Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/ZiZP78xQm2SKydhfBlzCUKsU2-s.roa
File: ZiZP78xQm2SKydhfBlzCUKsU2-s.roa (raw, json)
Hash identifier: b+hHib52oKMddEDe0tuR8HlGCD18rl0vARpyDOb7m/M=
Subject key identifier: 66:26:4F:EF:CC:50:9B:64:8A:C9:D8:5F:06:5C:C2:50:AB:14:DB:EB
Certificate issuer: /CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Certificate serial: 0183A1A4A70D9E0CE3F997EED56238B60E8A
Authority key identifier: 82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/ZiZP78xQm2SKydhfBlzCUKsU2-s.roa
Signing time: Tue 04 Oct 2022 06:17:45 +0000
ROA not before: Tue 04 Oct 2022 06:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48695
IP address blocks: 92.43.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a1:a4:a7:0d:9e:0c:e3:f9:97:ee:d5:62:38:b6:0e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Validity
Not Before: Oct 4 06:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66264fefcc509b648ac9d85f065cc250ab14dbeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c7:d6:9e:28:51:8b:21:b5:39:cd:a9:60:7e:
de:23:d0:31:47:21:14:0c:4c:78:ce:64:66:40:e4:
19:23:db:4c:ec:56:aa:c8:d6:65:4d:9e:e5:20:64:
4a:7d:2d:56:06:27:74:4c:8f:61:2c:84:aa:da:bd:
ea:3d:88:c1:b3:1d:d6:da:4a:1d:eb:f4:aa:b1:c3:
14:b8:d9:29:12:ec:7c:b3:37:86:89:f5:d9:f6:3d:
ea:62:eb:d0:fa:16:e3:9f:97:bb:32:09:39:4b:96:
77:61:61:00:fb:2c:56:c0:4f:e1:bd:1b:4f:f5:cb:
77:73:b3:6e:ff:14:b8:c4:80:85:31:72:2f:e0:96:
e9:23:a8:07:54:08:bd:51:7a:a9:c3:9b:09:e4:7a:
c1:ac:06:a9:15:43:81:e9:a9:53:19:8d:c7:85:48:
dd:05:a4:2e:4e:43:df:54:e4:57:4e:d4:5c:12:93:
b8:c8:0f:44:c8:c1:b5:7c:b0:af:eb:15:66:78:5c:
69:43:d1:3c:a7:7c:8c:17:31:10:ba:7c:a6:f8:c9:
d7:c4:8f:8b:4e:83:a5:23:7c:21:8f:3b:71:a3:41:
e5:10:d0:65:e9:25:a8:82:da:51:6a:26:8b:3f:5f:
32:00:8a:a5:e9:cf:11:6a:25:7b:91:db:10:c4:2c:
23:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:26:4F:EF:CC:50:9B:64:8A:C9:D8:5F:06:5C:C2:50:AB:14:DB:EB
X509v3 Authority Key Identifier:
keyid:82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/ZiZP78xQm2SKydhfBlzCUKsU2-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/gtf-cxLvtCvY0ezYKsdhkeomw1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:01:d5:50:eb:e3:ca:95:46:56:13:7f:1e:0c:db:d3:82:39:
0d:63:fc:11:e6:85:f2:aa:c6:99:fa:6a:a6:1a:1d:40:70:50:
58:09:1d:a9:a2:48:6c:8c:55:be:9f:d8:12:fd:45:e3:30:7c:
7f:fa:d9:48:88:90:5c:07:12:64:4f:b9:89:83:e1:30:f1:d5:
4a:fc:d1:15:39:4c:dc:19:9f:f8:60:48:3c:65:b9:67:5f:4a:
d2:e9:5c:09:9d:65:91:8c:5f:95:39:88:09:31:63:1e:a0:45:
b6:17:e3:7b:7e:11:a8:8e:b8:d0:a1:29:ff:3c:53:d3:01:b9:
b0:fb:d4:43:a2:b0:35:a5:cb:59:51:b0:15:fe:e1:cb:ca:96:
63:7d:f8:61:1b:01:6c:fa:52:6e:12:53:53:c6:bf:4e:38:0c:
36:3a:9c:0d:6e:27:1b:6a:4a:b2:b6:98:c8:a4:08:25:26:ba:
5c:ab:e5:cf:5d:9d:35:50:11:9f:35:ee:36:63:3e:06:50:8c:
62:77:73:13:a7:63:de:de:a0:dc:e5:33:a4:ff:5b:52:d7:ac:
57:cc:ae:30:6e:dd:13:d7:8b:6b:72:42:91:ff:d1:75:9b:9e:
b7:0b:f7:ee:b1:60:26:01:0a:78:75:ac:29:1a:bb:b3:36:6b:
0b:7b:1a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:07 2024 by rpki-client on console-fra.rpki-client.org