Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/PZHIq1Ox3iL5js7n5CQhEUEXuZ0.roa
File: PZHIq1Ox3iL5js7n5CQhEUEXuZ0.roa (raw, json)
Hash identifier: xIcKQ8P7c5uE4Eh6o9mLGku5AlC1X3cBIvRuRbo1aiA=
Subject key identifier: 3D:91:C8:AB:53:B1:DE:22:F9:8E:CE:E7:E4:24:21:11:41:17:B9:9D
Certificate issuer: /CN=f02e3224e3e32928192628d26487d500f2707765
Certificate serial: 18A0D043
Authority key identifier: F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/PZHIq1Ox3iL5js7n5CQhEUEXuZ0.roa
Signing time: Sat 01 Jan 2022 12:58:22 +0000
ROA not before: Sat 01 Jan 2022 12:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47599
IP address blocks: 193.203.96.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413192259 (0x18a0d043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02e3224e3e32928192628d26487d500f2707765
Validity
Not Before: Jan 1 12:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d91c8ab53b1de22f98ecee7e42421114117b99d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6c:3b:00:51:98:5f:63:89:c6:16:69:37:0a:
90:c5:b4:9e:49:64:5b:c7:41:52:76:4d:01:44:5a:
7f:ca:ad:4c:f6:24:ed:4a:5b:df:55:b0:43:bd:0e:
72:ae:55:b8:89:f9:e1:90:d3:15:6d:d6:32:22:8f:
dd:22:63:a0:50:b3:bc:53:ef:a2:13:94:0e:c3:16:
4c:69:56:70:ca:39:d6:99:45:96:56:54:f6:e7:26:
4d:e8:97:39:33:45:72:2e:87:b3:8b:c7:28:36:8a:
13:cb:17:ba:b2:00:bf:ea:c0:77:a6:cd:96:aa:dd:
f7:62:aa:28:4c:a7:05:c5:f6:bd:b4:2b:cd:57:42:
97:a7:b3:71:ec:4f:c9:79:c7:0b:a8:cc:bc:72:38:
d0:3f:3a:f3:8e:38:98:86:55:ab:6f:8c:e2:f4:3e:
5b:7c:93:aa:27:82:19:b1:15:65:b0:b1:e7:35:84:
e5:da:49:02:3d:49:8b:59:d3:91:62:67:f0:43:96:
d6:64:b2:bd:15:97:df:c9:2c:60:60:6a:b2:24:f2:
15:67:7d:66:64:45:6e:2e:e6:fe:49:aa:d5:1f:0c:
c4:45:24:dc:32:20:41:98:1a:50:89:6c:65:2c:29:
f3:07:13:3f:b8:b3:9d:c7:43:cf:9d:80:17:78:3e:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:91:C8:AB:53:B1:DE:22:F9:8E:CE:E7:E4:24:21:11:41:17:B9:9D
X509v3 Authority Key Identifier:
keyid:F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/PZHIq1Ox3iL5js7n5CQhEUEXuZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/8C4yJOPjKSgZJijSZIfVAPJwd2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.96.0/23
Signature Algorithm: sha256WithRSAEncryption
37:e7:77:74:6f:25:0b:2e:b2:8b:65:ae:65:db:7e:44:66:29:
b2:9a:47:b5:d9:8f:a6:e3:c4:4b:c3:71:33:95:d6:01:d4:bc:
97:d0:ec:1a:18:6b:fc:3e:94:04:fc:bd:d8:42:7a:55:aa:8d:
72:e9:5c:d0:82:c3:ca:fa:b2:4a:64:44:dc:c1:6f:05:cf:e4:
14:59:fc:0f:19:46:b9:3b:99:53:0c:51:44:5a:a9:5e:93:ba:
41:60:af:0d:73:1b:13:ed:1f:a0:49:c4:6b:7f:a7:af:35:16:
f3:6b:c0:d6:60:06:2b:3b:8e:08:1f:de:2e:8d:44:e1:ca:22:
e6:70:e9:24:08:1d:0a:69:84:1b:05:5f:33:8f:0a:51:94:47:
ec:b4:5b:db:e0:bf:76:8b:d4:43:d3:b9:fb:04:19:45:4d:ff:
61:ad:f7:3f:1c:50:9d:be:7d:29:4f:31:61:aa:7f:b7:dc:a3:
14:b8:f0:40:fe:ac:5e:c3:e1:32:46:cf:2f:6a:ae:c7:b5:ba:
1e:3e:13:fd:9b:26:b5:13:ee:a7:51:4c:f7:83:3d:5f:dc:17:
c4:f2:b3:a6:54:60:d6:bd:43:31:c5:87:8b:7d:8d:65:1d:2a:
b9:e2:fe:e1:21:a5:e7:65:a1:9c:c3:a3:cb:5d:b4:44:70:e9:
fc:1f:b3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org