Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/ZzFCxCAbrVwcwLtTywtzeV03XVk.roa
File: ZzFCxCAbrVwcwLtTywtzeV03XVk.roa (raw, json)
Hash identifier: pOrv+RS/rXON9s8IbJB3KRjlB7jnqFk/dNhfTdw/RYg=
Subject key identifier: 67:31:42:C4:20:1B:AD:5C:1C:C0:BB:53:CB:0B:73:79:5D:37:5D:59
Certificate issuer: /CN=9915f0d6a961aaebc6b0b5089da02939b310a51c
Certificate serial: 091C0402
Authority key identifier: 99:15:F0:D6:A9:61:AA:EB:C6:B0:B5:08:9D:A0:29:39:B3:10:A5:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRXw1qlhquvGsLUInaApObMQpRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/ZzFCxCAbrVwcwLtTywtzeV03XVk.roa
Signing time: Sat 01 Jan 2022 06:00:11 +0000
ROA not before: Sat 01 Jan 2022 06:00:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 192.156.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152830978 (0x91c0402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9915f0d6a961aaebc6b0b5089da02939b310a51c
Validity
Not Before: Jan 1 06:00:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=673142c4201bad5c1cc0bb53cb0b73795d375d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a0:ec:07:b7:89:91:6f:71:49:68:df:dc:3f:
ce:de:d0:7a:c9:22:07:35:42:37:d6:22:79:cf:a4:
d7:47:21:06:5e:c0:81:ab:ad:bb:20:17:3c:14:bf:
16:ef:0e:18:74:c3:24:56:a3:93:39:43:2c:17:f7:
fe:82:07:f0:51:6a:37:24:48:35:6f:31:32:cb:9f:
25:56:00:38:48:d3:51:6c:05:7f:3d:f9:13:9a:b7:
d9:40:3f:2c:e3:36:fc:df:67:88:1c:96:d8:d5:df:
94:ec:02:b5:79:6b:ed:a7:13:8d:cc:67:d4:bf:f1:
1b:88:e3:79:12:9b:fc:54:b9:28:8b:84:66:29:fa:
ff:04:78:a6:f2:07:2a:95:9e:41:af:ec:63:63:cb:
87:92:31:c6:a3:2f:cd:43:f8:a0:cc:ca:5c:e7:5b:
bd:57:db:41:45:6b:31:e6:e4:a5:d6:e7:8a:6b:2f:
3d:1a:34:8f:8b:0b:51:73:b4:11:bb:80:66:b1:56:
f5:49:2f:30:93:40:56:df:44:68:ee:68:47:82:8c:
96:f2:a9:8e:68:5a:6e:7d:ac:7f:36:e8:1e:b2:e8:
56:f3:42:0a:11:3c:57:ae:f9:61:57:62:2b:44:95:
5e:5f:8e:ee:2e:f2:42:21:de:a5:74:d9:4e:11:f7:
71:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:31:42:C4:20:1B:AD:5C:1C:C0:BB:53:CB:0B:73:79:5D:37:5D:59
X509v3 Authority Key Identifier:
keyid:99:15:F0:D6:A9:61:AA:EB:C6:B0:B5:08:9D:A0:29:39:B3:10:A5:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRXw1qlhquvGsLUInaApObMQpRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/ZzFCxCAbrVwcwLtTywtzeV03XVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fa110d-e6e5-4bf9-84fe-bf26a7faa603/1/mRXw1qlhquvGsLUInaApObMQpRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.156.213.0/24
Signature Algorithm: sha256WithRSAEncryption
23:67:ac:6a:1e:2d:54:13:19:31:ea:85:de:96:c2:66:f9:97:
32:b8:99:7e:14:3f:d3:74:bf:51:74:db:e6:4c:2a:b5:a5:bd:
1b:9e:e7:ec:19:65:98:8d:9e:c5:94:f1:60:b9:c0:a5:79:47:
28:c4:0f:77:42:9b:d0:d5:12:2c:b6:ec:60:44:da:36:d9:96:
81:58:97:22:2d:a0:3c:6f:89:4b:78:ab:ea:31:e9:f4:15:4f:
a6:4d:5a:08:ea:d5:e6:22:59:23:a0:31:d6:f0:b6:b4:44:d0:
93:70:b0:8c:02:71:0c:cb:72:37:a4:40:b3:13:32:ed:14:7c:
c9:cb:ce:14:81:81:fe:8b:30:66:ce:49:e0:90:fc:b3:0d:e7:
00:2d:63:71:e1:16:d3:b9:77:da:ea:d7:c6:e0:80:b9:06:38:
09:d4:38:2d:8a:84:8f:35:eb:91:14:66:0c:8f:5b:1e:d9:90:
14:dc:2b:de:c3:45:bd:a1:72:6e:ac:39:40:fd:60:52:fb:c1:
e2:dc:2f:b2:53:37:f0:71:e1:c4:39:3b:b6:e6:bb:6f:88:44:
64:cd:3c:92:8c:18:50:14:e1:b4:3a:be:8f:c3:3d:c7:c2:37:
80:60:55:da:bf:ed:21:fb:55:06:05:6b:ea:46:84:6c:18:56:
55:5c:e2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:34 2024 by rpki-client on console-fra.rpki-client.org