Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ZRl3bF5quXuaY1thbmjgeMsNVk.roa
File: 4ZRl3bF5quXuaY1thbmjgeMsNVk.roa (raw, json)
Hash identifier: dMOiEQAqF+T6mOcuBF+w05NnqjDDccan2RkUxFAj5S4=
Subject key identifier: E1:94:65:DD:B1:79:AA:E5:EE:69:8D:6D:85:B9:A3:81:E3:2C:35:59
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 03F0C6DB
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ZRl3bF5quXuaY1thbmjgeMsNVk.roa
Signing time: Mon 13 Jun 2022 12:38:46 +0000
ROA not before: Mon 13 Jun 2022 12:38:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211619
IP address blocks: 92.52.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66111195 (0x3f0c6db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 13 12:38:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e19465ddb179aae5ee698d6d85b9a381e32c3559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:02:a7:17:ef:5f:eb:21:63:72:28:08:d6:
40:aa:d5:97:b8:26:5d:44:3c:be:32:6e:1a:74:60:
f8:c9:7b:21:16:95:3f:cb:da:54:9e:25:e1:d1:7b:
3e:96:6d:bf:88:b8:ec:ae:c1:8d:fd:86:31:90:3a:
85:97:49:b3:a0:92:20:d0:da:f3:1e:e7:e8:04:05:
93:12:eb:7f:60:df:f7:52:2d:e3:fb:86:1e:f7:17:
ac:93:2c:c3:47:bd:69:79:12:c2:94:49:d1:4b:eb:
5e:bc:a0:2e:5f:8f:b6:90:ae:36:1e:c7:3e:31:d1:
47:13:5b:ff:20:e3:59:e8:8f:2b:24:87:d0:af:06:
99:a8:8a:c9:76:49:c5:07:0b:28:98:71:31:b0:74:
03:8e:f1:c2:8a:15:9c:fa:ae:bf:02:c1:12:e3:11:
73:b8:6a:d0:0d:26:08:26:5d:0b:76:0e:0a:ea:b7:
f2:09:4c:32:66:15:18:44:cc:0a:9c:cc:79:21:cd:
8c:1e:19:85:53:67:13:c5:e0:a1:c5:1d:b0:7e:ed:
03:5d:43:e6:e3:4a:86:e3:9d:db:46:4c:4d:7c:20:
ac:7a:38:f3:cb:97:0c:36:79:bf:ce:f7:ab:bd:b8:
6f:56:80:82:6d:45:ce:3e:ee:19:0a:07:72:b5:ef:
8a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:94:65:DD:B1:79:AA:E5:EE:69:8D:6D:85:B9:A3:81:E3:2C:35:59
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ZRl3bF5quXuaY1thbmjgeMsNVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.218.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5f:96:ef:9f:b4:2c:e5:26:c4:73:e8:c5:75:68:20:5d:d2:
05:40:da:72:7d:ff:e2:22:6e:cb:84:cf:20:b3:67:e9:da:41:
08:ed:8e:84:3e:47:b1:87:08:e5:e9:eb:c1:1b:0b:3a:ef:d9:
3f:de:ba:be:ed:f7:32:35:1f:d3:21:4a:7b:7b:aa:54:2b:17:
5b:ff:b8:9b:81:39:f9:20:25:de:4f:1e:33:f5:a4:1c:27:4f:
44:a0:1c:4f:80:55:dd:cb:2d:83:b6:c6:bc:79:90:1b:6d:57:
cc:21:59:31:0e:de:63:1a:0d:22:d9:65:1b:87:5a:bb:b2:ea:
69:73:2a:69:38:f4:44:8f:28:bf:c1:b4:ad:14:b4:5a:14:ea:
4a:99:a5:7a:f1:0c:01:d7:1e:cd:eb:48:a0:c8:9c:ab:ac:35:
69:34:27:15:37:44:40:a3:4d:e4:76:ca:0d:70:69:59:30:20:
9b:3e:c4:4c:76:22:27:4b:9f:fc:63:81:be:13:64:1b:04:b4:
93:0c:93:d5:cb:e3:12:fe:2f:5f:af:a1:e9:60:59:ee:b6:fd:
a6:cc:78:f5:a2:a8:6c:4f:43:3f:7e:e0:b8:8a:0f:3a:28:f1:
1f:dc:77:43:74:aa:6d:3a:79:84:01:07:19:ff:20:b1:d0:1b:
62:c8:c1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:00 2023 by rpki-client on console-fra.rpki-client.org