Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-YzqhEsKtfET0_ZDvREq9BeTXHc.roa
File: 1-YzqhEsKtfET0_ZDvREq9BeTXHc.roa (raw, json)
Hash identifier: hAQw0yI4cwdyYpYIvcpL+TE0mNyew1Ze9smPvcbE0QA=
Subject key identifier: F9:8C:EA:84:4B:0A:B5:F1:13:D3:F6:43:BD:11:2A:F4:17:93:5C:77
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0359F60D
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-YzqhEsKtfET0_ZDvREq9BeTXHc.roa
Signing time: Thu 17 Mar 2022 09:01:04 +0000
ROA not before: Thu 17 Mar 2022 09:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 193.124.20.0/23 maxlen: 24
195.133.208.0/23 maxlen: 24
194.135.132.0/23 maxlen: 24
89.39.172.0/23 maxlen: 24
188.240.40.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56227341 (0x359f60d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Mar 17 09:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f98cea844b0ab5f113d3f643bd112af417935c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:5d:07:3e:45:5d:b2:13:73:32:51:e4:c4:
4d:71:1e:a0:4a:0a:4e:68:54:58:59:ed:4d:3d:f2:
a7:65:75:c0:c3:1d:fe:9a:0f:92:5c:aa:33:48:13:
aa:18:03:07:c0:8e:ec:ac:f9:69:9a:7d:cd:00:cc:
25:b9:96:ad:4e:92:69:ce:77:90:84:70:88:a5:dd:
c9:d7:96:67:9d:29:39:44:c1:a7:82:22:36:ee:24:
fe:80:b0:34:80:ab:8c:e1:a7:e7:b4:60:d0:a1:a6:
25:0b:d1:06:6c:8f:99:d5:65:47:a0:80:b3:9f:5f:
d1:15:48:72:66:b2:e3:f2:72:5d:49:45:3e:1d:64:
41:a2:b8:7c:51:c5:3a:1e:a0:62:d6:b9:ce:06:0e:
af:08:c3:3e:91:26:d6:8c:7a:b8:a7:0b:c0:7e:cd:
67:76:bd:df:f1:f8:3c:f0:62:6b:8c:d3:73:dd:4b:
bb:e3:9d:e2:91:d0:bb:67:28:39:ce:b3:39:29:50:
f0:03:36:c5:76:60:15:bd:22:ff:74:2f:ce:82:47:
9a:46:fd:79:7c:d4:70:5a:77:77:e5:ee:45:af:d0:
84:1b:e2:02:a8:bb:e0:30:d3:c7:c9:99:68:b3:65:
ae:63:24:92:9b:91:aa:ff:d2:7c:20:00:9f:95:48:
83:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8C:EA:84:4B:0A:B5:F1:13:D3:F6:43:BD:11:2A:F4:17:93:5C:77
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-YzqhEsKtfET0_ZDvREq9BeTXHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.172.0/23
188.240.40.0/23
193.124.20.0/23
194.135.132.0/23
195.133.208.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:e0:38:7e:ee:81:23:ec:71:6c:cf:47:05:54:b1:03:90:85:
02:73:c1:bc:bd:65:55:6a:fb:cf:35:f7:f4:08:3f:b8:f8:ea:
a4:d3:90:c4:7e:d9:5e:ca:9d:c4:07:0d:f7:33:8e:7c:59:0f:
e0:60:ac:bc:1b:23:6b:cb:8a:d9:a1:1e:b0:60:69:54:2b:52:
10:23:90:0b:5a:91:7c:e2:29:0d:69:70:d5:c1:7f:d9:04:e3:
ce:3c:7c:02:c7:e6:8f:04:34:50:2b:c4:54:ad:1d:92:ed:a6:
90:cd:85:a9:a0:7c:cd:f8:39:59:da:bf:c2:67:d2:37:95:02:
1a:48:de:1a:c9:4b:a7:a0:07:73:ab:1c:05:38:fa:98:34:cf:
ff:a9:a2:df:e7:1e:b7:14:b1:84:f4:02:20:9d:85:43:69:59:
b9:ce:c9:cb:49:ec:60:0a:92:92:fa:00:65:56:33:0f:7d:b3:
22:9d:31:f8:9a:d2:a8:6e:96:e5:bb:74:f8:44:5e:73:f3:9f:
ce:81:f3:ef:57:46:4b:bf:c5:2f:f4:e3:51:0d:d0:a8:5c:dd:
2d:53:32:ad:03:b4:a8:53:88:66:bb:f0:6d:0f:58:54:0a:d6:
ed:46:02:29:ad:10:64:ab:ec:b3:77:6e:33:40:af:a5:82:3d:
cb:06:05:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-fra.rpki-client.org