Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/7ZEyyqzVx6miTVLSS0ip2wZXXIs.roa
File: 7ZEyyqzVx6miTVLSS0ip2wZXXIs.roa (raw, json)
Hash identifier: kY9+EhlTBLeb/RaR79m1RTFRqVkQBVWGY+sIpKd4Ock=
Subject key identifier: ED:91:32:CA:AC:D5:C7:A9:A2:4D:52:D2:4B:48:A9:DB:06:57:5C:8B
Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853
Certificate serial: 0DC88F70
Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/7ZEyyqzVx6miTVLSS0ip2wZXXIs.roa
Signing time: Sat 01 Jan 2022 13:07:36 +0000
ROA not before: Sat 01 Jan 2022 13:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34000
IP address blocks: 83.97.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231247728 (0xdc88f70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5abc43afced72fb92778728bee571c678f53853
Validity
Not Before: Jan 1 13:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed9132caacd5c7a9a24d52d24b48a9db06575c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:85:ee:26:d0:eb:dc:56:4f:b6:7f:66:53:0b:
b1:bd:65:36:24:04:0d:1c:e6:bf:08:99:a4:74:67:
cd:19:e8:07:f5:c6:2d:be:dc:62:d0:f7:48:22:bc:
0e:57:20:d6:70:97:f9:94:aa:56:cb:e7:ec:0d:2b:
16:68:2b:70:9e:67:6f:e1:2a:27:96:ab:b5:e3:f8:
d8:ee:1e:85:90:da:a8:f0:8f:aa:17:1f:5e:33:56:
3b:8e:cd:a2:79:a8:76:b9:e4:d9:dd:90:6d:0a:62:
39:87:69:18:20:de:d1:69:28:86:94:51:0f:80:bb:
7c:e4:3f:70:77:2f:1e:3b:d1:cc:0c:73:0f:e4:c3:
b4:93:48:14:68:c3:6f:67:e7:d6:3e:23:9f:0d:ba:
ce:23:60:2c:14:e2:ad:28:c7:2c:4d:d4:45:6e:67:
43:89:a8:20:e1:cd:01:8b:0d:d5:6c:95:21:ff:a4:
f3:ac:25:28:a5:1a:f5:76:76:ae:ca:1c:b9:9f:96:
3c:63:7f:3a:7f:9c:da:c7:ba:a8:ac:cc:da:17:5d:
bf:18:2c:ed:65:39:74:c3:0c:9d:6c:ef:3f:c6:b9:
ad:60:f7:8e:14:9e:42:c5:50:87:32:be:43:04:6b:
00:82:ad:7e:da:e5:19:26:14:f8:ce:cf:1b:fa:e0:
79:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:91:32:CA:AC:D5:C7:A9:A2:4D:52:D2:4B:48:A9:DB:06:57:5C:8B
X509v3 Authority Key Identifier:
keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/7ZEyyqzVx6miTVLSS0ip2wZXXIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.56.0/21
Signature Algorithm: sha256WithRSAEncryption
96:2c:7e:b3:5b:ac:ed:9c:de:45:5b:2b:e5:84:a4:55:15:25:
a9:36:3d:b8:50:db:83:d5:c4:3f:d3:e0:7e:4f:eb:3c:54:d2:
fb:ab:dc:ae:d2:3a:9c:73:bb:4d:d8:07:e1:64:e2:94:34:cd:
cc:03:0b:19:ac:65:eb:09:16:bf:90:1b:7f:7e:53:07:61:d7:
be:4d:25:eb:b6:c5:31:7c:bc:12:a2:f1:31:08:b8:e5:aa:48:
e7:18:ae:ea:32:27:79:35:08:2e:74:f6:71:c1:e6:78:87:dc:
72:eb:c3:82:13:a7:63:bb:59:11:fa:c4:65:57:68:53:7b:3f:
85:a5:07:82:d4:a0:bc:46:73:36:72:dc:8e:89:8b:cc:75:ac:
6d:d3:c0:ee:03:3a:6b:d9:19:64:75:b6:2b:f3:22:d3:d8:23:
24:d2:4d:ea:d2:4e:b9:af:b0:71:d5:0a:77:95:bf:a8:eb:56:
55:4e:b7:3f:37:72:37:e7:98:0e:38:4f:24:bf:15:70:12:66:
d0:f4:9e:63:bc:28:f3:35:8e:61:be:6b:96:ef:c6:22:c3:5c:
80:cb:73:1d:36:09:e2:59:a7:50:cd:83:a5:b9:f3:a9:5d:67:
b5:06:98:8d:d8:94:c7:19:01:5c:82:a6:0b:9e:0f:97:90:a0:
f5:8e:f1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:36 2024 by rpki-client on console-fra.rpki-client.org