Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/_zGDcShGe9PH0ZezEqzdbooqrOE.roa
File: _zGDcShGe9PH0ZezEqzdbooqrOE.roa (raw, json)
Hash identifier: LQHO7gZA03WGscKFMyVRSFFXm7OnLoRJsDXY0uE6UqQ=
Subject key identifier: FF:31:83:71:28:46:7B:D3:C7:D1:97:B3:12:AC:DD:6E:8A:2A:AC:E1
Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Certificate serial: 07CD8665
Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/_zGDcShGe9PH0ZezEqzdbooqrOE.roa
Signing time: Sat 01 Jan 2022 04:02:48 +0000
ROA not before: Sat 01 Jan 2022 04:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209379
IP address blocks: 185.203.200.0/22 maxlen: 22
2a0a:edc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130909797 (0x7cd8665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Validity
Not Before: Jan 1 04:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff31837128467bd3c7d197b312acdd6e8a2aace1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:75:ae:b8:67:d4:81:f4:79:97:80:8a:01:
de:51:77:9a:75:c6:41:4b:1c:8f:d9:97:e8:57:ef:
e5:b1:e5:e8:39:dd:6c:22:b2:10:7e:3e:90:9d:c9:
49:7e:c8:53:4e:8e:07:c5:9b:fc:e9:18:95:e4:17:
8a:e6:a9:5e:7d:d8:88:94:57:40:6d:9d:bd:04:4e:
b4:2a:08:20:c1:c7:73:38:f5:c4:ed:c2:39:60:5b:
da:e3:29:23:55:85:3a:8f:f0:21:b0:5f:61:a1:14:
d2:7f:38:71:24:82:6d:06:1b:28:14:91:72:fb:31:
3a:d4:03:15:ec:08:7f:65:a0:04:a7:4c:bf:1a:79:
99:29:e0:25:05:b3:8d:68:dc:6a:93:76:d1:9c:91:
5e:bb:d7:7a:84:f4:49:1f:53:2d:77:66:c9:fc:87:
50:40:ce:0e:4b:ea:0c:91:00:eb:7b:2b:0e:1b:4e:
b4:32:cf:13:56:7b:70:df:e3:60:42:e4:8c:3b:3e:
ff:b7:14:44:30:f8:c8:5c:55:ed:a9:31:26:8e:bb:
3f:21:34:3c:02:97:f8:af:fd:3b:d8:0b:dd:bb:9d:
71:35:88:59:6b:8e:58:0f:9d:e4:b2:92:ed:db:01:
2d:d4:78:87:60:d1:8b:06:64:15:2a:26:b6:f1:d4:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:31:83:71:28:46:7B:D3:C7:D1:97:B3:12:AC:DD:6E:8A:2A:AC:E1
X509v3 Authority Key Identifier:
keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/_zGDcShGe9PH0ZezEqzdbooqrOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.200.0/22
IPv6:
2a0a:edc0::/32
Signature Algorithm: sha256WithRSAEncryption
9b:f1:78:59:d9:0b:c3:c0:b0:7e:b5:4f:a9:41:87:f9:d1:e8:
da:2d:29:ef:61:c3:a4:1f:5a:dd:57:2a:96:97:5d:39:13:1b:
b0:52:4a:19:11:8b:67:90:f6:90:7f:52:4b:97:0f:cd:bd:25:
5a:2f:8d:5d:00:9c:d9:7f:19:6a:d0:01:e8:d1:b4:95:09:68:
86:cf:70:b2:a1:7d:38:15:55:95:ce:f8:78:ea:88:ce:79:c4:
b3:e8:71:d9:e3:d7:0d:d8:54:00:8c:d4:d4:f4:17:13:49:a7:
a4:32:be:9b:8b:16:c0:7d:44:06:99:65:ed:af:0e:69:2e:5b:
f5:60:05:40:af:24:3e:94:e2:9d:81:05:3b:fe:bb:00:ad:0a:
3e:65:5b:08:75:b3:f9:65:14:91:08:66:5f:4f:e8:d4:d9:0f:
72:e9:7f:71:fa:b7:50:77:fa:17:69:c2:2c:4f:31:8e:52:63:
8c:0d:59:76:e8:9a:db:2a:f9:82:95:65:93:25:53:cc:a1:e6:
33:27:e2:0c:f6:64:41:6e:be:81:18:49:a8:55:22:71:b7:83:
df:02:17:f4:1e:24:8c:35:c6:cb:5b:b8:03:19:c4:e1:de:1e:
93:84:85:aa:8b:6f:05:51:36:a3:4a:33:48:b7:6c:89:0c:15:
45:fd:d4:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:50 2023 by rpki-client on console.sobornost.net