Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/cZUz3TnOGxdT62j_YcWWmClp7yE.roa
File: cZUz3TnOGxdT62j_YcWWmClp7yE.roa (raw, json)
Hash identifier: Qd3APmKn+H9+a+Qb5f9rf79rx7TNqs9rx2I5qCyJ/Ws=
Subject key identifier: 71:95:33:DD:39:CE:1B:17:53:EB:68:FF:61:C5:96:98:29:69:EF:21
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 0D95FC4A
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/cZUz3TnOGxdT62j_YcWWmClp7yE.roa
Signing time: Sat 01 Jan 2022 09:06:17 +0000
ROA not before: Sat 01 Jan 2022 09:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29550
IP address blocks: 193.111.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227933258 (0xd95fc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 1 09:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=719533dd39ce1b1753eb68ff61c596982969ef21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:00:79:33:f8:53:64:49:97:9d:1c:59:48:1d:
52:80:60:c2:1f:49:a7:7d:5e:38:aa:81:8a:d6:92:
c9:5f:66:fb:9b:18:be:b3:47:7f:5e:33:ec:ae:b9:
ad:aa:0f:03:b3:d7:fb:2e:93:c2:95:3e:9c:c4:e7:
2e:29:6b:4e:3e:29:8c:fd:83:d4:46:03:43:6e:d2:
07:2d:81:a8:e3:b7:60:de:7a:f2:fd:92:c5:35:d5:
0a:a4:ac:94:03:ce:8b:a4:5e:5e:29:c4:16:70:6a:
b7:24:77:70:87:fa:76:cd:f2:06:b3:46:c4:70:68:
37:ca:0e:43:a3:b1:b6:fc:c2:7b:26:d3:ab:e0:68:
8d:cc:7a:d3:cd:70:05:a9:57:76:d7:e5:05:87:36:
bf:c9:1c:1e:da:5c:88:eb:3b:10:7a:22:98:6c:e9:
26:b5:26:b5:53:93:f2:45:66:87:19:e3:63:02:09:
b3:8b:9e:f1:3b:c5:78:b2:07:f7:1a:7c:17:96:af:
12:ea:cf:73:5b:1b:e6:cc:57:1c:d4:cd:11:9f:20:
e7:c8:27:ff:66:72:80:5b:d3:d0:72:f1:92:d9:a7:
da:3b:3e:29:38:94:46:41:94:e2:f0:19:b5:e5:30:
e3:93:9f:e7:76:19:4d:b6:b5:e4:78:da:dd:ec:4a:
18:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:95:33:DD:39:CE:1B:17:53:EB:68:FF:61:C5:96:98:29:69:EF:21
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/cZUz3TnOGxdT62j_YcWWmClp7yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.95.0/24
Signature Algorithm: sha256WithRSAEncryption
56:b9:2b:da:59:c3:23:1e:4b:de:71:3c:27:31:c3:29:b6:ff:
33:68:b5:78:ea:8e:64:39:17:d5:b9:f4:88:0f:f5:ec:11:cd:
c2:b9:0a:6e:23:58:21:70:10:b5:75:c9:a7:6b:c3:f7:d4:02:
eb:bb:16:d0:04:ee:5a:78:1d:cc:26:94:94:76:f9:e8:ea:12:
a3:be:65:44:a3:1e:d3:6a:b2:1e:9a:ea:e8:f6:d3:ad:56:82:
76:64:c9:b4:de:bf:d8:32:61:7a:68:5d:9c:1c:90:64:e5:f2:
37:df:70:c0:43:4c:f7:7d:49:b6:ea:aa:76:87:10:a7:0d:b4:
d3:9a:7e:d4:f0:9a:c0:01:1f:37:47:1e:1c:9d:6b:71:01:18:
0a:34:54:ca:99:06:51:86:c0:c3:04:a2:f6:b6:37:8f:bb:4a:
44:9c:37:12:39:dc:8f:93:93:37:6b:0e:20:b7:1c:ac:ee:75:
cc:71:8a:60:3f:25:7d:a5:a2:2b:d9:59:d3:d1:ca:f9:e5:60:
1e:88:cc:03:39:b1:28:09:bd:cf:5f:f0:fa:d5:c2:b2:8e:22:
a2:87:ea:40:7a:2a:2d:2a:e4:d8:d0:ef:a4:a1:9d:71:2b:5b:
aa:22:54:90:39:e5:74:80:5d:b6:17:03:cc:2f:30:c6:2b:d7:
95:df:db:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:25 2024 by rpki-client on console-fra.rpki-client.org