Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/zGf-ru0gkBbdYTOQ1fT-xFVgNSw.roa
File: zGf-ru0gkBbdYTOQ1fT-xFVgNSw.roa (raw, json)
Hash identifier: xcwH4pVxbUtp6bmizB4MdaYP2mMOJOjlxcGDnpcCF+I=
Subject key identifier: CC:67:FE:AE:ED:20:90:16:DD:61:33:90:D5:F4:FE:C4:55:60:35:2C
Certificate issuer: /CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9
Certificate serial: 06CE0F25
Authority key identifier: A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/zGf-ru0gkBbdYTOQ1fT-xFVgNSw.roa
Signing time: Sat 01 Jan 2022 08:52:57 +0000
ROA not before: Sat 01 Jan 2022 08:52:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47297
IP address blocks: 185.124.226.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114167589 (0x6ce0f25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9
Validity
Not Before: Jan 1 08:52:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc67feaeed209016dd613390d5f4fec45560352c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:6e:2c:df:50:78:17:b0:a4:e3:0d:8d:22:
64:7c:0c:d2:83:49:18:4f:fe:35:5c:4a:8f:af:72:
56:8d:0b:ed:38:85:09:1c:c3:a5:1e:ce:07:f2:64:
9e:4c:4c:0f:88:cb:fe:c6:35:77:43:d1:61:2b:1c:
9d:60:b2:e4:99:4b:e8:b4:2f:47:c2:52:7b:f8:cf:
e9:b0:3c:99:45:9a:bf:21:d1:cd:42:23:26:10:d8:
d9:06:89:ba:64:1f:32:5f:28:e8:00:b5:fb:51:29:
24:9a:3f:5e:24:a8:53:f2:84:8a:04:8e:79:51:ab:
73:cf:f8:26:8c:f0:15:b6:66:9d:af:92:78:f9:28:
03:25:e3:cb:cb:46:40:5a:a6:08:2e:31:52:f6:8a:
f2:8d:f7:61:f5:0d:6f:9e:a5:56:eb:2f:41:1b:d7:
f4:7b:a9:c7:fd:16:da:74:d9:2f:c4:d5:cc:08:20:
2d:57:05:97:88:fc:06:a0:d3:0c:db:e5:da:65:94:
d1:9b:7c:18:fa:71:54:10:7a:e8:1c:c2:9c:50:d2:
88:c7:ec:4d:13:f0:c3:34:e6:cf:96:bf:dc:b9:21:
b5:51:a6:e4:62:26:92:d5:31:54:55:be:4a:d5:62:
6f:d0:0c:76:99:fd:6c:3c:c2:c9:cf:5e:08:c4:37:
d2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:67:FE:AE:ED:20:90:16:DD:61:33:90:D5:F4:FE:C4:55:60:35:2C
X509v3 Authority Key Identifier:
keyid:A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/zGf-ru0gkBbdYTOQ1fT-xFVgNSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/oGOa3x4LhLn_ZOT46-Y4679dJ7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.226.0/23
Signature Algorithm: sha256WithRSAEncryption
21:60:59:20:bc:06:d3:3d:0e:91:b8:34:9d:f0:7e:2e:a2:69:
d4:34:8e:e4:0e:fa:47:69:bc:04:fb:ff:b0:5c:bf:c9:81:e4:
fc:ef:1c:aa:0f:ba:f6:75:92:25:62:87:14:4f:42:0e:ac:cf:
80:4d:e7:0a:85:87:46:17:e5:24:41:b4:1b:85:f3:12:3e:fa:
44:8c:a3:6c:1b:47:1a:04:d3:ba:47:3d:96:6e:64:d9:d5:d9:
1d:12:c8:80:48:f4:1c:f6:50:6a:87:7e:2f:4e:e0:7b:2c:33:
fa:33:45:a5:ff:1c:4f:7c:a4:79:57:03:3d:16:4b:fa:5b:d4:
15:e8:01:45:e7:ee:cb:1e:55:cf:01:f5:66:c1:0c:93:b3:58:
9d:88:5f:4e:17:fa:5e:96:19:04:d6:71:5e:b6:bb:4e:e9:67:
83:8c:aa:62:c8:3b:b5:df:9f:46:b8:4a:44:8c:ee:c4:c4:47:
28:ae:6d:01:b4:00:9c:9b:8c:4d:af:6f:28:0b:da:98:3b:fe:
4e:a5:be:d3:f8:b4:f1:89:a3:d5:7f:2c:5b:3f:5e:3d:bc:a1:
1c:5e:96:62:c5:81:63:18:83:f4:98:54:96:a0:69:a1:5c:cf:
9f:4c:f0:1c:f1:20:f4:26:90:7e:e6:81:66:51:c9:40:f0:01:
74:90:1c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:09 2023 by rpki-client on console-fra.rpki-client.org