Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/RZp2ZYQpjOiYmNXhVrguNmUszJM.roa
File: RZp2ZYQpjOiYmNXhVrguNmUszJM.roa (raw, json)
Hash identifier: eLziYN1BymQYA3ndo5tX6qCJPuLp8k1RSrvtUarYJsg=
Subject key identifier: 45:9A:76:65:84:29:8C:E8:98:98:D5:E1:56:B8:2E:36:65:2C:CC:93
Certificate issuer: /CN=dce1b25fd91b5fbc1ffb1218c67ed558ae778c04
Certificate serial: 02CE62E9
Authority key identifier: DC:E1:B2:5F:D9:1B:5F:BC:1F:FB:12:18:C6:7E:D5:58:AE:77:8C:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OGyX9kbX7wf-xIYxn7VWK53jAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/RZp2ZYQpjOiYmNXhVrguNmUszJM.roa
Signing time: Sat 01 Jan 2022 14:08:48 +0000
ROA not before: Sat 01 Jan 2022 14:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47773
IP address blocks: 193.162.105.0/24 maxlen: 27
2a10:8dc0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47080169 (0x2ce62e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce1b25fd91b5fbc1ffb1218c67ed558ae778c04
Validity
Not Before: Jan 1 14:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=459a766584298ce89898d5e156b82e36652ccc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:f2:2a:44:88:4d:33:f7:18:76:b7:34:75:
3d:59:f5:24:10:9f:68:dc:80:05:d2:74:6f:17:66:
3e:81:19:dc:05:37:2e:da:88:fd:63:a8:59:85:e5:
57:b0:d8:0e:97:54:8b:77:d7:42:7f:0c:a5:12:a2:
65:bc:55:5a:49:d5:e0:69:95:1e:d1:96:7f:90:2e:
30:66:48:ea:ec:a7:7a:2f:69:63:13:3c:56:8a:16:
73:bf:cd:3d:ec:ec:8a:b5:ee:81:b5:23:0a:dd:09:
e2:dd:ab:a6:00:70:c9:96:d6:dd:a4:7b:25:7b:8d:
a2:fb:24:17:e8:c1:56:8e:9d:03:23:44:09:b9:85:
44:ad:88:79:7b:43:91:25:a7:d2:12:c5:76:c0:91:
de:a2:d8:56:10:a2:90:5c:66:ae:7a:79:80:4b:66:
a9:c0:6c:69:2e:58:4e:0c:40:f7:e3:b1:af:81:56:
5f:59:67:5e:d0:e5:58:ac:0a:7f:19:db:30:d4:ea:
42:2e:7c:8f:b1:2c:cb:91:ba:ae:1c:ba:93:9e:9f:
35:40:4b:3d:53:65:8a:4a:9b:94:23:9f:13:34:79:
13:6b:53:0e:25:72:ff:16:e4:9b:d5:d3:c0:bf:b4:
51:a4:44:4d:7d:4b:71:ed:df:2d:6c:03:cf:b4:9c:
2f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9A:76:65:84:29:8C:E8:98:98:D5:E1:56:B8:2E:36:65:2C:CC:93
X509v3 Authority Key Identifier:
keyid:DC:E1:B2:5F:D9:1B:5F:BC:1F:FB:12:18:C6:7E:D5:58:AE:77:8C:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OGyX9kbX7wf-xIYxn7VWK53jAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/RZp2ZYQpjOiYmNXhVrguNmUszJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/3OGyX9kbX7wf-xIYxn7VWK53jAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.105.0/24
IPv6:
2a10:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:c0:f5:b1:dc:33:84:9d:30:b9:de:b7:7b:d4:7e:91:8c:4a:
b3:0b:d8:72:9e:39:ef:1c:4d:e2:a6:9f:18:53:fe:89:99:f3:
fc:88:1e:d7:87:9a:ba:df:d0:5d:2b:07:d8:ca:5e:f6:b8:c0:
00:ea:de:90:2b:53:a2:fa:3a:20:ab:72:18:d3:a5:f3:04:1c:
c6:0a:74:23:95:a7:3a:ea:53:e6:9f:36:75:d1:e9:c1:e2:67:
42:24:80:0b:6d:fa:24:2d:28:30:f8:0f:8f:c0:22:e8:40:8e:
0c:58:21:c3:ed:1b:5d:e6:a4:48:11:78:16:4c:7d:76:6c:83:
3e:fc:be:b1:0c:d8:96:54:a5:6d:19:bc:7c:31:fd:d9:7c:c3:
85:a3:e1:cc:fe:2f:ec:12:eb:87:81:6b:e1:89:b3:61:6a:ad:
9d:37:d9:53:e2:43:e0:16:bd:9e:8a:ef:72:a2:2f:05:62:ea:
9d:96:14:f3:10:08:39:54:5b:df:12:e9:ab:d7:52:3f:45:ab:
ac:f8:28:1f:2a:71:b1:25:6a:5d:a8:6e:b7:50:7e:67:1a:68:
62:0a:3b:d8:6f:fa:2c:cb:b0:41:8e:15:fb:78:3f:85:54:d9:
66:b1:6a:05:81:b4:b7:b5:f5:a9:bc:a0:dd:ff:0b:00:fd:15:
f9:78:0b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:24 2024 by rpki-client on console-fra.rpki-client.org