Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/znzfZZtoirMSvpqCy7Osx16DfBU.roa
File: znzfZZtoirMSvpqCy7Osx16DfBU.roa (raw, json)
Hash identifier: g7EtFCAdMb6VsJdnWsKPA/IsfR8zkYNPCRIe6f29T6c=
Subject key identifier: CE:7C:DF:65:9B:68:8A:B3:12:BE:9A:82:CB:B3:AC:C7:5E:83:7C:15
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 4D040AC5
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/znzfZZtoirMSvpqCy7Osx16DfBU.roa
Signing time: Sat 01 Jan 2022 15:56:16 +0000
ROA not before: Sat 01 Jan 2022 15:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60980
IP address blocks: 109.226.247.0/24 maxlen: 24
2a05:7400:c000::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1292110533 (0x4d040ac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Jan 1 15:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce7cdf659b688ab312be9a82cbb3acc75e837c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d4:c0:1a:3a:3e:c7:39:d0:b2:34:5b:7c:cf:
3b:99:18:27:a4:4a:c1:90:75:2a:22:3c:ba:3d:d0:
d4:24:af:d5:9d:f8:43:8f:65:d3:70:5e:3a:0e:d2:
ff:0b:1f:29:33:8c:da:d1:98:b6:ca:eb:a9:af:bb:
cf:f6:28:86:aa:f1:a8:a0:57:4b:29:d8:9b:d6:a2:
38:28:98:7d:7a:a8:30:34:31:7e:c4:78:09:8f:27:
26:21:6e:60:af:bf:96:7e:97:54:7b:46:be:08:68:
11:91:a5:40:7b:41:15:11:1e:f2:52:6c:03:9b:35:
39:06:5f:70:ee:33:47:12:ee:4c:a2:d2:77:a6:fc:
2d:63:3f:a9:42:22:6f:92:c5:0a:f9:28:d1:93:df:
1c:35:f7:50:e2:70:8d:67:0a:d9:9d:8c:0a:56:63:
8c:e7:56:f7:e4:15:ef:fb:9a:a1:b8:f5:67:65:a2:
eb:eb:bf:a8:1c:9e:77:ad:71:cc:a8:bd:ae:b8:97:
02:37:e2:a9:d3:d4:0c:2e:e6:72:d2:9a:a7:3c:41:
ad:96:95:3a:91:43:66:23:a6:55:cc:0c:7f:43:df:
e4:2d:b7:a2:3e:7d:20:64:04:c7:cc:fc:60:77:0d:
23:f7:90:4e:87:55:1c:d2:aa:13:17:b0:d3:eb:5c:
ce:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7C:DF:65:9B:68:8A:B3:12:BE:9A:82:CB:B3:AC:C7:5E:83:7C:15
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/znzfZZtoirMSvpqCy7Osx16DfBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.226.247.0/24
IPv6:
2a05:7400:c000::/34
Signature Algorithm: sha256WithRSAEncryption
4b:dd:f0:b9:e8:25:fc:8c:0d:00:56:21:02:71:52:a0:80:1f:
f5:fb:7f:f1:f3:d9:d2:c2:22:82:f9:8b:31:a1:41:01:55:6a:
14:cd:a5:73:be:20:c8:93:49:be:0e:2c:06:14:2f:72:bb:7e:
b9:76:0f:c5:53:9c:b3:ca:05:f5:32:65:75:3f:95:b2:de:61:
86:1b:9e:71:a7:73:0e:ac:c8:62:72:63:63:db:69:2c:1f:30:
26:64:ef:4d:14:27:61:9e:cf:e2:3c:1a:94:18:cf:58:a4:44:
35:4d:01:62:61:cd:21:e8:0d:b6:ef:09:4a:0d:16:93:a9:d5:
24:03:4a:b8:21:7b:c7:3a:2e:88:30:fd:cf:d5:55:cf:f7:6b:
5e:0b:30:62:88:32:37:14:f4:9a:50:d1:9f:ae:3a:3d:95:8b:
53:5e:d4:26:de:09:1c:4a:ea:53:03:cc:be:14:96:c2:08:ec:
25:ce:ab:0e:6b:ca:87:45:a5:e9:b7:1d:8d:af:f7:bd:a7:72:
bb:e6:dd:77:bc:37:d6:92:69:36:84:07:e6:d7:47:b9:53:97:
43:e6:fc:62:2f:cf:5f:67:9a:a0:b7:14:33:05:10:1f:1e:b8:
87:e2:fa:94:e6:59:ec:e0:6a:21:7c:f6:85:d7:ed:6c:cf:46:
01:9e:75:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-fra.rpki-client.org