Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/zIjHlj8StfeVGV3SSw07S975qVI.roa
File: zIjHlj8StfeVGV3SSw07S975qVI.roa (raw, json)
Hash identifier: 8X4CtPWdUnbIo0o7dkNklphNCfz+rhCgli3RJYbSQuc=
Subject key identifier: CC:88:C7:96:3F:12:B5:F7:95:19:5D:D2:4B:0D:3B:4B:DE:F9:A9:52
Certificate issuer: /CN=82e39681c5aaefb35e54f4ad8afa428d4ffde06a
Certificate serial: 01425B
Authority key identifier: 82:E3:96:81:C5:AA:EF:B3:5E:54:F4:AD:8A:FA:42:8D:4F:FD:E0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guOWgcWq77NeVPStivpCjU_94Go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/zIjHlj8StfeVGV3SSw07S975qVI.roa
Signing time: Sat 22 Jan 2022 21:41:23 +0000
ROA not before: Sat 22 Jan 2022 21:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47576
IP address blocks: 185.251.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82523 (0x1425b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e39681c5aaefb35e54f4ad8afa428d4ffde06a
Validity
Not Before: Jan 22 21:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc88c7963f12b5f795195dd24b0d3b4bdef9a952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:67:e5:6d:cf:1e:94:c4:63:d3:18:2a:54:ab:
10:88:56:6f:3c:05:9a:5f:f1:ff:d2:82:36:4f:13:
ce:1e:02:59:7b:39:2f:7e:0f:02:ac:ab:1e:02:5f:
38:48:0a:a9:b7:56:21:9d:aa:87:e8:72:ae:b4:e5:
bb:03:37:35:25:c8:47:3a:15:b2:0c:17:36:6e:d6:
8a:d5:a2:55:b4:87:c2:ff:83:3b:a4:4f:ba:39:99:
9f:33:21:2e:79:fe:3c:61:81:5f:cf:f5:7b:a9:35:
90:c5:b6:89:50:58:0c:f9:71:68:d6:78:74:02:36:
8e:71:e2:98:83:3a:07:9b:55:3d:a9:ac:02:77:5b:
bb:74:3b:29:8c:6a:bb:9a:a9:99:b3:de:b3:ac:cf:
84:1c:4d:06:d5:d4:3a:5b:39:df:84:c9:99:83:ae:
f6:6b:e2:08:af:e8:55:a0:13:69:c2:e8:b7:11:9f:
78:95:55:75:74:00:98:2a:e9:78:dc:08:76:cc:62:
49:85:99:bb:8e:d8:ca:5f:6c:a2:e7:14:d1:5f:89:
fb:de:0e:6a:2f:67:89:6e:ad:81:ae:bc:43:a1:ae:
c6:af:59:a0:aa:7c:99:42:46:17:9b:3d:0a:48:17:
60:11:c0:e9:a8:95:2b:ee:b6:1d:f7:26:cb:65:1b:
94:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:88:C7:96:3F:12:B5:F7:95:19:5D:D2:4B:0D:3B:4B:DE:F9:A9:52
X509v3 Authority Key Identifier:
keyid:82:E3:96:81:C5:AA:EF:B3:5E:54:F4:AD:8A:FA:42:8D:4F:FD:E0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guOWgcWq77NeVPStivpCjU_94Go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/zIjHlj8StfeVGV3SSw07S975qVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/guOWgcWq77NeVPStivpCjU_94Go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.96.0/22
Signature Algorithm: sha256WithRSAEncryption
37:3f:44:db:b8:43:bf:b4:3f:75:79:a4:2b:f5:9a:d2:5f:aa:
49:34:26:f6:26:5e:7f:fd:cb:76:b3:2e:a4:a4:73:98:c0:b8:
95:bc:74:1a:0a:58:78:7d:9e:26:b1:e0:2b:e9:2a:9a:c9:c6:
10:42:f4:86:9e:9e:51:f3:74:be:99:dc:c7:c6:6b:be:e8:69:
d7:19:b1:90:c7:75:86:e1:fb:d6:c0:ba:ed:d1:3b:7c:65:4a:
32:bc:0f:f2:ad:d8:f7:f5:ac:41:c4:26:52:fd:8a:7b:bc:e4:
90:60:8a:db:39:d8:cb:8c:44:4d:66:bb:90:ba:58:79:f2:2c:
2e:ac:47:61:7c:cf:82:19:a6:ed:2b:77:6d:a1:0b:0f:e8:b9:
00:8d:11:d6:fa:cb:13:92:be:f4:57:9d:17:53:1f:a0:ee:82:
39:c3:cc:84:15:08:1b:f7:cd:a8:88:f7:18:1a:a4:06:da:44:
eb:fa:af:f8:5f:22:37:0a:ee:9d:77:6b:dc:a7:f3:72:d6:5a:
97:4c:88:ae:08:c7:11:b2:74:66:c8:93:7b:68:be:39:a0:77:
f5:83:da:37:f1:35:68:00:0e:da:c6:c3:5e:1d:1e:ed:a3:c4:
8d:e1:f9:09:7b:55:b9:d2:c5:69:ca:b0:a6:67:c2:29:f5:4a:
27:02:37:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:18 2025 by rpki-client