Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Z9Z7_7FhmTBqm4VHpWFJNB0BNJc.roa
File: Z9Z7_7FhmTBqm4VHpWFJNB0BNJc.roa (raw, json)
Hash identifier: 8yY6Snd+dHicVJaU6Bpb7Fnl5aETxpK+CFRlGk76i0k=
Subject key identifier: 67:D6:7B:FF:B1:61:99:30:6A:9B:85:47:A5:61:49:34:1D:01:34:97
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 191839CC
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Z9Z7_7FhmTBqm4VHpWFJNB0BNJc.roa
Signing time: Wed 18 May 2022 13:57:04 +0000
ROA not before: Wed 18 May 2022 13:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207114
IP address blocks: 46.33.40.0/22 maxlen: 22
46.33.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421018060 (0x191839cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: May 18 13:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67d67bffb16199306a9b8547a56149341d013497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:17:bb:37:6d:49:c2:78:b7:f5:41:e9:bb:09:
d0:e0:8b:01:18:08:e5:4d:f7:9a:b1:bf:34:b9:8e:
fe:73:7b:80:ca:5c:54:b8:bc:80:e2:0d:0a:dc:22:
89:b4:57:a2:7a:07:33:b1:ff:32:36:db:6d:27:22:
31:88:2b:45:07:3a:c0:5c:00:5e:0f:4c:48:a5:3d:
55:8f:38:17:16:44:9f:25:b4:1e:7e:a5:a0:e0:ee:
09:76:dc:c7:52:e1:91:84:6c:51:bf:d8:b7:f4:76:
07:2e:df:2b:52:43:34:80:ab:e0:bf:ce:32:f8:ac:
74:31:0f:e5:6e:7b:e3:e2:e4:84:62:d6:8e:14:7c:
22:a8:41:c3:fe:90:ef:c7:c9:35:11:6e:ef:a1:5f:
8a:cc:bc:e5:c5:ce:23:72:5e:ea:7b:8c:84:a7:55:
37:1d:f4:2a:51:0f:9c:6c:9f:33:9e:f8:d0:44:b7:
ca:a6:bf:36:f1:70:92:ab:ed:8f:a4:0a:3f:00:bc:
5d:9b:56:e9:c0:05:16:11:02:95:30:c8:ce:ee:40:
c0:81:67:ba:02:36:9d:12:88:ea:4b:c9:e2:c2:5a:
2a:19:00:9e:88:c0:29:72:de:3a:33:a5:81:94:3c:
6e:79:cb:06:c2:08:e2:2a:46:8f:89:ef:8e:b6:b9:
61:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D6:7B:FF:B1:61:99:30:6A:9B:85:47:A5:61:49:34:1D:01:34:97
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/Z9Z7_7FhmTBqm4VHpWFJNB0BNJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.40.0/22
46.33.56.0/22
Signature Algorithm: sha256WithRSAEncryption
20:3f:3c:99:0b:96:0b:0b:54:f0:b4:a6:cd:0e:ad:16:e2:71:
29:2e:c1:a3:06:db:67:20:e0:99:86:41:a4:9c:66:2e:90:00:
ff:7f:b0:0c:2c:95:4d:70:72:2f:77:56:3c:1a:66:1a:c4:d8:
15:b8:2c:92:e3:96:9c:c1:eb:81:d1:fd:47:e5:c1:f1:94:19:
a6:f7:56:b4:00:3b:92:21:bf:8f:94:6b:0e:b6:b8:32:ba:1d:
f9:b5:a9:89:3f:d1:14:5a:94:ca:cc:96:27:01:08:c7:50:66:
bb:7c:ba:d1:24:2f:aa:3d:07:26:55:64:d3:34:83:0a:e8:ea:
bd:42:b3:8b:f0:20:cf:db:06:a9:01:86:88:ce:8c:72:9a:f3:
2b:86:8f:d8:a1:3d:c7:4b:0d:4c:3d:80:1c:d5:df:0c:90:7d:
41:a5:31:1a:2a:82:57:67:52:b1:3c:6b:85:85:81:5e:c1:5a:
74:f2:c2:e6:6d:b2:ab:3a:72:20:16:98:43:17:52:9d:11:d6:
11:97:4a:1c:14:bc:dc:c2:1f:87:eb:f5:1f:8e:6d:1e:94:84:
aa:8b:01:dd:9a:6b:64:a6:15:a1:9a:bd:27:8d:01:2d:33:4f:
5e:22:61:31:5c:67:fb:9e:6c:c4:ad:ef:8c:c5:a9:b0:18:a7:
9c:78:50:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net