Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/zb6FxQLAynWGP9yQw-oqQw-DGlQ.roa
File: zb6FxQLAynWGP9yQw-oqQw-DGlQ.roa (raw, json)
Hash identifier: 1etJKr6KULxJMmmWUCm6CP5zAg5pNXsf5Xz6mLvkvf8=
Subject key identifier: CD:BE:85:C5:02:C0:CA:75:86:3F:DC:90:C3:EA:2A:43:0F:83:1A:54
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018321697BE0A774289B49B6D67763A1A615
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/zb6FxQLAynWGP9yQw-oqQw-DGlQ.roa
Signing time: Fri 09 Sep 2022 08:41:44 +0000
ROA not before: Fri 09 Sep 2022 08:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29177
IP address blocks: 194.20.142.0/23 maxlen: 24
194.20.144.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:69:7b:e0:a7:74:28:9b:49:b6:d6:77:63:a1:a6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Sep 9 08:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdbe85c502c0ca75863fdc90c3ea2a430f831a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fc:2e:f4:16:3b:38:7c:b2:2c:07:70:68:56:
b2:8c:8f:4f:f8:b9:16:3d:31:6c:65:18:8e:f8:66:
87:46:33:33:a3:21:23:79:f1:06:b3:c6:77:02:8e:
82:38:fc:c5:f2:39:56:74:a8:42:00:32:bc:a9:33:
93:fd:ff:5c:15:9c:38:09:3d:ec:8c:70:26:0b:05:
a1:08:ba:68:3c:04:3d:01:7e:17:f0:aa:12:cf:32:
bb:3c:80:f9:5d:ea:be:9e:0d:33:cb:76:ba:23:c9:
47:66:27:4e:ad:d7:d1:b2:a6:2f:03:95:32:2e:27:
a7:4d:15:7c:55:2d:6d:cf:6c:12:82:70:6c:47:b8:
9c:3a:6e:ce:54:d0:40:87:9d:07:97:8e:0a:74:c5:
fb:bc:ee:69:1a:8b:fc:06:fd:0c:61:fe:e3:4d:87:
3c:3f:fa:8f:12:96:73:67:84:2b:02:08:12:71:df:
21:86:1f:0f:5b:e5:ad:98:5f:d4:4f:6d:44:33:ad:
c7:f8:49:af:ea:c7:43:4c:23:c5:c4:f7:1c:36:36:
63:19:1e:1a:44:72:d1:ec:ff:c5:a7:5d:73:64:e7:
05:3b:bc:2b:9b:c2:8f:78:f2:9b:3b:fa:8e:a7:9d:
4c:07:34:27:43:fa:52:32:0b:9f:8d:e1:61:72:f0:
3e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BE:85:C5:02:C0:CA:75:86:3F:DC:90:C3:EA:2A:43:0F:83:1A:54
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/zb6FxQLAynWGP9yQw-oqQw-DGlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.142.0-194.20.145.255
Signature Algorithm: sha256WithRSAEncryption
2f:56:26:37:ff:74:5b:23:27:11:1d:35:11:54:a8:d0:65:e2:
27:33:12:66:69:aa:03:02:c7:77:24:cd:f1:20:46:f9:2a:7f:
7e:55:96:f3:8c:c0:a2:76:46:00:3a:28:8f:1a:4a:2c:51:e7:
16:0c:ec:3f:e7:79:bf:33:b9:3f:22:7d:66:e3:e2:77:4e:9c:
74:33:e4:88:80:40:32:24:6c:4f:5f:03:6e:f4:e3:8f:14:47:
0c:93:73:a4:6b:94:c2:e6:b0:d5:32:c2:91:04:44:60:a8:ad:
44:b4:13:b3:67:91:2d:46:c7:a6:f6:82:94:37:77:27:71:f6:
d4:99:24:a0:3f:99:6f:4b:98:6f:cc:a6:c4:d1:7f:ab:39:81:
0b:e3:de:10:a1:80:fe:6a:97:77:89:8b:ca:66:aa:f0:1e:bc:
42:ca:df:97:b1:7a:98:77:68:21:73:36:df:d4:20:31:d9:f7:
dc:7d:c2:b6:58:1b:cf:69:35:42:eb:9c:0b:9c:48:7d:17:fb:
25:a5:1f:46:27:e9:e0:5e:6e:a6:31:13:5f:a1:b7:29:1b:76:
46:44:a5:d1:ed:2e:f9:51:06:d0:a8:db:93:51:d3:79:c3:d4:
0e:c9:ba:d5:36:44:43:d9:8c:3b:89:21:9c:07:14:67:98:2e:
fd:ea:30:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net