Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/Zjm3weh3no_WxkN_dxFcQgsDiEQ.roa
File: Zjm3weh3no_WxkN_dxFcQgsDiEQ.roa (raw, json)
Hash identifier: U5+DcWYc5x3Pvz+PtYD2VBeq7CwtLwWBXgW7gTT/9A8=
Subject key identifier: 66:39:B7:C1:E8:77:9E:8F:D6:C6:43:7F:77:11:5C:42:0B:03:88:44
Certificate issuer: /CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Certificate serial: 0181FBE975323F807119F87F38B7C9D4D8A5
Authority key identifier: 84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/Zjm3weh3no_WxkN_dxFcQgsDiEQ.roa
Signing time: Thu 14 Jul 2022 08:53:09 +0000
ROA not before: Thu 14 Jul 2022 08:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35186
IP address blocks: 195.80.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:e9:75:32:3f:80:71:19:f8:7f:38:b7:c9:d4:d8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Validity
Not Before: Jul 14 08:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6639b7c1e8779e8fd6c6437f77115c420b038844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:79:31:da:c5:1c:b1:44:92:ac:2d:4c:0d:
80:7e:bb:26:83:69:d1:57:97:85:db:84:a9:17:3b:
2c:2c:70:14:09:2a:f0:a8:f6:50:20:7a:a0:62:3c:
09:fb:23:03:04:6a:87:f2:9d:ed:34:d3:6d:02:1a:
52:1c:20:98:35:11:74:2c:33:14:20:90:80:26:2e:
14:9c:e7:15:99:20:24:14:ee:6d:4e:ed:b7:2d:e1:
9e:c0:1b:47:d4:c5:8a:ef:00:b0:df:a8:df:40:4d:
1f:9d:3c:b9:05:ca:f5:dd:5d:10:58:83:b9:04:4b:
15:73:fa:cd:97:df:9a:4a:69:4a:35:ff:5c:df:e4:
f1:d5:81:bf:9f:23:fe:63:6e:f6:0c:7f:22:e3:2e:
a8:4e:ae:1c:88:1b:f4:50:5a:3f:5e:84:35:fb:fe:
55:f6:56:d9:4e:5a:58:30:cc:d0:57:a0:9c:2d:e0:
5d:55:9b:7a:22:66:9c:33:1d:6e:33:46:c6:3d:64:
05:21:0c:1f:cb:7b:57:64:07:4c:0e:29:84:1c:96:
90:88:aa:77:9a:7f:b0:6c:44:af:78:5b:ac:84:b0:
6f:9e:03:74:18:fc:1e:15:e5:1c:05:e0:ff:ae:b5:
5d:0e:d2:cc:b2:3e:f3:37:f1:76:cd:ad:78:71:20:
f7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:39:B7:C1:E8:77:9E:8F:D6:C6:43:7F:77:11:5C:42:0B:03:88:44
X509v3 Authority Key Identifier:
keyid:84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/Zjm3weh3no_WxkN_dxFcQgsDiEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/hJG76s9bDFiembk_hOHF5H2a9gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.225.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7a:83:04:2d:53:ab:83:c3:fa:a6:ec:bb:18:1c:f9:5d:78:
c0:fd:9e:8e:70:47:2b:51:aa:90:c9:79:50:b6:56:59:1c:1d:
ad:4d:04:11:0f:c9:20:20:ba:af:9f:cf:8c:0a:a3:82:a8:4b:
ad:8c:a5:ac:ae:8a:9d:97:bd:92:5c:3c:8e:a1:19:b1:67:88:
11:6e:84:41:f4:f4:e6:45:3d:f4:fe:9d:4b:7a:d3:fb:3f:98:
ad:56:97:44:40:2b:d4:5c:cd:54:fd:0c:45:9a:82:4a:40:12:
6f:c0:db:ac:5a:1f:b3:9e:a1:d1:60:8b:3c:99:75:0f:ba:18:
e8:b7:e2:e5:7b:d2:fe:53:06:b2:77:b1:2d:e4:6b:ea:28:ef:
4f:d3:34:3e:ee:09:b0:69:9f:6f:0a:fb:59:33:a4:5b:d5:ed:
87:5c:38:da:19:8b:e0:1a:41:16:e5:bc:6c:49:d9:f7:59:12:
9e:94:b6:4c:3f:a8:95:86:89:20:da:20:60:14:e2:20:09:dd:
48:f3:2c:48:4b:d7:d9:73:f6:2e:bf:6d:eb:e9:00:19:a8:91:
c7:89:bb:5f:c5:25:7d:23:9d:c9:3c:09:a7:a6:6f:45:38:85:
64:e1:54:1c:7c:bb:17:f4:8d:3e:ab:9c:33:55:1d:bc:62:17:
fa:9f:90:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net