:
69:75:47:fa:68:8c:00:9d:64:64:38:07:18:84:bf:
a7:0b:36:4a:72:61:e4:8d:43:9d:5c:37:92:df:9f:
30:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:55:CE:76:1B:4D:88:9F:89:92:39:DF:C9:80:04:9D:64:D0:A0:1E
X509v3 Authority Key Identifier:
keyid:B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ZlXOdhtNiJ-JkjnfyYAEnWTQoB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ta-je9Ddret_6iub5ksRCOIN6bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.202.188.0/22
IPv6:
2a13:c80::/32
Signature Algorithm: sha256WithRSAEncryption
04:8d:88:27:4e:cc:98:f2:b5:f4:aa:58:62:a5:b1:d8:f8:fa:
17:1b:ed:f3:47:14:83:84:8a:33:b1:5c:5c:89:2f:35:80:54:
aa:7f:e2:59:3f:5e:9d:29:1f:e9:e0:58:47:ca:00:40:39:20:
f6:fe:94:5a:38:79:a5:9a:ca:2f:02:ad:e6:18:b7:f8:78:0f:
38:ce:34:bc:87:47:43:a6:f3:89:90:d6:ce:8e:66:5d:0d:fe:
ee:b5:95:aa:f0:5e:f8:f8:ec:64:f3:79:97:68:17:56:5f:d3:
7b:39:b2:8c:7d:13:44:ff:71:1c:ad:af:94:cd:c1:36:6c:37:
41:61:ed:7d:a3:9f:44:cd:6b:1c:2b:da:d3:83:af:af:7b:17:
b8:1f:6c:13:e7:7e:50:07:a3:c2:72:81:2f:d6:aa:99:4a:5f:
67:9a:61:20:f8:57:d3:23:ac:94:44:52:df:38:9d:20:2e:71:
a1:45:29:45:12:1b:24:cd:0d:40:1d:5c:d6:1c:7d:e0:9b:69:
f5:22:b7:ac:b8:b5:bf:c4:6d:87:68:45:01:b2:24:84:ed:3b:
1a:06:56:81:af:3d:37:10:c7:43:83:1a:7e:aa:66:2b:95:ee:
93:45:15:2e:15:27:c9:12:a5:71:4a:e3:4e:c9:15:fc:da:49:
a2:cf:14:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-fra.rpki-client.org