Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/ZCos4F6P2nZeSLmBfRihdGafMxs.roa
File: ZCos4F6P2nZeSLmBfRihdGafMxs.roa (raw, json)
Hash identifier: FnoUu32uUf0X4gqUsh/gmwMhuPYk+Y5M7VY/b5gQtvI=
Subject key identifier: 64:2A:2C:E0:5E:8F:DA:76:5E:48:B9:81:7D:18:A1:74:66:9F:33:1B
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 1109EA56
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/ZCos4F6P2nZeSLmBfRihdGafMxs.roa
Signing time: Sat 01 Jan 2022 07:02:22 +0000
ROA not before: Sat 01 Jan 2022 07:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 91.209.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285862486 (0x1109ea56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Jan 1 07:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=642a2ce05e8fda765e48b9817d18a174669f331b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:6c:d0:0d:fe:4a:e7:06:a4:b0:2e:f4:39:
ad:77:3e:2f:47:35:00:8b:dd:c9:b8:1a:9e:0d:eb:
a5:6b:02:ef:45:a0:b1:e4:ee:2a:90:e6:0d:34:e1:
fe:ac:0f:7d:ba:7f:3c:9e:e2:f8:c8:19:b8:de:9f:
be:dd:7d:e1:19:93:ec:69:26:90:bb:67:33:0b:2c:
63:87:05:cd:15:4a:53:ba:d9:dd:d0:ae:22:fa:af:
f5:d5:e1:d5:f1:02:5d:6f:ee:04:45:8a:7a:8d:6b:
00:9c:41:48:c8:45:27:6c:d9:c1:f2:c9:d8:5a:43:
b3:cc:72:e2:cf:13:7c:8b:ab:b7:1c:26:8a:7e:90:
7e:d4:7b:93:23:90:28:ed:8a:0c:33:2e:53:8d:7b:
98:18:e6:35:25:d5:ee:7e:e5:6f:e2:f1:6e:44:75:
29:ca:1c:c4:87:36:5b:d0:4e:c1:be:1d:f1:1b:33:
51:3e:9a:84:d0:72:2e:c1:12:4c:80:1a:a5:e5:93:
7e:be:78:3c:9d:8c:36:ac:79:8e:d5:df:42:9d:c0:
c1:09:f8:84:66:30:4c:c3:67:6d:43:0d:ae:85:67:
42:f1:08:98:ee:5e:aa:e6:65:38:d6:92:8d:da:0c:
5a:7c:ce:17:60:c8:8c:9b:86:c5:bd:b2:99:06:26:
7c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2A:2C:E0:5E:8F:DA:76:5E:48:B9:81:7D:18:A1:74:66:9F:33:1B
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/ZCos4F6P2nZeSLmBfRihdGafMxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ed:9b:3d:88:7d:a9:05:25:6c:bf:91:dc:64:50:ca:90:60:
3e:49:39:22:70:b0:62:90:42:05:07:c0:f7:2a:f0:a3:a8:66:
80:e8:ab:a2:4c:cb:89:0f:8e:65:15:95:ed:5d:37:33:2a:80:
87:ba:68:96:da:69:4b:13:35:5f:69:de:7c:10:6b:6e:19:64:
b5:2e:c1:0d:9b:c4:33:50:65:24:71:d4:6c:67:fc:5f:89:a9:
ab:17:3b:c0:37:8e:9f:84:b5:b0:66:fa:63:87:8c:1a:6a:0f:
68:94:6b:59:25:f9:01:de:5e:eb:49:71:ea:ee:70:4b:3e:59:
7a:23:32:ac:6e:7e:7a:68:80:ee:5a:24:34:b3:db:ad:93:d4:
81:bf:9a:20:b7:e0:34:fd:92:e8:9d:33:b3:c5:22:08:4f:7f:
00:ff:dc:70:a5:e6:39:36:df:e3:42:e3:82:8b:15:cb:5a:a9:
1d:28:88:82:6a:7b:71:b3:78:47:a6:bf:ba:f8:26:a1:3a:cf:
d9:ec:eb:50:8d:d0:b5:51:f4:f1:96:4d:d9:29:9b:72:13:fd:
44:74:97:86:ba:62:28:65:fe:c3:55:77:0a:ac:09:d0:ca:62:
5f:14:1a:af:8d:b4:0a:b8:0b:9e:65:62:96:62:a1:0b:1b:d0:
cc:b2:c5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:51 2024 by rpki-client on console-fra.rpki-client.org