Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/zwnJZE7hoGf_wT-n3NS4kNBh6LY.roa
File: zwnJZE7hoGf_wT-n3NS4kNBh6LY.roa (raw, json)
Hash identifier: +NlW4ZltPNsBq8bemFrjyWf+xvwBxMEGdUYiJ9SvEic=
Subject key identifier: CF:09:C9:64:4E:E1:A0:67:FF:C1:3F:A7:DC:D4:B8:90:D0:61:E8:B6
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 06FAFD72
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/zwnJZE7hoGf_wT-n3NS4kNBh6LY.roa
Signing time: Sat 01 Jan 2022 03:54:07 +0000
ROA not before: Sat 01 Jan 2022 03:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15626
IP address blocks: 194.15.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117112178 (0x6fafd72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf09c9644ee1a067ffc13fa7dcd4b890d061e8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bb:41:91:4c:c4:c9:cc:d0:90:2d:00:c5:23:
53:a5:0d:00:a2:6c:45:b6:66:c2:6c:48:af:1c:da:
2f:69:77:fc:ba:74:9e:e8:92:60:14:e6:8e:d7:5e:
56:a2:f5:6c:54:c4:f6:5b:9c:76:6b:e7:78:6b:1b:
0d:f4:75:b6:a7:69:b1:9c:6a:3d:a4:8b:98:f6:85:
97:0b:63:57:0d:1b:b6:ad:6e:50:5c:c6:08:b6:87:
67:cc:14:7d:f7:0b:c9:c3:b0:ce:06:25:8d:bb:4f:
c3:8a:8b:91:c7:c9:b2:a6:27:44:fc:cb:00:de:5f:
05:ad:16:a9:81:63:f3:74:a7:8c:10:cd:0c:3d:ab:
f5:d7:6e:c3:20:52:aa:c0:60:49:fb:68:ec:71:a2:
10:1e:1b:e4:75:98:5f:0f:ea:c0:3a:b5:65:fc:ab:
9a:8c:55:f2:9e:bf:53:6a:b3:e9:59:68:98:f7:1b:
59:fe:c7:f0:4b:a1:74:17:ba:cf:81:40:7e:02:5e:
59:5a:1a:89:9e:61:ee:c4:29:cb:50:c5:bd:33:11:
36:de:46:52:cd:ef:2e:3b:3f:fa:de:17:b4:ba:0a:
0e:3f:af:7e:8e:fb:d6:92:28:ad:5c:71:7c:b8:6b:
38:bc:e8:d1:22:f9:27:ae:95:e8:e2:1f:e1:9f:d3:
5d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:09:C9:64:4E:E1:A0:67:FF:C1:3F:A7:DC:D4:B8:90:D0:61:E8:B6
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/zwnJZE7hoGf_wT-n3NS4kNBh6LY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.52.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:32:e9:6c:61:f4:19:89:79:d7:5f:8d:9c:10:24:d9:a8:b6:
25:48:df:51:d0:d8:95:82:28:03:8c:96:31:97:5b:ba:5e:ac:
1f:d5:a8:8e:56:ed:e2:be:7a:9e:bf:01:df:b1:07:4e:3c:58:
94:e4:33:ca:fd:d3:08:7c:bf:9a:a2:b9:e1:0f:0a:56:38:c4:
81:bb:91:38:e2:ed:8f:2b:61:55:2e:96:12:70:0a:cf:8f:4d:
a2:96:65:91:da:7a:a2:08:28:ab:68:e5:d2:6b:31:97:6d:65:
29:35:d4:48:d8:86:72:54:f6:a1:22:54:35:ca:e7:8d:40:0d:
bf:1e:6a:7b:9c:12:ae:62:46:6a:3f:54:59:49:19:b6:7a:da:
6a:49:a3:16:37:59:c3:9c:43:9f:e7:4f:6a:30:75:8e:ec:7f:
83:bf:ff:48:5a:2e:91:da:9e:61:8f:ee:d8:9c:07:ad:63:3c:
e6:db:e3:b1:7a:5a:b6:97:b4:d5:70:38:81:f2:b0:63:33:da:
fd:73:73:9a:23:0c:ff:7b:74:af:9c:44:4d:31:4f:a6:41:33:
ed:ba:08:83:da:36:04:58:b7:91:f5:ef:27:46:cb:c7:b0:33:
42:f6:0f:32:1d:62:25:9f:32:eb:b5:d9:10:88:79:bf:61:a2:
11:7f:b0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org