Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8808bc-976d-4212-ad2f-1a8f23e2cebb/1/zODIAAEsZPjcee98uJqHyZQkgeE.roa
File: zODIAAEsZPjcee98uJqHyZQkgeE.roa (raw, json)
Hash identifier: YWUqNEjvPod069QwKrbaBMjjxhoaJbf2s+I/WboPgEE=
Subject key identifier: CC:E0:C8:00:01:2C:64:F8:DC:79:EF:7C:B8:9A:87:C9:94:24:81:E1
Certificate issuer: /CN=edd13d3741e4b3f3a3a3e34721f1246e4b27c7a6
Certificate serial: 0876F8BD
Authority key identifier: ED:D1:3D:37:41:E4:B3:F3:A3:A3:E3:47:21:F1:24:6E:4B:27:C7:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7dE9N0Hks_Ojo-NHIfEkbksnx6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8808bc-976d-4212-ad2f-1a8f23e2cebb/1/zODIAAEsZPjcee98uJqHyZQkgeE.roa
Signing time: Sat 01 Jan 2022 08:59:55 +0000
ROA not before: Sat 01 Jan 2022 08:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35268
IP address blocks: 195.60.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142014653 (0x876f8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edd13d3741e4b3f3a3a3e34721f1246e4b27c7a6
Validity
Not Before: Jan 1 08:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cce0c800012c64f8dc79ef7cb89a87c9942481e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:21:ef:d0:37:d7:6a:ec:6b:21:58:93:67:83:
cd:e0:05:90:a9:24:13:f6:2f:57:05:b4:3e:d0:1b:
16:2c:27:3e:79:93:54:b9:0b:f1:4f:a0:d1:3c:5a:
98:d3:43:95:15:e8:c0:bb:98:fc:0a:b9:e2:64:4e:
bd:ed:c3:3a:1f:06:a5:45:f1:49:3d:6b:0e:ed:dd:
67:fa:64:31:9e:52:09:a5:96:0f:83:d7:47:d3:f1:
f1:a6:3d:f9:9e:c4:09:a5:7f:13:fb:f1:9e:a6:e1:
18:65:80:8a:c2:56:13:c3:11:9e:19:15:1b:68:12:
09:b3:4c:3f:4e:c3:e7:c9:6e:af:5b:96:c2:c0:fe:
23:1b:da:11:ac:7c:1a:f4:8f:48:05:81:dd:c8:88:
84:5c:bb:2a:0a:fb:04:a3:a5:79:c9:88:95:ef:30:
17:61:68:6d:c1:ff:e6:f6:71:35:5b:51:37:8d:ca:
c3:82:71:bc:61:db:15:e5:dd:78:f9:ca:c2:03:06:
e9:f4:5b:f1:97:9d:b1:03:70:1b:fc:23:ad:02:f1:
f6:5a:69:2c:34:53:69:71:f3:22:53:fc:d7:4f:99:
ad:cd:4d:f6:62:53:70:5b:ab:02:c5:8d:16:03:d1:
1b:9b:ea:43:31:7d:bb:07:4e:01:68:c3:d3:2f:44:
ba:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E0:C8:00:01:2C:64:F8:DC:79:EF:7C:B8:9A:87:C9:94:24:81:E1
X509v3 Authority Key Identifier:
keyid:ED:D1:3D:37:41:E4:B3:F3:A3:A3:E3:47:21:F1:24:6E:4B:27:C7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7dE9N0Hks_Ojo-NHIfEkbksnx6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8808bc-976d-4212-ad2f-1a8f23e2cebb/1/zODIAAEsZPjcee98uJqHyZQkgeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8808bc-976d-4212-ad2f-1a8f23e2cebb/1/7dE9N0Hks_Ojo-NHIfEkbksnx6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.74.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ca:84:cf:a5:eb:7f:9a:bf:4c:cf:db:2a:24:80:c0:85:7e:
df:48:ed:35:df:5d:f7:81:52:35:79:60:f1:15:4b:e9:84:f0:
d5:29:4f:f7:a4:14:d5:fb:7b:36:9b:3d:99:9e:64:bc:e8:7f:
60:36:37:c6:3e:9b:63:3a:35:11:8d:04:eb:87:f8:3a:7d:45:
cb:d8:bc:dd:ad:e5:0a:dc:03:cb:6c:07:17:96:c9:99:52:95:
fb:5e:0c:1c:34:0e:06:91:8f:e7:98:26:ec:f3:34:4f:1d:e0:
d4:64:02:4e:47:97:b3:56:0b:82:f1:68:9d:93:eb:8d:6d:af:
68:db:8e:ac:5b:39:41:30:90:30:e2:2d:84:90:4d:59:94:6d:
84:2f:db:08:56:e7:67:c7:8e:17:b5:db:2a:14:8c:ef:53:8c:
9d:c2:39:92:a7:6a:ca:a9:78:96:9b:d0:09:f1:18:af:41:f4:
0e:cc:5e:20:af:58:8f:d3:fa:e5:c3:33:d6:66:02:73:cc:8d:
a0:3e:66:e3:d0:a3:eb:2e:29:01:9d:39:e9:5f:44:ec:4e:ef:
ed:f7:2a:cf:9b:5e:39:6f:01:c4:8f:11:6a:18:88:dd:0b:6b:
f9:08:cf:52:84:19:04:e1:4c:cd:e5:60:5b:30:b8:d5:e6:e8:
1d:68:e1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org