Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/ZaA08EmY9fe1NkAPAdhjeUVYxyo.roa
File: ZaA08EmY9fe1NkAPAdhjeUVYxyo.roa (raw, json)
Hash identifier: EOizDSuJY5/QFfN/DS4edLurGe1u8f6YOPjU/asfK34=
Subject key identifier: 65:A0:34:F0:49:98:F5:F7:B5:36:40:0F:01:D8:63:79:45:58:C7:2A
Certificate issuer: /CN=cff374657f57078f3ca2c71109d35927c2248681
Certificate serial: 01B5F816
Authority key identifier: CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/ZaA08EmY9fe1NkAPAdhjeUVYxyo.roa
Signing time: Wed 06 Apr 2022 15:01:15 +0000
ROA not before: Wed 06 Apr 2022 15:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12963
IP address blocks: 176.100.0.0/24 maxlen: 24
176.100.1.0/24 maxlen: 24
176.100.2.0/23 maxlen: 24
176.100.4.0/24 maxlen: 24
176.100.8.0/24 maxlen: 24
176.100.9.0/24 maxlen: 24
176.100.10.0/23 maxlen: 24
176.100.5.0/24 maxlen: 24
176.100.6.0/24 maxlen: 24
176.100.14.0/24 maxlen: 24
176.100.15.0/24 maxlen: 24
176.100.16.0/24 maxlen: 24
176.100.17.0/24 maxlen: 24
176.100.12.0/24 maxlen: 24
176.100.13.0/24 maxlen: 24
176.100.24.0/24 maxlen: 24
176.100.21.0/24 maxlen: 24
176.100.22.0/24 maxlen: 24
176.100.23.0/24 maxlen: 24
176.100.18.0/24 maxlen: 24
176.100.19.0/24 maxlen: 24
176.100.20.0/24 maxlen: 24
176.100.29.0/24 maxlen: 24
176.100.30.0/24 maxlen: 24
176.100.27.0/24 maxlen: 24
176.100.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28702742 (0x1b5f816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff374657f57078f3ca2c71109d35927c2248681
Validity
Not Before: Apr 6 15:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a034f04998f5f7b536400f01d863794558c72a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:1d:8c:35:1a:c2:4b:64:28:ab:7b:1b:b3:
a1:bb:27:5c:28:e7:61:08:13:10:11:b8:63:ee:36:
6e:22:59:f0:1f:83:5b:a8:f2:3a:df:d8:14:4c:fb:
d6:c9:80:c0:3d:45:77:a6:86:c3:47:fe:d1:99:6f:
ff:88:bb:52:b2:d3:9b:5c:02:5d:d8:09:95:b1:23:
fa:65:0a:7c:a4:0d:ea:f0:ae:72:2e:c2:29:00:12:
05:75:6b:ab:87:27:b3:cb:91:d1:1f:9e:a3:11:0b:
90:13:b3:3a:2c:10:65:7a:d7:b4:1d:1b:e1:0c:2d:
10:27:8f:85:a7:ff:65:57:26:23:5f:36:56:10:51:
11:b1:0e:e6:0b:1d:2e:03:a6:0f:58:93:c3:8d:45:
34:41:de:92:8d:ae:9a:65:05:b4:fe:41:ae:cc:95:
a9:94:8a:32:bb:b7:f6:e6:f7:ff:b7:af:5d:59:5b:
54:83:75:74:99:29:f2:45:e2:f8:c7:72:6f:15:57:
a8:21:0c:59:e8:79:2c:ab:7b:ff:1a:29:fd:3b:2c:
8d:aa:ca:1a:aa:21:d2:2a:e3:83:cb:d3:59:94:f7:
b9:b5:88:1b:e7:01:f9:21:a6:be:e1:48:d6:28:0d:
ce:3f:6e:c1:b1:a0:dc:de:50:67:fc:9b:49:f1:af:
08:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A0:34:F0:49:98:F5:F7:B5:36:40:0F:01:D8:63:79:45:58:C7:2A
X509v3 Authority Key Identifier:
keyid:CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/ZaA08EmY9fe1NkAPAdhjeUVYxyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/z_N0ZX9XB488oscRCdNZJ8IkhoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.0.0-176.100.6.255
176.100.8.0-176.100.24.255
176.100.27.0/24
176.100.29.0-176.100.31.255
Signature Algorithm: sha256WithRSAEncryption
7a:6d:e1:96:56:8d:7c:5b:56:a7:b2:94:fb:9f:3f:6d:b7:e3:
6a:eb:81:1e:ed:99:17:77:25:83:2a:43:f2:14:0f:5f:13:7b:
5b:ad:de:cf:13:69:f6:41:9e:8a:bc:a6:f1:c5:89:ab:70:96:
5a:62:4a:03:ba:b4:79:99:0f:c8:bb:f6:20:86:d6:e1:1c:dc:
04:f4:10:08:1c:1a:fb:1c:4c:fa:a1:ea:fc:89:cb:eb:97:20:
48:3c:75:2e:f5:87:6b:5e:20:13:16:c1:6b:22:fc:f9:5c:d9:
eb:98:7a:8e:9c:49:d2:9a:8c:be:f6:7e:01:10:3c:4a:a1:7e:
5a:e0:8b:32:20:5f:37:9b:3d:f4:71:54:6d:f6:71:88:ec:16:
28:8d:b8:0e:f5:6c:38:24:cb:e2:18:68:fc:f0:34:17:d7:db:
16:22:be:56:3d:69:37:63:ae:56:0e:0c:2e:80:2e:77:43:f5:
4b:25:30:df:44:15:bd:7e:25:6f:b0:a4:9a:a3:80:17:0b:c7:
7e:aa:a1:89:8f:86:66:db:8a:24:99:5e:98:7c:83:f3:44:52:
9f:47:cc:fe:c8:b4:75:4a:df:6c:aa:e6:cb:56:22:39:18:f4:
cc:83:83:8c:ec:60:b0:58:34:ec:34:90:bf:cf:67:74:40:27:
e8:75:84:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org