Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/z2sgAGcHcF324wMkUBSavsSztfg.roa
File: z2sgAGcHcF324wMkUBSavsSztfg.roa (raw, json)
Hash identifier: 9IcgM6+Xh7x1z66lO2qgRQM/yphX1zFJMxMmtWWk6XI=
Subject key identifier: CF:6B:20:00:67:07:70:5D:F6:E3:03:24:50:14:9A:BE:C4:B3:B5:F8
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018412F5DA0CCAEE9778822E500FF69ECEBA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/z2sgAGcHcF324wMkUBSavsSztfg.roa
Signing time: Wed 26 Oct 2022 06:23:32 +0000
ROA not before: Wed 26 Oct 2022 06:23:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198762
IP address blocks: 5.8.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:f5:da:0c:ca:ee:97:78:82:2e:50:0f:f6:9e:ce:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:23:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf6b20006707705df6e3032450149abec4b3b5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:18:2c:e9:ae:30:0c:3f:a8:47:c6:92:15:d2:
b8:a6:70:36:8f:f9:22:81:44:b5:7f:b4:07:76:45:
45:88:d7:17:9c:7a:b0:f7:48:8f:24:be:ac:07:09:
24:47:be:1c:8a:2c:12:49:91:f6:83:7a:dd:b0:54:
3a:de:e9:13:09:0c:22:18:0d:12:c8:16:10:7c:41:
2f:47:d5:e5:4f:80:20:7b:3d:f1:55:29:cb:e7:3a:
c6:bb:58:4b:a4:19:6e:eb:ec:df:e4:a0:03:be:60:
f7:a9:a4:86:d9:ef:37:10:ee:ee:37:0c:3b:e7:20:
67:fb:05:df:1d:e1:2c:74:23:92:36:a4:07:f3:af:
07:bd:49:8d:47:5f:07:12:51:f1:2e:c5:8b:df:b5:
b3:58:24:49:e9:82:7a:2b:89:9a:63:10:23:a9:dc:
f4:b8:59:2e:48:89:8d:52:6a:29:9f:b1:96:04:47:
6e:6d:1a:cb:70:03:fd:9d:9c:60:ef:f3:0d:01:e2:
2f:d9:87:d0:72:65:d6:06:e5:bc:e8:74:c5:18:0a:
c1:f9:58:7f:0b:ee:fb:a3:74:ce:a1:2a:fe:3b:16:
1a:02:9e:be:d3:3f:d1:dd:19:db:36:48:05:16:f9:
4a:7f:7a:fe:31:1e:69:7d:c2:ca:d1:f0:3f:75:29:
0e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6B:20:00:67:07:70:5D:F6:E3:03:24:50:14:9A:BE:C4:B3:B5:F8
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/z2sgAGcHcF324wMkUBSavsSztfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.176.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:b3:9e:24:d9:d1:6d:c1:85:c0:ac:90:61:87:55:bd:0a:bc:
25:8e:b1:69:d5:fc:9a:33:a0:82:0f:3e:08:c6:bb:8d:e6:60:
7e:83:a7:72:39:36:ea:22:4c:e8:d8:83:f6:e1:67:86:d5:6d:
2b:7d:34:69:1f:67:14:59:22:5a:2a:88:f3:d3:5a:4e:c9:3c:
dd:13:5a:f8:93:0a:04:19:91:49:29:12:90:02:fe:26:60:b9:
dd:24:5c:e8:e6:9e:c0:c8:bc:9e:36:19:e8:c6:76:8c:78:fb:
a0:fa:9b:4f:4b:ba:67:22:96:4a:bd:29:9f:0a:48:81:06:22:
c3:f5:a5:81:d2:8b:de:8c:33:11:22:05:26:12:9e:f8:af:3b:
cd:0d:c3:91:4d:62:ac:fa:8a:72:a6:69:8c:0c:0a:61:b6:5f:
5d:4f:5e:b7:89:d4:e7:72:ca:43:84:a6:b3:bf:a6:64:22:2d:
ef:88:1f:f4:0d:b2:a2:fa:d3:6e:6f:14:9f:ee:8a:9d:2a:2c:
2c:9b:88:3a:ca:07:df:bb:4f:1c:8a:33:1a:88:52:41:6f:ea:
eb:69:ef:d1:82:4f:66:3d:44:64:06:5a:4f:6f:c7:91:02:84:
61:b4:c9:c6:7f:65:cd:c2:52:99:8f:51:2c:14:e8:75:95:fb:
03:52:a7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:33 2025 by rpki-client