Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ZvW47bwJBMfYiF2e3KK8W8X2p9o.roa
File: ZvW47bwJBMfYiF2e3KK8W8X2p9o.roa (raw, json)
Hash identifier: eYw4DAW6YmQrsI+JnoKjWUiK2VWMzi4hNsNcbeDipe0=
Subject key identifier: 66:F5:B8:ED:BC:09:04:C7:D8:88:5D:9E:DC:A2:BC:5B:C5:F6:A7:DA
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 08E40EE8
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ZvW47bwJBMfYiF2e3KK8W8X2p9o.roa
Signing time: Thu 02 Jun 2022 12:06:20 +0000
ROA not before: Thu 02 Jun 2022 12:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 81.28.252.0/22 maxlen: 24
95.214.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149163752 (0x8e40ee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jun 2 12:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66f5b8edbc0904c7d8885d9edca2bc5bc5f6a7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e7:96:d6:a6:e4:85:45:ba:b6:1f:05:ad:d9:
cc:65:16:46:dd:57:90:6e:a6:43:18:4e:67:0b:a2:
f7:7d:46:dc:ca:31:56:c6:c4:6c:d4:d9:bc:29:c2:
a7:99:d7:d5:67:26:a9:c0:b4:32:7e:2f:a9:34:b3:
34:3d:b0:32:77:68:43:d1:ac:30:e3:6a:15:e3:98:
25:df:c4:9b:7a:51:61:eb:df:8d:43:33:bb:9e:62:
74:ea:8a:de:41:d9:05:17:64:ce:f5:da:5e:e2:b8:
d7:c2:3b:31:cf:28:89:5b:d6:63:44:a0:39:e4:7f:
72:e3:c9:ef:61:dd:3a:57:49:69:2b:b0:b6:1e:e1:
2a:c6:05:44:72:4d:e8:0f:c6:80:aa:9c:f1:df:3d:
15:b8:b0:75:a0:f6:bb:b9:5f:24:7b:c5:bb:ed:46:
cd:ee:cb:9f:15:6a:78:f4:7e:af:3a:be:2b:cd:38:
92:2d:a4:1f:70:fa:be:a0:1f:e2:a1:50:46:23:64:
93:b8:f6:b9:f6:87:8a:6b:86:1f:2f:a7:63:7d:f9:
b0:24:8e:88:8b:f9:86:a0:dd:9e:28:b9:97:9c:d2:
ec:83:14:00:71:00:1d:e3:55:d4:e7:b9:67:fe:e2:
47:df:86:9b:bd:ca:e8:35:21:fb:2f:eb:7d:2e:13:
c3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F5:B8:ED:BC:09:04:C7:D8:88:5D:9E:DC:A2:BC:5B:C5:F6:A7:DA
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ZvW47bwJBMfYiF2e3KK8W8X2p9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.252.0/22
95.214.176.0/22
Signature Algorithm: sha256WithRSAEncryption
61:fd:80:1a:35:39:d1:1b:0f:9e:25:6a:65:7f:7b:0d:81:36:
28:bc:38:a3:8a:77:fc:68:03:1a:aa:cf:7f:de:80:59:05:d8:
54:08:3b:2e:aa:71:81:64:15:4f:4f:12:e0:c9:b0:13:43:a1:
9f:d1:7a:90:62:52:89:00:61:12:0b:e4:3c:a6:5c:64:ec:75:
ff:31:09:fc:97:1b:db:c3:07:45:39:37:14:dc:53:96:0a:87:
34:42:74:51:79:3e:8c:07:c6:1b:a6:8e:f2:0a:3a:1a:b0:1d:
15:d0:58:c0:dd:aa:23:5f:a9:05:4a:c4:a2:32:52:c5:ce:0b:
f9:1f:fb:28:f8:b7:07:0a:92:bf:02:75:59:97:5f:71:3e:4d:
67:1f:42:04:aa:d8:69:84:10:43:ce:fd:bd:a2:06:16:ab:1e:
f4:13:9b:8c:d6:47:f0:b1:9e:9f:22:b6:fb:00:34:54:d7:40:
c2:91:35:54:8e:17:d2:f8:fb:e9:88:9c:09:4c:19:bc:6b:e7:
b6:61:f3:a8:22:87:7d:ff:0c:62:06:15:87:d9:ff:d9:22:9a:
82:5a:e8:1f:75:f8:b8:7e:36:03:c4:92:6a:46:8d:53:de:9f:
53:c9:99:b2:62:90:7d:af:bc:6d:0e:0d:40:34:2e:06:95:0b:
63:e9:ba:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:19 2023 by rpki-client on console-fra.rpki-client.org