Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/76c8b4-387e-4c04-8f35-c04ee05a7953/1/Z27GGl-OixdamO6o0PdYOILN4mw.roa
File: Z27GGl-OixdamO6o0PdYOILN4mw.roa (raw, json)
Hash identifier: a2SyCRlORyLLfX67x4JUL97b/Qikez0hSbPVqvVUYS8=
Subject key identifier: 67:6E:C6:1A:5F:8E:8B:17:5A:98:EE:A8:D0:F7:58:38:82:CD:E2:6C
Certificate issuer: /CN=a9d78ce7a21c841d8735424776eb7ff587ad04d1
Certificate serial: 052C48B0
Authority key identifier: A9:D7:8C:E7:A2:1C:84:1D:87:35:42:47:76:EB:7F:F5:87:AD:04:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qdeM56IchB2HNUJHdut_9YetBNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/76c8b4-387e-4c04-8f35-c04ee05a7953/1/Z27GGl-OixdamO6o0PdYOILN4mw.roa
Signing time: Sat 01 Jan 2022 14:07:37 +0000
ROA not before: Sat 01 Jan 2022 14:07:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21171
IP address blocks: 185.227.124.0/22 maxlen: 22
80.91.32.0/20 maxlen: 20
2a01:9900::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86788272 (0x52c48b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9d78ce7a21c841d8735424776eb7ff587ad04d1
Validity
Not Before: Jan 1 14:07:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=676ec61a5f8e8b175a98eea8d0f7583882cde26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:1a:4f:95:f9:57:57:46:ff:23:e7:15:5b:
82:41:ec:ae:36:a7:67:a0:3d:7e:21:2a:55:8d:b5:
c3:f3:9a:3e:ca:e6:19:03:e1:f7:4e:5f:67:53:cc:
97:42:45:cb:61:92:90:0b:d1:74:cc:16:9b:2c:b6:
fe:bf:1a:3f:da:ce:d3:11:0d:6e:eb:08:7c:95:68:
55:9e:ac:fc:97:a8:41:d8:b6:90:b2:fe:33:3a:57:
fa:98:e7:a9:5b:44:8d:a8:ef:16:a4:eb:de:a8:47:
d6:00:05:29:64:ca:75:4b:9d:5e:72:a1:a9:69:fc:
93:d1:bf:eb:c6:09:c7:26:c5:56:8c:5f:b2:39:b9:
32:fc:56:19:f0:0f:3c:35:da:a2:fc:b2:4d:c7:c8:
93:06:0c:e7:85:4f:1d:84:b5:32:29:42:8d:24:97:
9d:c3:4a:3d:7c:3d:b0:99:a6:3e:8c:1e:c9:3b:54:
5d:a0:53:34:71:ef:08:9c:6e:34:09:cf:fd:28:e0:
b9:83:a8:76:ce:52:55:6c:44:7c:da:74:fc:26:69:
b5:e4:52:03:1e:f3:cc:00:c9:eb:59:42:94:0e:3f:
be:5f:35:34:46:a3:e7:5f:ac:4e:43:f4:b4:87:95:
7c:a4:55:1e:69:aa:cc:09:3f:c6:9b:84:40:a0:68:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6E:C6:1A:5F:8E:8B:17:5A:98:EE:A8:D0:F7:58:38:82:CD:E2:6C
X509v3 Authority Key Identifier:
keyid:A9:D7:8C:E7:A2:1C:84:1D:87:35:42:47:76:EB:7F:F5:87:AD:04:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qdeM56IchB2HNUJHdut_9YetBNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/76c8b4-387e-4c04-8f35-c04ee05a7953/1/Z27GGl-OixdamO6o0PdYOILN4mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/76c8b4-387e-4c04-8f35-c04ee05a7953/1/qdeM56IchB2HNUJHdut_9YetBNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.32.0/20
185.227.124.0/22
IPv6:
2a01:9900::/32
Signature Algorithm: sha256WithRSAEncryption
74:ab:da:31:a0:eb:07:cd:48:5e:10:30:be:63:58:8a:a4:0e:
28:f1:7f:1b:7f:ed:d7:ee:fb:5b:e5:f2:2a:fa:99:67:0c:a2:
12:99:4c:5b:2b:a8:b0:0f:7b:e3:4a:34:f5:e6:4a:a0:9b:54:
64:27:94:f6:58:79:49:e7:ac:ed:b9:3a:44:8a:25:22:e3:24:
33:85:cb:13:c1:f3:2c:8e:4f:10:df:45:ff:5a:ee:71:e4:c3:
36:21:13:05:8b:bc:53:08:57:f4:29:67:61:07:27:49:25:0f:
71:8c:cf:af:81:3e:86:fb:93:62:3e:0b:c3:72:b3:9d:4d:31:
9a:eb:64:52:df:72:09:bf:b9:de:a6:4c:01:cc:d9:73:94:9a:
af:69:82:90:92:14:0d:5e:96:4d:cb:a1:ef:d6:12:31:b2:02:
b7:61:fb:10:29:58:9c:04:72:7b:c6:1d:be:08:fa:27:09:c5:
b4:bc:e2:a2:79:c3:f9:0b:37:e5:52:5c:39:aa:36:d7:bc:e5:
24:71:e0:98:0c:6b:1c:bf:d0:91:7b:2b:93:22:fb:99:aa:1c:
08:2c:ee:47:db:34:0c:05:03:cf:85:a3:2a:3f:ff:2d:ad:95:
02:5d:a1:b4:51:f1:02:fb:09:cb:f6:77:5c:65:57:28:58:9c:
96:5f:64:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:24 2025 by rpki-client