Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/mzhTnGtCuyopsF0D86M4QtlHvnE.roa
File: mzhTnGtCuyopsF0D86M4QtlHvnE.roa (raw, json)
Hash identifier: IGhGE4EtFHNe3MEYBqvkKzYW8FWH/N3s3dijQv9oII8=
Subject key identifier: 9B:38:53:9C:6B:42:BB:2A:29:B0:5D:03:F3:A3:38:42:D9:47:BE:71
Certificate issuer: /CN=f6954d0103a7a3e652354a74489f86daf9a1a59d
Certificate serial: 0BD15E7E
Authority key identifier: F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/mzhTnGtCuyopsF0D86M4QtlHvnE.roa
Signing time: Sat 01 Jan 2022 16:07:02 +0000
ROA not before: Sat 01 Jan 2022 16:07:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58265
IP address blocks: 193.169.184.0/23 maxlen: 23
185.200.224.0/22 maxlen: 22
193.138.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198270590 (0xbd15e7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6954d0103a7a3e652354a74489f86daf9a1a59d
Validity
Not Before: Jan 1 16:07:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b38539c6b42bb2a29b05d03f3a33842d947be71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:08:f0:01:c2:c6:11:f3:17:a2:f1:0e:ed:4e:
ee:3a:5b:02:59:91:53:02:67:b3:16:99:51:ce:87:
77:65:9d:0e:e7:9c:9c:a2:75:5b:46:cd:d9:25:a5:
b3:c4:26:6d:c4:54:d5:ef:dc:1e:ee:d0:40:d3:37:
1d:0f:e0:74:89:a3:b8:d8:06:ab:f9:a2:a1:c5:b8:
53:94:f5:1f:2b:12:7f:44:dc:ba:c0:d8:ab:33:e0:
82:6f:d8:67:c0:81:98:43:65:e0:9f:6d:11:83:cb:
a1:3c:da:e8:20:6f:93:74:8a:04:31:a3:56:a7:e1:
d3:dc:b0:44:4e:a0:26:08:6d:9c:f6:63:7b:77:cf:
a5:71:eb:35:18:26:65:3f:84:31:09:5e:1a:c9:d9:
3a:33:03:ff:9f:78:bf:34:d1:78:ed:38:bf:8d:b2:
64:0e:9b:a5:24:a7:49:8e:0b:d5:65:52:08:2b:bd:
c2:4d:5b:24:c9:8d:51:6d:d0:4e:d8:a4:c8:e9:b0:
c3:ee:8a:b5:99:3d:bb:e9:0b:c5:94:37:2e:40:db:
57:ed:5e:40:6c:db:a5:85:c5:6d:b7:f2:90:0d:3a:
ba:b1:83:c7:cf:30:8f:f4:45:29:01:02:07:52:96:
3e:f3:47:f0:fe:2b:c4:fb:9a:cf:94:30:ee:6d:b1:
56:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:38:53:9C:6B:42:BB:2A:29:B0:5D:03:F3:A3:38:42:D9:47:BE:71
X509v3 Authority Key Identifier:
keyid:F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/mzhTnGtCuyopsF0D86M4QtlHvnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.224.0/22
193.138.156.0/22
193.169.184.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:1d:2a:65:57:77:5a:77:e3:01:ca:6c:28:94:70:af:ec:20:
b4:67:6b:81:bc:5f:c6:fd:22:ce:b5:30:ec:d6:8e:cf:be:33:
ac:84:dd:6a:29:25:48:17:e9:92:22:8e:0c:08:3f:c3:06:e8:
f6:e8:10:1a:bb:a1:0d:bc:65:79:97:41:96:20:3b:2d:fb:4d:
d7:48:bc:08:72:e5:9b:68:8b:3e:57:99:a1:ee:6d:05:b4:fc:
34:e9:d3:12:c6:64:8c:bc:24:bb:2d:5c:10:8b:60:0a:6a:ec:
17:b3:01:eb:2b:88:e1:60:c6:56:a5:09:52:95:e3:c4:91:b6:
6d:e9:ae:35:4b:73:12:a8:90:94:6f:98:6f:5b:a6:1e:16:e5:
b9:30:35:33:f7:80:1b:89:0e:36:28:3c:9c:65:bf:ab:83:9e:
7b:3b:e7:d8:ec:c3:0a:7e:22:14:d6:58:fc:e9:3b:75:c8:36:
1c:22:2f:be:8b:bf:2e:6a:64:70:2c:66:13:44:1c:82:24:64:
65:92:3b:5f:62:c6:d8:9c:02:0b:ef:77:89:86:17:79:2a:01:
54:f3:12:56:d9:6f:80:f9:16:5f:69:65:be:6b:cb:e3:17:ad:
39:cf:d1:91:a0:da:83:b0:57:a1:3f:9a:28:74:61:36:be:ba:
3c:83:13:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:26 2023 by rpki-client on console-fra.rpki-client.org