Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9Z_edXVDYBQE_hwK_zau4-_9cgM.roa
File: 9Z_edXVDYBQE_hwK_zau4-_9cgM.roa (raw, json)
Hash identifier: YEkQsRWPRs3LT1FUoYC2s9jE0LGryrld5I7mwG8TmuA=
Subject key identifier: F5:9F:DE:75:75:43:60:14:04:FE:1C:0A:FF:36:AE:E3:EF:FD:72:03
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0274E68B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9Z_edXVDYBQE_hwK_zau4-_9cgM.roa
Signing time: Sat 01 Jan 2022 15:04:44 +0000
ROA not before: Sat 01 Jan 2022 15:04:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211619
IP address blocks: 92.52.218.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41215627 (0x274e68b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 1 15:04:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f59fde757543601404fe1c0aff36aee3effd7203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:11:28:70:fb:1c:05:f3:79:9b:1c:80:0b:0b:
2c:35:58:65:33:d6:a0:9f:9e:b3:91:53:8e:41:6b:
27:35:51:e3:c4:6c:0d:d9:3d:09:19:af:b6:e0:2b:
d5:7c:ac:1f:36:53:e8:40:c7:50:46:65:44:49:38:
f6:9a:f6:31:d2:6d:ca:78:6b:95:91:2f:61:27:5e:
8a:57:7f:07:e1:11:e4:b2:7a:4c:eb:48:94:91:65:
22:e9:40:75:20:a1:af:7a:80:23:fa:b1:be:43:bd:
66:f3:f2:6d:e2:fa:8c:04:6a:2e:f5:82:66:b8:02:
be:1c:5c:a8:e6:5e:b4:3f:c1:25:88:a7:de:02:06:
9e:d3:b0:22:ef:3b:77:e5:5e:cb:4c:57:9b:7b:fb:
e0:d8:a1:96:99:e5:2c:f3:de:f3:ea:6f:60:43:66:
56:a2:ad:a1:cb:92:4d:2a:7d:3e:19:a3:ef:c0:51:
0b:5a:77:3a:61:bf:eb:59:c5:b9:e1:de:44:c4:7d:
f6:5e:1b:18:db:c9:46:c5:41:09:73:66:71:bf:f0:
75:c2:f5:58:49:6e:53:48:cc:f6:78:6c:41:0e:30:
c9:bb:c3:5d:8b:54:27:8e:b1:4b:3c:07:47:6c:b5:
c6:a1:47:e8:70:a6:75:05:49:56:f7:27:6a:ca:0d:
7c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:DE:75:75:43:60:14:04:FE:1C:0A:FF:36:AE:E3:EF:FD:72:03
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9Z_edXVDYBQE_hwK_zau4-_9cgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.158.0/24
92.52.218.0/24
Signature Algorithm: sha256WithRSAEncryption
85:63:e2:a3:e3:9d:e3:f5:7a:df:71:ba:14:0b:87:b2:11:f9:
c2:d3:5b:17:51:37:69:0e:36:ce:22:37:0a:e4:a2:c8:22:a1:
14:29:86:d4:42:72:e4:e3:bb:84:06:7a:dc:28:7d:81:1e:db:
f9:d8:d3:ca:0b:73:69:a7:bf:fc:2e:ce:9f:2e:9d:b0:56:24:
44:9d:a1:a3:c4:f2:9c:19:5d:d9:80:de:cd:d9:9d:7e:e0:b4:
1b:75:54:f1:7d:7b:c1:15:73:ea:16:bb:00:cd:a9:ab:8f:21:
ba:c0:3a:d1:17:f5:d3:d9:68:75:43:9e:10:ae:c2:47:c9:7a:
8c:28:35:b2:56:b6:af:11:37:4a:db:20:36:b9:17:af:a1:77:
12:80:22:40:bf:f6:24:5a:77:eb:e9:4a:56:04:19:e2:cb:50:
f2:2d:4e:eb:81:f6:07:50:eb:5b:42:4a:af:eb:4e:49:cb:9d:
85:2c:15:2c:a8:06:35:4e:d5:96:d3:a5:b0:b7:37:b6:73:a4:
9f:cb:c6:33:6e:94:68:f2:01:67:93:c3:24:ea:38:72:cc:c2:
a3:e8:01:7c:5c:46:7d:37:49:eb:c1:e0:7b:67:09:40:2f:21:
69:9c:cb:4d:2f:3d:63:d0:e0:77:03:47:e0:3b:58:66:e9:be:
27:8b:35:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:00 2023 by rpki-client on console-fra.rpki-client.org