Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Zl391Y6Wd-_ekGPb8xpfOiTch4E.roa
File: Zl391Y6Wd-_ekGPb8xpfOiTch4E.roa (raw, json)
Hash identifier: XJCNnxp/GZtieOu66TjGSBP/TUqSPKrrWUpaM9X3XF8=
Subject key identifier: 66:5D:FD:D5:8E:96:77:EF:DE:90:63:DB:F3:1A:5F:3A:24:DC:87:81
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 18077447
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Zl391Y6Wd-_ekGPb8xpfOiTch4E.roa
Signing time: Sat 01 Jan 2022 04:00:33 +0000
ROA not before: Sat 01 Jan 2022 04:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199301
IP address blocks: 213.91.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403141703 (0x18077447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=665dfdd58e9677efde9063dbf31a5f3a24dc8781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c0:a7:a2:53:2b:eb:84:ca:40:3d:38:d2:dd:
8a:10:87:2f:ac:45:8b:86:86:da:ed:ac:e0:e4:42:
0d:b9:65:01:74:96:95:54:f1:9f:6b:0b:14:fd:29:
10:a2:b2:6e:5b:36:34:68:af:31:25:af:ea:63:c9:
7a:2f:d8:0e:34:ac:e2:db:47:5e:63:d8:b2:de:e1:
06:2b:78:94:39:20:56:68:4a:7c:d2:da:8e:31:48:
f6:c0:c5:c6:10:83:2d:6e:35:01:06:1a:25:23:51:
97:6c:9f:79:16:53:d6:31:fc:63:32:7d:74:a1:cf:
c9:01:1a:67:d8:c0:40:ac:66:07:92:ed:ab:f9:d8:
7b:3d:bb:d7:cf:d0:d1:98:be:6e:a9:fb:37:61:39:
91:24:cc:2d:05:3c:28:1e:48:64:59:bc:74:97:2d:
7f:7b:7e:f3:84:59:3f:d7:f0:3d:34:39:d3:5b:aa:
08:74:c5:58:f8:30:e4:a0:3a:2a:65:33:81:fb:f7:
72:aa:00:1c:38:6c:18:eb:a6:74:18:8f:df:d6:21:
27:4b:4e:02:76:ca:74:f0:4b:80:92:d5:18:c1:56:
2b:d6:b8:07:c0:96:09:09:fc:11:ef:11:e7:f1:ca:
40:eb:78:a9:bf:05:0c:6f:ec:f8:bb:8a:17:ff:e1:
aa:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5D:FD:D5:8E:96:77:EF:DE:90:63:DB:F3:1A:5F:3A:24:DC:87:81
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Zl391Y6Wd-_ekGPb8xpfOiTch4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.188.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1c:b6:a6:2f:44:1d:66:52:06:27:f8:6e:65:fd:d3:66:19:
d3:77:3f:78:57:28:90:8c:50:bb:1b:c1:88:04:80:bd:9c:07:
04:6d:cd:63:c8:99:85:9e:98:f2:60:b4:1e:e9:38:dd:4b:3d:
63:a2:dc:32:58:9f:ef:a2:df:a6:cf:24:4f:70:e4:e8:ca:c6:
b7:22:78:61:a6:83:69:97:94:f5:da:82:a4:8c:77:67:78:70:
e4:ed:ff:12:5c:c7:9f:05:2f:76:b7:9b:00:a5:c6:45:7a:97:
ec:85:7f:18:d1:bb:6c:10:89:a2:cb:72:12:82:93:a9:e0:34:
4d:81:b7:14:ea:9a:e0:be:79:d7:4a:ea:b5:eb:97:3d:a8:bf:
a8:d5:77:b9:bd:19:f4:69:3a:9c:0f:4e:d6:57:6b:7e:7f:6d:
2e:88:cc:b8:45:a5:55:02:28:4b:7b:8e:6a:48:f9:15:3c:2f:
fe:32:c4:e7:13:b4:37:63:42:20:4e:e9:5c:0d:00:5e:5b:e8:
39:91:11:b1:71:ce:89:e0:e2:81:b3:2e:f6:dd:81:52:2d:9b:
e8:ee:af:c7:f2:e1:9a:11:98:de:a8:24:74:87:2e:7b:9f:8e:
85:ed:29:67:9c:84:db:4f:ab:da:47:eb:2f:3f:ca:0d:58:15:
ff:0e:f8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org