Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/36c2b8-12df-4552-9a1e-8ad0f068d161/1/z_dbGYS67tj_cbsZQtA-xHadkCM.roa
File: z_dbGYS67tj_cbsZQtA-xHadkCM.roa (raw, json)
Hash identifier: 0+ognrowgjzM/c7pA/0glGK9Ivzdcw5AuoRhxQeXISY=
Subject key identifier: CF:F7:5B:19:84:BA:EE:D8:FF:71:BB:19:42:D0:3E:C4:76:9D:90:23
Certificate issuer: /CN=73260aafefe2ee072e4062e7bf1ab8d9c4208561
Certificate serial: 341E9837
Authority key identifier: 73:26:0A:AF:EF:E2:EE:07:2E:40:62:E7:BF:1A:B8:D9:C4:20:85:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cyYKr-_i7gcuQGLnvxq42cQghWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/36c2b8-12df-4552-9a1e-8ad0f068d161/1/z_dbGYS67tj_cbsZQtA-xHadkCM.roa
Signing time: Sat 01 Jan 2022 16:02:21 +0000
ROA not before: Sat 01 Jan 2022 16:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47227
IP address blocks: 93.190.168.0/21 maxlen: 30
2a02:6d0::/32 maxlen: 126
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874420279 (0x341e9837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73260aafefe2ee072e4062e7bf1ab8d9c4208561
Validity
Not Before: Jan 1 16:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cff75b1984baeed8ff71bb1942d03ec4769d9023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fe:b6:d5:56:2c:11:83:85:43:1c:62:17:c2:
09:84:7e:3e:58:80:a1:1e:8e:b6:48:40:ed:e1:85:
8b:ca:2a:81:14:e1:43:c4:6f:51:7a:a1:e3:30:43:
c7:c9:bd:ea:c5:ef:e9:6a:fc:cd:84:5b:5f:ec:8f:
b0:3d:c1:22:72:16:04:8d:b9:46:87:12:8b:a6:bb:
0a:bd:ec:de:c9:a8:c6:2d:be:66:e0:05:89:18:0c:
dd:14:5d:2b:6d:1c:7b:dc:07:be:0f:ee:f1:44:b4:
79:80:2c:b7:ce:53:67:c4:88:f9:29:e7:e0:94:fb:
2b:6c:26:b4:3b:73:7d:97:05:d2:2b:a9:d1:49:f7:
09:40:b9:26:1d:28:54:f4:48:7e:25:80:a5:d5:b3:
42:63:ac:81:cf:05:44:ce:1c:cb:ab:e9:ec:80:82:
ce:40:d3:8b:c7:95:08:38:36:94:b0:61:db:47:2c:
4d:5c:bc:7c:fe:30:13:9e:5b:5e:0e:68:9b:ee:6d:
8e:b6:e1:70:24:b1:81:42:34:04:42:04:82:89:b2:
d5:ce:c8:c1:db:4f:d4:1f:f7:b2:2d:89:a1:f0:f4:
5b:fc:c0:99:f8:39:50:47:71:9e:96:91:07:fc:47:
99:2a:74:04:8b:c5:6f:09:7c:63:38:55:68:b3:e6:
3e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F7:5B:19:84:BA:EE:D8:FF:71:BB:19:42:D0:3E:C4:76:9D:90:23
X509v3 Authority Key Identifier:
keyid:73:26:0A:AF:EF:E2:EE:07:2E:40:62:E7:BF:1A:B8:D9:C4:20:85:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cyYKr-_i7gcuQGLnvxq42cQghWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/36c2b8-12df-4552-9a1e-8ad0f068d161/1/z_dbGYS67tj_cbsZQtA-xHadkCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/36c2b8-12df-4552-9a1e-8ad0f068d161/1/cyYKr-_i7gcuQGLnvxq42cQghWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.168.0/21
IPv6:
2a02:6d0::/32
Signature Algorithm: sha256WithRSAEncryption
84:3b:8d:43:25:d2:8a:3b:70:ae:3a:f9:1a:fc:84:c3:e3:26:
02:af:ab:b3:3d:bd:ac:d1:18:2e:2c:0d:04:ec:b2:24:f0:9c:
0d:48:64:c3:63:95:11:8e:f4:77:c1:7e:6f:7c:cf:a8:74:52:
5b:7d:85:24:fd:07:17:24:0d:0d:75:37:d9:b1:1f:70:1f:de:
d0:b2:43:e2:35:6b:eb:eb:a6:04:a7:f5:bd:4e:33:27:bc:b4:
47:07:c6:54:4a:9b:cd:40:6b:99:7b:00:e4:71:8c:3b:7b:8e:
95:a7:b3:7e:70:f7:5d:64:cd:e2:13:e7:f6:3a:ca:ee:d5:3c:
8a:df:97:2c:fc:65:78:ab:e7:16:83:d7:0c:e6:e8:22:79:b8:
83:68:bb:b7:52:71:2c:85:8e:bb:84:7f:f7:93:df:81:fa:9b:
55:4f:bc:c4:39:5f:57:81:57:34:89:b7:a6:ef:ea:48:e7:0e:
41:4a:77:50:3b:b5:71:2e:32:a0:6d:cb:8e:18:4d:5a:35:c0:
64:a7:f3:30:e2:9a:fe:9f:63:54:46:4d:40:46:d3:a4:09:79:
34:4f:06:f7:31:04:1d:6f:e2:9b:9f:40:bc:3f:3d:66:0f:29:
26:48:da:9e:70:0f:22:5d:fe:ff:51:f3:75:d9:23:88:b2:c7:
d0:4f:7d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net