Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sjzTZ-Vi7GL8wHJB54yRGnHotHM.roa
File: sjzTZ-Vi7GL8wHJB54yRGnHotHM.roa (raw, json)
Hash identifier: zEz0bLDWEoM2tW3wzvJnTYERmd2qSqO//sur7t2MzbY=
Subject key identifier: B2:3C:D3:67:E5:62:EC:62:FC:C0:72:41:E7:8C:91:1A:71:E8:B4:73
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841931367BDDF5D338CACA3014B57B71B8
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sjzTZ-Vi7GL8wHJB54yRGnHotHM.roa
Signing time: Thu 27 Oct 2022 11:26:06 +0000
ROA not before: Thu 27 Oct 2022 11:26:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16321
IP address blocks: 84.204.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:31:36:7b:dd:f5:d3:38:ca:ca:30:14:b5:7b:71:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 27 11:26:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b23cd367e562ec62fcc07241e78c911a71e8b473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:45:35:25:da:4d:ca:ad:ff:83:a1:e5:ae:
93:4c:5a:4a:46:17:dc:0a:d8:eb:cd:62:51:e3:a6:
cc:94:a0:c8:02:cc:06:c9:15:b8:89:ee:b3:dc:84:
15:dc:66:51:49:d4:6d:a7:03:6c:22:56:6a:43:54:
60:ef:32:2e:db:49:c6:c0:d3:89:66:26:bc:dc:17:
06:ca:a8:b8:c0:b1:f2:32:53:47:a0:09:f9:10:5d:
14:ea:63:9a:e1:36:d2:5b:5a:0a:01:aa:fd:a0:46:
b5:1c:fb:58:b0:19:27:a8:f5:ab:d5:0c:e8:ed:a8:
4f:30:0a:f2:8d:97:a3:7e:01:c4:4e:cc:06:24:c1:
7d:33:21:a3:40:2e:c5:f6:1e:59:1a:ce:c8:52:fb:
19:e3:f1:92:d1:7e:cc:01:a2:76:b9:dd:49:58:26:
00:a7:22:9b:d5:e6:90:f8:11:f4:fa:25:d7:ff:18:
77:6d:74:68:ab:81:0b:af:06:c4:41:4c:ad:df:10:
81:6a:95:c0:56:58:e8:69:a7:12:08:28:78:bc:cb:
d4:a6:e6:99:b2:aa:83:93:d3:3f:a0:7c:5d:f8:8a:
f1:b1:34:ca:7a:1e:40:19:7c:ea:06:88:bb:da:0c:
42:0f:96:ff:b3:2d:6e:05:b5:62:ef:6a:af:dc:2c:
91:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3C:D3:67:E5:62:EC:62:FC:C0:72:41:E7:8C:91:1A:71:E8:B4:73
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sjzTZ-Vi7GL8wHJB54yRGnHotHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.204.225.0/24
Signature Algorithm: sha256WithRSAEncryption
01:72:e2:3a:94:82:9d:74:cf:86:66:73:08:5a:08:95:2b:67:
53:6b:7c:4d:59:1a:e9:c4:cc:07:a1:34:35:81:59:97:89:4b:
a5:99:32:e5:cf:e2:8b:79:bc:54:98:96:82:64:98:c9:f8:72:
c7:f0:7f:fd:5c:ee:0b:3d:71:44:5e:6c:cf:16:6e:66:e5:a7:
fe:1b:a5:b2:57:12:b7:a4:a0:ae:b8:69:b4:ce:f6:c7:ce:e0:
08:da:c6:42:b4:06:d0:13:d0:7d:f2:2a:03:bf:ac:27:0b:2a:
1f:52:7c:6b:08:1d:e8:4a:84:60:e8:40:f2:d4:bd:0a:52:80:
b8:8b:76:bf:a3:0b:57:74:8c:9b:81:39:df:45:9c:12:0e:f7:
51:c7:24:81:d7:e9:e2:df:38:8f:e2:17:e2:6f:01:6e:12:52:
19:bc:51:38:01:77:fd:07:95:f9:8f:d9:d8:e1:59:1d:a3:34:
de:21:37:f2:ae:dd:8e:1d:32:7d:8e:88:6a:a7:44:29:0e:ad:
01:58:cf:f3:47:c3:dc:84:ba:33:66:44:be:41:48:fc:d2:7c:
d5:ba:3b:2c:0d:d1:dd:93:10:d5:26:87:0a:b2:83:34:d4:9e:
f9:09:5b:f2:94:27:d4:80:2a:fa:c7:46:fe:97:b8:07:5b:4f:
d6:4a:85:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:47 2025 by rpki-client