Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/zBcCGV0NxhWEoMp3baC-RxtUmj0.roa
File: zBcCGV0NxhWEoMp3baC-RxtUmj0.roa (raw, json)
Hash identifier: r9mZ960U4JZ6j7cnciNYp5Ec+GFHZmd+ESZNLRSDl1k=
Subject key identifier: CC:17:02:19:5D:0D:C6:15:84:A0:CA:77:6D:A0:BE:47:1B:54:9A:3D
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 0E82835A
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/zBcCGV0NxhWEoMp3baC-RxtUmj0.roa
Signing time: Sat 01 Jan 2022 15:57:42 +0000
ROA not before: Sat 01 Jan 2022 15:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 193.43.16.0/24 maxlen: 24
193.43.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243434330 (0xe82835a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Jan 1 15:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc1702195d0dc61584a0ca776da0be471b549a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:99:64:47:0a:6e:cc:de:77:e3:c1:6c:09:bc:
59:1b:29:d1:9a:1d:ff:a8:98:dc:b2:77:e3:6e:8c:
43:44:66:94:ab:1a:f3:c4:51:9e:ee:12:0f:70:30:
38:f3:63:86:e2:fe:44:38:7c:05:4c:3c:fa:6e:c4:
06:bb:8f:94:63:47:78:e0:07:f4:24:cd:27:67:96:
92:ae:a0:2c:66:01:03:a0:31:a2:d6:04:ac:52:f7:
ea:04:1b:42:1c:e2:0a:5f:9b:56:04:72:12:22:91:
da:12:56:2c:af:68:8f:25:60:c8:1d:58:bd:45:16:
3f:4a:cb:d0:71:af:9d:33:5d:dc:2f:fb:d3:34:e8:
a0:06:f9:c6:1b:14:84:e7:e6:fa:b4:eb:0a:b4:ba:
d3:47:89:fd:00:e5:04:33:e5:7d:e8:6a:9e:95:3f:
4f:ba:7d:50:87:8e:53:7f:c5:54:03:cf:ed:00:eb:
41:58:9f:c9:4c:5a:88:8c:ab:0e:d6:b4:a4:e0:a3:
13:ea:c0:bb:ae:c2:c3:d0:de:dd:57:49:0e:63:65:
4a:be:89:5f:b9:21:b2:af:d5:8d:46:c7:2f:4c:76:
31:ed:83:c8:39:07:a4:5a:f1:fa:b8:9b:fb:68:4c:
cb:98:a8:db:db:69:64:72:a5:b6:d3:01:82:2c:31:
a4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:17:02:19:5D:0D:C6:15:84:A0:CA:77:6D:A0:BE:47:1B:54:9A:3D
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/zBcCGV0NxhWEoMp3baC-RxtUmj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.16.0/23
Signature Algorithm: sha256WithRSAEncryption
83:fb:c9:de:06:ef:27:85:d7:3c:b9:43:79:bc:3d:7b:d1:3a:
f4:bc:cd:59:f4:44:80:b3:be:ef:d4:8d:52:97:f3:f9:fa:c0:
c4:9c:6b:f8:5f:09:7c:f6:8a:7d:40:39:b0:46:58:d0:ee:b6:
bd:84:2e:33:5b:00:92:12:28:9f:b0:8a:b3:04:8b:d9:5f:7d:
c5:39:6e:9c:eb:60:a2:8e:d3:58:b4:d1:0c:7a:4f:04:80:5e:
f8:19:0c:03:a9:a3:22:1d:0a:0d:a9:bf:ee:2b:b8:ea:97:2e:
5f:34:b5:63:b1:53:d9:9b:40:3b:ec:43:19:c3:d8:5d:c0:f0:
0b:d0:f3:c4:2b:10:89:88:b7:3a:09:3a:c1:0d:04:6d:0c:8e:
c7:c9:de:9f:49:b3:6e:72:8b:7b:5d:2b:13:9d:1f:f7:29:74:
48:6b:cc:68:12:48:34:ec:a3:af:dc:d3:45:06:cd:b6:05:15:
6a:6b:be:88:eb:4e:65:10:66:ce:03:91:82:76:3e:d8:3a:18:
0c:b3:d7:dc:44:86:a4:fc:eb:18:04:62:b3:e6:b3:49:c5:46:
23:16:14:59:47:5f:49:d2:01:eb:fb:0d:4f:c9:fb:10:76:07:
fd:1c:45:aa:52:05:b3:33:fb:5b:00:ac:69:2a:9b:75:ff:db:
ed:fe:58:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:44 2024 by rpki-client on console-ams.rpki-client.org