Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/zFeJNqfacVF3Smaa-YTOIFawMyo.roa
File: zFeJNqfacVF3Smaa-YTOIFawMyo.roa (raw, json)
Hash identifier: IOSTLmlj+8CbhOjf0BPEIUi5Vu7ciypaAfvgFRbu2L8=
Subject key identifier: CC:57:89:36:A7:DA:71:51:77:4A:66:9A:F9:84:CE:20:56:B0:33:2A
Certificate issuer: /CN=079d9053717a16a76c10ae838f5625055be0481f
Certificate serial: 0327E99F
Authority key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/zFeJNqfacVF3Smaa-YTOIFawMyo.roa
Signing time: Sat 01 Jan 2022 11:55:14 +0000
ROA not before: Sat 01 Jan 2022 11:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 185.93.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52947359 (0x327e99f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079d9053717a16a76c10ae838f5625055be0481f
Validity
Not Before: Jan 1 11:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc578936a7da7151774a669af984ce2056b0332a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:33:29:bb:eb:6b:58:78:ed:cf:8b:eb:9e:46:
6d:78:6e:18:8c:a2:b1:8b:b6:ab:99:bb:22:60:7c:
cf:b8:d0:35:5c:fd:9c:98:68:61:0e:98:64:c6:ce:
4a:d0:84:20:d1:ec:3f:0d:19:bd:8c:9e:60:5f:54:
fd:7e:3c:15:65:f7:73:04:da:a2:fa:ef:36:3c:56:
44:a6:79:63:9e:df:0c:f6:41:b0:da:30:cf:1b:0e:
a3:ed:d7:69:22:20:e7:a2:81:4f:a2:e7:59:50:9f:
79:54:12:f9:7c:09:ec:cc:e7:7b:7b:d0:7e:d4:66:
6e:3d:d2:37:36:d5:e5:b7:bd:73:e0:d5:b3:ee:37:
30:03:b6:d5:92:8c:00:21:88:eb:28:e3:3d:0e:4a:
0e:74:52:76:64:d6:09:bc:04:29:d2:4f:53:84:06:
57:f6:2c:1b:71:6e:01:32:fe:3b:35:40:cc:f9:c7:
a7:6f:b9:29:f9:d6:62:41:e7:c0:21:fb:7c:f5:50:
af:57:ce:50:2b:92:5e:86:d7:51:2d:e4:eb:00:f8:
ad:f4:c3:19:fb:12:89:78:69:4f:ca:5c:15:07:5d:
00:a2:e6:db:82:d3:16:b8:82:8e:84:2a:84:55:f2:
68:14:a3:b9:4d:81:8b:f2:ff:93:b1:a0:f5:3d:61:
34:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:89:36:A7:DA:71:51:77:4A:66:9A:F9:84:CE:20:56:B0:33:2A
X509v3 Authority Key Identifier:
keyid:07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/zFeJNqfacVF3Smaa-YTOIFawMyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.249.0/24
Signature Algorithm: sha256WithRSAEncryption
39:da:55:48:b9:69:aa:7e:3d:e9:fc:49:f1:15:76:da:42:66:
d7:18:95:1c:c9:8e:7e:42:c7:5c:0e:8d:37:1f:d5:5f:66:c9:
4d:44:5c:29:31:94:ea:8b:0d:d7:3f:19:44:c3:66:da:90:11:
5b:b0:00:a1:8c:bd:97:70:ff:c3:dc:53:e4:a1:0f:a0:3c:eb:
d8:22:f9:8c:b1:01:0b:22:03:34:7b:04:82:6c:4e:2e:b6:82:
e0:4a:77:cd:68:9f:e6:97:cf:d4:c2:11:27:05:b6:6c:7e:f3:
9d:87:a9:18:8f:ac:90:fb:f6:3d:4c:fc:68:69:9a:52:79:1b:
da:83:9c:d1:ff:84:4c:48:60:25:1e:41:fc:ed:20:81:49:bc:
1f:56:a2:98:30:62:01:36:41:32:a9:af:8d:ba:47:e9:2b:80:
7a:8a:4d:31:a4:05:0a:5b:7d:39:56:cf:67:e1:ab:04:db:48:
f8:b7:e9:84:36:82:05:76:c3:c2:6c:f2:93:66:0e:03:1d:9e:
4d:6a:43:55:26:5b:11:e1:46:78:9d:f3:d0:73:e0:3e:f1:0d:
69:f7:60:d2:5b:a3:a5:46:72:00:e3:2b:2b:02:7e:f3:bc:a9:
c1:e2:93:18:5f:7e:fb:da:47:cf:3a:e5:a8:4a:11:74:33:35:
17:40:1a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:28 2023 by rpki-client on console-fra.rpki-client.org