Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ZEjZG_4gFZTyIR0ZayNO8e-GR2A.roa
File: ZEjZG_4gFZTyIR0ZayNO8e-GR2A.roa (raw, json)
Hash identifier: Cl/5Hj0mFxo9+TFhv/VteX9/gHe9+gqc/5iJQ3nofSU=
Subject key identifier: 64:48:D9:1B:FE:20:15:94:F2:21:1D:19:6B:23:4E:F1:EF:86:47:60
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 446EA3B1
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ZEjZG_4gFZTyIR0ZayNO8e-GR2A.roa
Signing time: Sat 01 Jan 2022 03:58:17 +0000
ROA not before: Sat 01 Jan 2022 03:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8723
IP address blocks: 193.251.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148101553 (0x446ea3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6448d91bfe201594f2211d196b234ef1ef864760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a1:25:b4:ba:c8:52:5b:96:0d:06:4d:7d:2d:
3e:8a:1d:72:7b:dd:4e:3b:5d:b4:ca:1d:63:7f:f8:
6b:84:16:a5:9f:76:38:c3:1a:b4:cb:ad:5a:bd:46:
53:37:a1:df:4c:74:cd:34:81:c4:99:48:33:69:16:
01:63:14:92:60:32:ce:4d:b2:09:7e:2d:88:c5:6e:
56:31:3f:75:b5:9a:31:08:75:67:43:f2:65:70:c8:
db:c3:c4:7e:44:a2:4c:3c:fd:30:6d:a2:be:2f:fc:
df:4b:cf:9d:1a:b6:c9:da:a8:7f:8b:bb:2d:82:1f:
26:e6:54:36:bd:86:de:2a:4a:d9:e9:b8:07:4b:b8:
5d:37:a8:1f:68:81:72:19:5c:eb:56:cd:88:dc:a7:
62:89:cc:2d:36:94:bc:00:61:4e:6f:26:08:48:90:
8b:a1:9d:d0:e3:17:c0:e9:9e:16:40:73:11:a5:e9:
c1:51:7e:24:0d:de:91:a7:fb:3c:5c:9f:36:82:01:
9d:ee:bf:f0:cc:65:b1:91:d9:f0:7c:7b:e8:df:c3:
b8:d0:12:0a:c2:77:f0:61:24:d1:4e:b5:8f:2e:f1:
11:e4:66:63:32:59:d3:b3:5b:33:4a:8f:cf:4f:b2:
90:64:5e:d9:ef:ec:01:f7:39:2b:e4:7c:fa:ea:00:
4e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:48:D9:1B:FE:20:15:94:F2:21:1D:19:6B:23:4E:F1:EF:86:47:60
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ZEjZG_4gFZTyIR0ZayNO8e-GR2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.217.0/24
Signature Algorithm: sha256WithRSAEncryption
58:79:ee:b6:72:74:b4:48:b2:82:6b:90:b5:9b:59:6b:9a:6b:
48:1b:53:e0:cb:93:d5:31:86:c1:f1:7f:4a:b7:77:2a:c0:9d:
26:de:b4:d4:4e:67:25:bf:f6:e1:d6:35:c3:cc:2c:0f:ee:b2:
23:91:2a:57:5c:e5:f1:74:7c:83:d7:6d:7e:66:d1:9b:e8:61:
06:66:21:0e:c2:ed:40:33:a1:ec:5e:0b:ad:8e:cb:84:83:1b:
24:8c:5e:68:f5:ec:eb:01:d1:db:d4:6e:d3:99:e9:60:f7:05:
05:2d:49:01:b7:6f:60:41:dd:7c:00:16:08:b9:08:ad:60:50:
2f:10:ca:da:9c:71:3f:e8:d0:16:44:01:3f:de:91:8f:37:05:
ab:7c:ab:96:df:5e:db:f5:10:09:f1:dd:49:db:70:fb:fb:ce:
88:5c:42:7e:67:0c:70:40:5c:f1:ab:da:19:cc:d6:08:40:4f:
b5:a5:5a:bf:a1:c3:3c:f3:95:2d:86:bd:6e:5c:5e:94:fc:fa:
1f:8c:2d:aa:25:8b:8a:02:75:0d:9b:7f:19:87:00:36:f1:06:
72:16:7f:8f:9b:5b:51:bb:1d:21:75:d9:43:50:f3:b3:50:84:
0c:7f:37:a1:28:79:1a:54:27:63:c3:3e:41:0e:c1:d7:24:80:
28:37:90:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org