Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa
File: zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa (raw, json)
Hash identifier: bNNO/3zQGOpEssHI1q4Quxbgzx1D+dd5TrId0AowP4U=
Subject key identifier: CF:0E:53:54:54:1E:E1:C0:EF:CE:E1:3A:4B:04:5A:3E:79:FC:0A:9D
Certificate issuer: /CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Certificate serial: 010117B9
Authority key identifier: E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa
Signing time: Sat 01 Jan 2022 03:55:17 +0000
ROA not before: Sat 01 Jan 2022 03:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.235.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16848825 (0x10117b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Validity
Not Before: Jan 1 03:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf0e5354541ee1c0efcee13a4b045a3e79fc0a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ae:96:cc:b4:da:f8:5a:d9:42:db:4a:4b:d0:
2c:94:20:5b:7d:01:47:35:4c:14:c0:48:15:bb:4d:
15:a6:67:80:ba:1d:2f:c5:f3:03:9c:ce:1f:71:92:
bf:4d:27:e6:8a:45:30:0f:99:6e:56:7a:4c:50:2d:
49:61:20:56:db:ab:e0:f0:13:f0:81:38:e6:cf:32:
ea:83:28:58:ce:d0:4e:16:82:ed:59:68:8e:b0:62:
6e:ac:10:da:8c:ec:ca:85:2c:1d:d3:4b:ee:2f:de:
09:7e:20:9c:66:ea:df:4e:ea:5a:31:8c:89:d8:2e:
d9:74:98:9b:bd:4b:79:b5:ab:ce:e1:49:17:5f:f6:
7d:db:83:c1:b9:33:72:07:e8:ab:a7:a0:5f:88:9e:
c8:81:6c:02:91:b5:c9:16:b6:dc:ad:e9:71:1a:8d:
37:ec:8d:8b:4e:8c:1d:40:5d:e4:f0:49:c3:8e:a2:
2e:99:d4:b9:13:bf:f9:4f:d8:25:ca:f2:00:06:63:
17:4d:3b:92:fa:ec:22:53:06:85:4b:f3:36:89:0f:
44:5a:37:6d:d3:3b:ed:f2:14:99:f4:04:79:0c:00:
d8:88:6c:dc:a7:d3:3f:e6:da:a5:2b:0a:4f:bc:46:
ab:36:d7:89:f7:bc:7e:17:37:74:0d:fc:fa:aa:fa:
97:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0E:53:54:54:1E:E1:C0:EF:CE:E1:3A:4B:04:5A:3E:79:FC:0A:9D
X509v3 Authority Key Identifier:
keyid:E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/6KkFsKTxujc9nniS0kVbxeqLv4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:32:f1:01:a6:e7:2c:85:ee:61:56:bd:93:15:fb:30:d1:07:
fe:06:a0:5d:7e:96:74:9f:d1:ad:03:7c:7d:9e:a4:f4:85:e9:
b4:b9:c8:59:07:ed:8a:0e:56:3a:04:36:ce:ee:3b:53:af:ce:
0f:e0:d0:a2:60:ff:bd:d1:aa:d4:e4:fb:d3:f7:ea:30:0f:d7:
4b:01:f7:d2:8f:0c:3c:9a:6c:fb:f8:09:cc:94:68:9c:53:82:
b9:28:2f:8a:b1:10:c5:be:cc:17:3e:55:41:03:72:98:ab:a5:
a6:57:ce:33:d3:ca:51:75:0e:7b:f3:e6:fd:2c:7e:bf:4c:a4:
5d:ab:09:7a:a5:2e:4c:38:57:a5:9d:e9:b7:51:b8:a0:f5:f7:
54:2d:e8:8d:20:72:b5:1c:4f:1e:ff:3e:dc:b4:2f:0e:88:d5:
56:d6:10:d2:58:83:95:6a:11:c3:8a:8b:d6:50:51:c2:3e:51:
96:69:18:9d:8f:22:32:1a:3b:bb:93:23:b8:75:e6:51:d6:1a:
11:0d:e4:81:b8:04:50:a6:8e:11:a2:6b:da:ca:45:c3:fd:0f:
8d:c8:d9:63:26:6d:8e:e5:bf:36:37:46:7b:6a:3d:b5:13:5b:
45:85:45:c0:14:ed:2c:3e:64:a5:a9:bb:91:f6:f4:eb:e1:64:
f4:63:c3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:01 2023 by rpki-client on console-ams.rpki-client.org