Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/zsetZIoL8PZqJfTaNLrPtnKngAY.roa
File: zsetZIoL8PZqJfTaNLrPtnKngAY.roa (raw, json)
Hash identifier: /UxTZgykcBXCxzWVs1IfGrUvrV4rHCVnYp7yfNgK53w=
Subject key identifier: CE:C7:AD:64:8A:0B:F0:F6:6A:25:F4:DA:34:BA:CF:B6:72:A7:80:06
Certificate issuer: /CN=7aa86c8156f0806dcccdc22dcc4d6175b8fa9893
Certificate serial: 03650AB0
Authority key identifier: 7A:A8:6C:81:56:F0:80:6D:CC:CD:C2:2D:CC:4D:61:75:B8:FA:98:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eqhsgVbwgG3MzcItzE1hdbj6mJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/zsetZIoL8PZqJfTaNLrPtnKngAY.roa
Signing time: Sat 01 Jan 2022 10:58:30 +0000
ROA not before: Sat 01 Jan 2022 10:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202675
IP address blocks: 194.76.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56953520 (0x3650ab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa86c8156f0806dcccdc22dcc4d6175b8fa9893
Validity
Not Before: Jan 1 10:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cec7ad648a0bf0f66a25f4da34bacfb672a78006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c2:e3:1c:42:68:a5:df:3b:05:3f:44:fa:b5:
1f:66:30:e7:5e:49:6b:4e:b5:7b:96:fc:e8:82:9d:
92:e9:ae:7d:b8:eb:4f:2b:2a:10:b9:22:06:40:46:
c2:e9:17:d5:e8:14:7b:be:e6:1b:34:cb:05:46:16:
e7:05:4a:9e:e7:5b:b5:c2:94:7d:bc:77:a8:c1:a8:
d5:02:8d:67:8b:f5:e0:6b:b5:86:96:b7:21:91:a5:
c2:2d:bf:54:c0:6e:55:23:58:82:ea:69:ab:9b:61:
b1:e1:8c:fc:39:b5:35:2d:78:99:dc:11:b1:f4:82:
e6:aa:0b:33:99:52:ca:73:01:4f:fe:07:72:a6:88:
55:6a:23:5d:24:90:83:e4:d4:60:38:a4:42:b0:4a:
53:0c:c3:08:f8:36:67:fe:bc:b0:4f:49:3c:02:a1:
fa:ee:85:0b:cf:0e:d6:06:92:3b:52:d0:7f:16:ae:
0d:15:b3:04:6a:de:c3:e6:d2:7a:69:9f:ab:50:32:
0c:28:83:1f:ec:37:4f:99:54:ab:10:ac:76:bb:4d:
e2:d4:42:ee:10:e2:3b:24:1d:55:17:d0:86:7b:1a:
8e:20:5f:42:36:8c:89:88:be:ce:24:ea:97:38:d6:
56:eb:69:ea:7d:d4:c5:cd:6f:06:ef:51:a6:97:a8:
18:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C7:AD:64:8A:0B:F0:F6:6A:25:F4:DA:34:BA:CF:B6:72:A7:80:06
X509v3 Authority Key Identifier:
keyid:7A:A8:6C:81:56:F0:80:6D:CC:CD:C2:2D:CC:4D:61:75:B8:FA:98:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eqhsgVbwgG3MzcItzE1hdbj6mJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/zsetZIoL8PZqJfTaNLrPtnKngAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b2d4d8-4f7c-4756-a461-fafdbed574ad/1/eqhsgVbwgG3MzcItzE1hdbj6mJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.116.0/22
Signature Algorithm: sha256WithRSAEncryption
96:82:2f:fb:db:1a:ef:f8:38:ec:49:f1:58:8e:e8:18:c4:44:
0b:38:82:02:de:52:8b:a0:a6:85:7d:74:28:97:02:87:64:38:
03:6f:a4:bc:e2:b2:1b:fb:00:0f:c7:b9:b1:fc:90:29:ee:31:
29:30:2a:ff:17:a0:5a:64:d6:4b:df:ac:72:43:44:40:ab:c4:
02:a4:c3:ad:1a:ae:2d:c0:c2:97:dc:53:94:65:83:a3:81:0e:
d8:c4:80:c9:09:0d:e3:d2:9c:cd:96:23:fc:18:6a:95:bb:0a:
a0:b6:7e:9d:42:80:ac:c6:10:9a:32:70:4c:0d:17:f4:08:4a:
2f:be:40:4a:14:70:78:77:ed:ab:6b:d0:e6:f6:5f:90:39:91:
0b:16:dd:38:b2:f7:ef:e8:00:6d:e8:9b:ce:28:77:91:e0:5e:
4e:21:e6:68:5b:33:88:9c:aa:b5:93:8b:8a:48:94:40:32:f1:
10:07:37:5e:0a:cb:84:ef:f7:98:60:68:8b:fa:43:84:4e:be:
15:87:f0:51:ea:7d:3f:84:49:36:79:3b:d5:45:57:d7:90:7f:
a0:b1:52:95:76:22:91:b6:09:49:b6:2c:e6:f8:b8:ec:3b:38:
81:67:aa:91:7c:6a:7a:e4:95:20:64:a5:bb:b8:de:60:5f:e7:
45:8b:ae:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:38 2024 by rpki-client on console-ams.rpki-client.org