Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zFch46Pxf-4sduW9Wz2EBZBUasw.roa
File: zFch46Pxf-4sduW9Wz2EBZBUasw.roa (raw, json)
Hash identifier: je8ckeIHCRPZhCv6NvVZyMsi1LZcHIRAwOqBLwDXCZ4=
Subject key identifier: CC:57:21:E3:A3:F1:7F:EE:2C:76:E5:BD:5B:3D:84:05:90:54:6A:CC
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 0183604F12DDCEB9494CD9848AC0D9334ADD
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zFch46Pxf-4sduW9Wz2EBZBUasw.roa
Signing time: Wed 21 Sep 2022 13:48:58 +0000
ROA not before: Wed 21 Sep 2022 13:48:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30990
IP address blocks: 193.251.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:4f:12:dd:ce:b9:49:4c:d9:84:8a:c0:d9:33:4a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Sep 21 13:48:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc5721e3a3f17fee2c76e5bd5b3d840590546acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4e:5c:6c:a6:9f:03:88:c9:56:57:a9:e5:9c:
5f:8a:c6:ca:a8:9c:f8:f3:87:5c:e7:2b:2b:8d:bd:
8d:08:9f:bc:27:47:5a:52:b9:65:f2:a5:3d:7c:d9:
35:7e:fd:14:43:5c:29:94:6b:99:22:34:b3:b8:6d:
20:cb:67:ee:11:7f:4c:af:86:47:3a:fc:a6:13:7a:
55:a0:a2:60:f6:3c:2a:ea:47:c3:f2:6b:97:d3:17:
08:a3:15:da:8e:af:e7:b1:23:0e:f7:ae:14:ff:60:
31:17:37:79:51:da:b6:82:10:e8:c8:f6:1f:b1:e0:
9f:bc:c4:d8:ea:23:f4:c8:aa:51:a9:70:bf:e3:76:
11:ff:f3:b9:d5:77:83:8e:82:f1:92:bc:45:1f:95:
4e:bf:7a:17:20:18:df:1b:53:d1:31:89:13:bb:87:
65:3f:51:96:bf:d3:60:38:5f:1f:72:8b:cb:5b:3e:
dc:82:78:8d:b2:01:d2:34:5d:03:28:ea:e2:de:2c:
59:9c:89:2d:c0:5d:4e:66:ae:bf:20:81:00:d6:19:
03:6d:e6:27:b6:8f:f2:91:01:0d:aa:7e:e7:41:3a:
c2:0c:32:91:c0:6b:a9:2a:6b:cb:f7:1a:3c:a5:de:
05:31:07:1c:0e:a3:39:31:8f:a6:71:47:14:5f:6a:
2b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:21:E3:A3:F1:7F:EE:2C:76:E5:BD:5B:3D:84:05:90:54:6A:CC
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zFch46Pxf-4sduW9Wz2EBZBUasw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.143.0/24
Signature Algorithm: sha256WithRSAEncryption
89:cd:d5:5b:ef:29:46:b7:11:12:41:3c:01:b3:8f:c7:97:ed:
69:62:ad:43:f7:3c:21:bf:ce:31:17:e1:d6:b6:db:1e:ea:1e:
97:76:66:b4:11:a4:0d:64:24:eb:d5:1c:da:f1:1a:20:48:8b:
a9:2b:35:42:9e:13:c4:51:a5:21:4e:ad:1f:2c:e4:3a:a7:2c:
eb:3d:75:9c:13:8a:60:c2:37:57:0c:34:58:a6:19:6a:83:11:
06:2a:4e:c5:57:db:7a:ae:ce:9a:28:cf:c3:32:31:73:fc:d1:
15:42:df:d5:13:7e:1e:41:d4:0b:7b:7c:44:29:89:9a:6f:a1:
d1:e9:ef:9b:f7:e1:e4:cf:4d:61:b1:d1:cf:ac:34:49:fb:fd:
33:bf:f6:3d:28:99:ef:94:18:95:a0:90:a4:61:5a:bf:d2:35:
ec:87:7c:8c:15:28:f2:dd:6d:45:2d:20:2e:95:e2:71:a1:6c:
d9:b5:4b:c7:2a:13:6c:26:40:e1:7f:af:28:b3:2b:8a:23:43:
56:8d:e0:3f:68:97:4c:b0:87:cc:e2:14:6a:39:b9:29:49:9f:
87:58:93:b2:40:3f:58:51:e3:54:07:22:1b:6b:cb:98:a5:3e:
6a:aa:80:f4:f2:74:34:bf:da:6e:06:a5:91:ad:8b:09:79:bb:
18:37:87:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org