Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/zl2eiBRGp5Kw0koVKH4g2_TTfDc.roa
File: zl2eiBRGp5Kw0koVKH4g2_TTfDc.roa (raw, json)
Hash identifier: RPtdV71ZUWPtltg14cqcZn/fCJIadzU76sH0MI+KsOY=
Subject key identifier: CE:5D:9E:88:14:46:A7:92:B0:D2:4A:15:28:7E:20:DB:F4:D3:7C:37
Certificate issuer: /CN=65eb8ef44183f8e3a9c887a7be26b3f0713c13bd
Certificate serial: 01826E6D6FF3FA39517CF8ACAF3FB787BB23
Authority key identifier: 65:EB:8E:F4:41:83:F8:E3:A9:C8:87:A7:BE:26:B3:F0:71:3C:13:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeuO9EGD-OOpyIenviaz8HE8E70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/zl2eiBRGp5Kw0koVKH4g2_TTfDc.roa
Signing time: Fri 05 Aug 2022 14:34:01 +0000
ROA not before: Fri 05 Aug 2022 14:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34711
IP address blocks: 195.64.178.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:6d:6f:f3:fa:39:51:7c:f8:ac:af:3f:b7:87:bb:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65eb8ef44183f8e3a9c887a7be26b3f0713c13bd
Validity
Not Before: Aug 5 14:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce5d9e881446a792b0d24a15287e20dbf4d37c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:a3:6c:8a:5a:12:c6:7c:ef:c7:08:65:7c:
79:5b:62:fc:d0:0c:00:65:9d:f2:74:3c:ca:4d:48:
be:ca:60:81:7d:29:e9:4c:4b:41:26:2f:98:af:36:
31:f2:17:39:5e:36:c0:6f:12:4b:aa:ae:2a:8f:d3:
c1:b6:a5:24:30:30:4e:35:27:0a:2e:1d:f8:d5:1c:
e1:02:bd:5c:32:97:81:15:41:c4:80:12:52:f3:b1:
62:e5:8b:f9:b0:b8:3e:6d:b5:da:15:10:00:7c:e7:
3a:f6:b4:1a:b6:99:74:86:b2:11:ff:7f:99:37:15:
90:db:56:a9:af:c1:c8:9f:63:51:6d:57:98:76:c2:
5c:f8:d1:e3:0c:ef:a8:71:cc:39:af:7d:d7:a3:b8:
8c:6a:d9:50:34:c7:ae:75:f5:e5:e9:6f:ac:06:a8:
42:2b:dd:50:43:e3:c2:fd:92:73:20:2d:62:a3:e4:
b4:57:7c:42:ae:cb:85:0a:0f:dd:96:e5:df:af:cc:
bc:34:7a:e0:55:0c:c3:e6:8d:ff:40:e4:f8:d5:2b:
e8:e0:9c:42:17:58:43:bd:d6:d2:a4:d6:10:6a:71:
72:3e:61:f7:0c:74:b1:98:a9:0f:ce:03:3a:a8:77:
09:df:54:e7:0a:74:b7:45:87:9c:db:20:86:c3:5b:
ac:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5D:9E:88:14:46:A7:92:B0:D2:4A:15:28:7E:20:DB:F4:D3:7C:37
X509v3 Authority Key Identifier:
keyid:65:EB:8E:F4:41:83:F8:E3:A9:C8:87:A7:BE:26:B3:F0:71:3C:13:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeuO9EGD-OOpyIenviaz8HE8E70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/zl2eiBRGp5Kw0koVKH4g2_TTfDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/ZeuO9EGD-OOpyIenviaz8HE8E70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.178.0/23
Signature Algorithm: sha256WithRSAEncryption
79:da:46:ca:9b:0e:0c:94:8f:3a:e2:8f:9a:03:c4:5c:b1:0f:
53:05:80:b7:6b:ab:02:9d:64:f5:c1:88:80:3a:e9:bc:f7:b9:
b2:84:1f:66:3e:4a:3d:0d:8d:f7:77:a2:53:c2:ff:3a:d3:a6:
8a:00:16:4c:21:37:6a:ae:d4:6d:d4:c1:6f:1d:7c:37:e5:2c:
f9:24:9c:01:97:7d:24:53:8a:41:60:b1:8d:43:e6:ae:8d:8c:
b8:80:5e:52:7d:98:53:a8:f0:8c:d9:49:23:09:88:3c:a8:99:
3e:ad:c7:7d:fe:bf:08:65:3f:95:f9:8d:b8:27:15:52:51:87:
67:59:0f:ed:05:4b:f3:eb:b4:02:4e:22:ee:fd:db:8a:1f:18:
5d:0d:2a:b1:00:a8:d8:36:fc:3b:96:5d:ce:2f:36:ca:b1:de:
53:f1:ed:28:3b:93:85:32:30:18:fb:15:34:90:62:d8:27:71:
67:ec:32:f0:ba:ec:bd:49:12:d8:68:39:73:5a:54:87:66:30:
4e:ee:69:f2:b2:09:56:9e:dc:f7:3c:61:3a:20:c8:f6:7d:86:
8e:77:2f:4c:0b:c1:a0:93:f0:ac:fb:e7:97:f0:8f:63:c0:33:
13:e1:1b:2a:54:47:48:65:f2:38:17:1f:cf:b6:33:90:92:08:
1c:19:1c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org