Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c740f5-4f2b-4119-bd32-e159cd6f3654/1/ZXcvWGAMpdvdbQjscpkY8tg9EJA.roa
File: ZXcvWGAMpdvdbQjscpkY8tg9EJA.roa (raw, json)
Hash identifier: Sdn8CROHRH17nBXNnxPvFswOc8xZWYiRGeXDH55sP08=
Subject key identifier: 65:77:2F:58:60:0C:A5:DB:DD:6D:08:EC:72:99:18:F2:D8:3D:10:90
Certificate issuer: /CN=3a1669d1def69aad958d4e56e1bff9c64d350c5f
Certificate serial: 09100750
Authority key identifier: 3A:16:69:D1:DE:F6:9A:AD:95:8D:4E:56:E1:BF:F9:C6:4D:35:0C:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhZp0d72mq2VjU5W4b_5xk01DF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c740f5-4f2b-4119-bd32-e159cd6f3654/1/ZXcvWGAMpdvdbQjscpkY8tg9EJA.roa
Signing time: Sat 01 Jan 2022 12:03:00 +0000
ROA not before: Sat 01 Jan 2022 12:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49808
IP address blocks: 92.119.92.0/22 maxlen: 24
185.11.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152045392 (0x9100750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1669d1def69aad958d4e56e1bff9c64d350c5f
Validity
Not Before: Jan 1 12:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65772f58600ca5dbdd6d08ec729918f2d83d1090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:27:a4:ab:99:de:7a:3a:be:be:db:ff:b8:35:
8e:fb:f7:16:fc:d2:cd:a4:d8:b8:12:bc:03:41:e2:
98:15:75:05:80:57:df:b6:68:bf:cc:25:dd:9d:63:
1b:e1:3a:7c:22:19:24:b1:63:cc:3e:ca:c6:09:a3:
8a:f9:fd:8c:5b:29:7a:c8:90:88:cd:89:8d:91:a5:
81:79:4a:fd:70:75:73:6d:86:f0:69:d4:e6:3e:ec:
35:1d:05:fa:23:c8:38:1d:4f:d5:aa:2d:b6:24:72:
56:fe:3b:9e:18:45:34:2e:fc:c5:d4:30:3f:da:c8:
f3:65:95:4f:8a:da:c7:a9:18:7c:e2:1b:68:2d:4d:
ff:5e:58:4d:de:69:2e:a1:b2:d8:18:c5:4b:24:9f:
d3:46:e9:86:b4:4e:cb:9e:31:2c:77:f2:c4:da:35:
c8:d1:e0:94:6b:a4:0b:d4:a4:35:26:b2:61:6d:84:
cf:e5:e3:31:fd:15:6f:80:b1:4a:b7:e0:15:a3:28:
84:b9:9a:b5:6f:e0:12:db:1a:34:cd:82:5b:fa:35:
c0:bf:7a:ce:f9:3c:eb:35:f3:62:b3:1e:42:6e:37:
59:76:4b:7e:30:b2:10:24:48:82:55:12:9e:d6:1c:
a6:2e:39:c1:cc:d9:2e:2e:c9:98:53:8d:a5:c9:dd:
5e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:77:2F:58:60:0C:A5:DB:DD:6D:08:EC:72:99:18:F2:D8:3D:10:90
X509v3 Authority Key Identifier:
keyid:3A:16:69:D1:DE:F6:9A:AD:95:8D:4E:56:E1:BF:F9:C6:4D:35:0C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhZp0d72mq2VjU5W4b_5xk01DF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c740f5-4f2b-4119-bd32-e159cd6f3654/1/ZXcvWGAMpdvdbQjscpkY8tg9EJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c740f5-4f2b-4119-bd32-e159cd6f3654/1/OhZp0d72mq2VjU5W4b_5xk01DF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.92.0/22
185.11.84.0/22
Signature Algorithm: sha256WithRSAEncryption
65:47:db:41:21:c6:f1:57:20:fe:7f:9f:49:78:11:43:54:ce:
fe:f0:0e:66:f0:67:c6:3c:5b:d8:3d:c8:59:07:3c:f5:5e:8d:
28:9c:f3:8f:aa:bc:9a:fe:1a:65:44:ed:a8:7f:eb:61:52:17:
07:e1:a7:22:99:88:3d:bc:b6:cf:e9:23:75:88:41:01:c6:9b:
04:21:63:06:a6:6e:61:80:41:b2:d8:82:82:2e:41:72:96:5b:
c5:03:4b:5d:b1:18:52:9e:bd:df:77:c9:c0:23:cd:9a:7f:fc:
1c:c5:8d:71:17:15:6c:66:fe:1b:59:85:14:b2:6c:f6:56:a7:
58:06:a8:c3:fd:3b:7b:1c:59:73:d8:b3:b9:a7:a2:95:9f:1e:
4f:72:d4:00:19:07:e7:d8:b5:0b:23:df:81:13:f3:2c:3e:07:
a1:16:cf:87:45:7d:52:5e:9d:b9:f0:10:07:ff:0a:dc:f4:99:
f9:94:9a:31:2b:a2:f2:f1:76:fc:06:9f:60:c7:a1:61:42:21:
90:5c:01:68:b1:16:19:ff:8e:89:00:1a:62:dc:bb:8a:76:bf:
b8:56:41:8f:9e:3c:51:69:4a:9c:4f:5b:a2:a5:80:f8:ea:a0:
9d:9c:ac:fa:40:1f:fa:c1:2b:37:3e:bf:6f:30:4c:62:b9:a7:
a2:18:d3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:20 2024 by rpki-client on console-fra.rpki-client.org