Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/c38b6b-ab09-46aa-87ef-ebaa6ff7d886/1/ZjgUNEqyCSiIX5U9Vu_cPvkAX4A.roa
File: ZjgUNEqyCSiIX5U9Vu_cPvkAX4A.roa (raw, json)
Hash identifier: dnAVHlqvoaka54If0u9fz4b2h/Q5vDMPWqHRKPxl6XU=
Subject key identifier: 66:38:14:34:4A:B2:09:28:88:5F:95:3D:56:EF:DC:3E:F9:00:5F:80
Certificate issuer: /CN=aab78616f3b39ed4820d04ce098ea7c20655314b
Certificate serial: 01856FE6F3A241AAF957AACA840AA93C7BCA
Authority key identifier: AA:B7:86:16:F3:B3:9E:D4:82:0D:04:CE:09:8E:A7:C2:06:55:31:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qreGFvOzntSCDQTOCY6nwgZVMUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/c38b6b-ab09-46aa-87ef-ebaa6ff7d886/1/ZjgUNEqyCSiIX5U9Vu_cPvkAX4A.roa
Signing time: Mon 02 Jan 2023 00:34:44 +0000
ROA not before: Mon 02 Jan 2023 00:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202682
IP address blocks: 92.119.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e6:f3:a2:41:aa:f9:57:aa:ca:84:0a:a9:3c:7b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aab78616f3b39ed4820d04ce098ea7c20655314b
Validity
Not Before: Jan 2 00:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=663814344ab20928885f953d56efdc3ef9005f80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5f:f7:2e:13:ee:57:8e:a0:05:2f:f5:d6:25:
ff:f3:d2:39:4a:fa:2d:0b:b1:65:cc:4a:5f:18:fa:
ca:5c:cb:fb:da:06:89:5a:ad:b1:8f:34:4c:ca:58:
1e:e4:bf:84:9d:6f:50:ae:2d:d4:5e:be:d1:59:b2:
7d:ae:57:62:48:81:d2:41:7a:e3:66:12:11:e5:64:
2e:06:02:88:01:a1:c9:30:37:da:7f:3a:12:fd:6c:
14:f7:1b:7c:f3:b8:61:0f:ac:e5:ed:28:84:d6:28:
43:0c:34:ea:8c:47:58:33:a0:da:85:49:c7:86:5c:
45:ee:4c:bb:97:4c:39:e1:3a:cd:08:92:ce:14:1c:
70:ad:78:32:e3:9f:0d:9a:32:63:a1:85:e5:65:eb:
a4:2d:29:29:80:25:a1:de:a4:58:1a:f8:87:0c:4e:
42:c6:13:17:60:9b:23:91:8c:d0:b8:4a:cd:06:b7:
f1:e4:0d:89:8d:c0:c4:bb:e8:1a:9a:8a:b3:3c:8d:
21:dc:c0:d4:26:43:ca:ee:8b:f2:7c:2e:76:6d:40:
ea:0d:ed:be:5d:02:57:6b:3b:44:3f:23:3c:0a:fe:
a9:a9:38:09:47:32:68:52:c4:d7:29:cc:1a:c2:02:
53:21:ce:db:12:42:c4:33:36:aa:81:8a:79:f9:6e:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:38:14:34:4A:B2:09:28:88:5F:95:3D:56:EF:DC:3E:F9:00:5F:80
X509v3 Authority Key Identifier:
keyid:AA:B7:86:16:F3:B3:9E:D4:82:0D:04:CE:09:8E:A7:C2:06:55:31:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qreGFvOzntSCDQTOCY6nwgZVMUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c38b6b-ab09-46aa-87ef-ebaa6ff7d886/1/ZjgUNEqyCSiIX5U9Vu_cPvkAX4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c38b6b-ab09-46aa-87ef-ebaa6ff7d886/1/qreGFvOzntSCDQTOCY6nwgZVMUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:4d:01:a4:4c:51:95:15:48:96:3d:6f:e8:ad:f5:66:b2:2b:
af:5e:6f:f9:40:96:9e:ff:e2:d4:cd:d8:6b:8b:6e:53:c6:45:
34:3f:b7:b4:cd:1c:73:86:0d:6a:06:72:82:e7:1e:07:55:c0:
fd:27:21:69:a9:3f:84:b2:e1:27:bc:74:b1:55:c4:68:0a:67:
89:c2:bd:27:4b:72:42:82:b0:23:4d:66:a9:b5:30:6b:35:ae:
f8:66:72:8c:38:0d:83:38:40:14:e4:bf:93:25:19:be:13:2d:
5c:d0:58:4b:7b:02:f4:ee:00:43:45:bf:a2:41:5c:6a:4e:14:
70:43:bb:b8:12:ce:c2:b6:03:ce:b2:50:dc:f2:6a:f0:20:cb:
47:81:9d:f6:df:49:34:96:f1:53:af:da:83:2e:57:27:40:a0:
7a:f6:85:e2:f1:d0:4b:50:fc:6c:6b:b3:0d:f1:77:dc:52:65:
1b:c1:cb:70:59:bc:30:a4:31:37:f9:87:8b:0a:17:d1:cd:cf:
73:ab:6c:b6:7a:c3:5a:25:49:21:7c:8a:bd:60:65:6e:42:3e:
f9:61:55:c3:45:b2:cb:18:9e:f1:22:ab:1c:0d:cc:5b:80:c0:
ea:b8:dc:d6:28:b4:2e:5e:c4:66:ca:51:53:2e:a5:e7:fb:94:
6f:2f:62:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:28:36 2025 by rpki-client