Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/fz-z5Z-AMCDJVC5cFjts_83jcEA.roa
File: fz-z5Z-AMCDJVC5cFjts_83jcEA.roa (raw, json)
Hash identifier: unB8xJqAnnGRoi3Ofp06ucJoydvEvG8bvZQ4gMV7zTI=
Subject key identifier: 7F:3F:B3:E5:9F:80:30:20:C9:54:2E:5C:16:3B:6C:FF:CD:E3:70:40
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378F106D0F53A3D118A3F187C6B694F
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/fz-z5Z-AMCDJVC5cFjts_83jcEA.roa
Signing time: Mon 27 Mar 2023 14:29:01 +0000
ROA not before: Mon 27 Mar 2023 14:29:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205368
IP address blocks: 77.95.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:f1:06:d0:f5:3a:3d:11:8a:3f:18:7c:6b:69:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f3fb3e59f803020c9542e5c163b6cffcde37040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:10:b5:00:bb:ce:10:b9:ac:f5:00:e2:9e:57:
94:35:3b:8a:62:82:69:98:02:5f:24:bc:b4:44:3e:
05:7a:26:d4:49:9d:d7:ae:be:eb:be:9c:21:8e:40:
47:f8:48:c2:d5:60:f1:6b:6f:fd:96:86:9b:ec:68:
b8:91:92:fc:f4:f0:d9:4d:e7:9e:a2:13:20:f1:e7:
f7:88:41:02:a1:b8:c4:9e:8f:6d:99:b9:41:11:f7:
46:5c:63:a4:50:3f:2b:5b:79:20:3d:63:2c:ad:77:
f5:80:fe:33:ad:e0:af:88:f1:e6:02:f4:57:04:a6:
51:e1:d8:fe:01:51:2d:85:db:d5:70:e2:9c:20:c2:
88:5a:53:b3:a7:fb:3a:24:f8:24:34:22:b6:c0:6a:
c7:5b:b2:7c:b9:14:cd:b9:89:bb:3c:03:25:51:67:
46:a9:bc:2c:dd:cf:bf:70:ae:20:da:e2:fe:03:60:
f9:f4:42:3b:8d:36:91:b7:61:69:8b:ef:a2:1f:e6:
f6:b2:24:7e:5d:dc:c8:63:56:ef:cd:9a:eb:b4:31:
d7:7f:17:5d:6d:65:88:22:19:53:a3:a4:6a:71:59:
0d:c0:7e:82:00:fb:23:73:ef:45:73:6b:cd:9c:37:
bf:bb:20:5f:fc:ee:1d:a7:fb:c6:cc:22:0e:d6:6b:
1e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3F:B3:E5:9F:80:30:20:C9:54:2E:5C:16:3B:6C:FF:CD:E3:70:40
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/fz-z5Z-AMCDJVC5cFjts_83jcEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.185.0/24
Signature Algorithm: sha256WithRSAEncryption
53:37:38:ad:f1:0c:1a:9a:a0:df:6d:84:c9:07:28:ca:6b:9a:
e4:d8:c8:09:c7:98:83:dc:15:5b:1b:1e:3c:40:77:e8:78:a6:
fd:e3:30:d6:a0:af:f3:5c:d6:e0:d8:5a:6b:27:5b:c3:e6:b7:
2f:bd:da:9c:e9:eb:3b:36:70:69:ed:c3:7d:e3:c1:c9:a0:26:
a2:32:1f:41:33:03:d5:58:c2:2b:da:af:ee:3a:cd:96:5b:fc:
17:d7:61:1e:dc:fc:eb:73:b7:08:68:10:30:ee:e1:59:96:9f:
ee:6e:8c:eb:96:a7:f0:fe:b3:fb:49:11:b9:8a:22:7f:c5:02:
95:dc:8a:7d:29:3f:5e:d9:f1:88:87:85:d0:d5:e5:69:d5:f8:
df:58:94:06:5f:7f:e5:6f:49:cc:d3:0d:1c:84:2c:62:d7:ff:
fe:57:2b:f7:d5:a4:29:f3:cc:fb:d5:10:a1:0a:94:39:ca:18:
a5:77:25:2a:29:4e:5e:d0:7c:9a:86:b5:d6:c7:0e:28:3c:c0:
27:3e:52:61:36:35:57:6f:0d:23:8e:3e:17:db:11:b9:e0:81:
1e:ea:03:76:50:09:1a:2e:5d:42:12:1c:37:b5:7d:1f:2b:e1:
e1:23:56:5f:b3:49:2d:21:97:df:a2:a8:45:93:82:24:4e:51:
44:39:c5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:22 2025 by rpki-client