Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/zBBxyyy26XpOFu7oRcjDZKuQVAk.roa
File: zBBxyyy26XpOFu7oRcjDZKuQVAk.roa (raw, json)
Hash identifier: wjadyHJMBLqJC00lmKi3jjtxOWZVMOTb9OimTEsof+E=
Subject key identifier: CC:10:71:CB:2C:B6:E9:7A:4E:16:EE:E8:45:C8:C3:64:AB:90:54:09
Certificate issuer: /CN=3372f5d118abd1291ae248e6c69d64a99a9aef06
Certificate serial: 017D9A
Authority key identifier: 33:72:F5:D1:18:AB:D1:29:1A:E2:48:E6:C6:9D:64:A9:9A:9A:EF:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M3L10Rir0Ska4kjmxp1kqZqa7wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/zBBxyyy26XpOFu7oRcjDZKuQVAk.roa
Signing time: Tue 28 Jun 2022 13:55:02 +0000
ROA not before: Tue 28 Jun 2022 13:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39345
IP address blocks: 195.178.102.0/23 maxlen: 23
2001:678:164::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97690 (0x17d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3372f5d118abd1291ae248e6c69d64a99a9aef06
Validity
Not Before: Jun 28 13:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc1071cb2cb6e97a4e16eee845c8c364ab905409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c6:55:fa:0d:89:28:e7:4b:67:65:78:f7:98:
97:b5:8e:7c:4b:21:22:5f:08:69:a4:0b:66:75:81:
cb:6e:70:c6:85:14:22:62:55:b9:d9:c2:57:90:00:
66:4e:29:a2:e5:66:e1:91:63:26:ba:4d:1b:7f:a2:
04:4d:5a:e3:cc:9b:9e:9a:f5:60:75:6f:04:78:b3:
4b:fa:b8:e2:fb:f2:b4:e1:7d:e2:43:f5:bf:70:24:
c6:c0:33:1e:fc:62:eb:9e:74:74:66:87:bc:92:d6:
b4:73:9a:dd:73:50:8a:49:91:db:7d:67:2b:e3:51:
fd:ca:84:b8:3d:7d:b9:da:19:07:e5:83:bc:e7:be:
59:13:72:e3:4c:ea:84:c4:da:f7:1a:3d:c6:30:af:
cf:4b:2b:70:91:8c:c7:ec:f6:17:05:84:68:e0:cf:
e0:91:c9:e2:5f:de:f5:e8:7d:fd:fb:38:c7:ac:cd:
4b:f9:96:0b:0c:cf:cb:fe:14:8f:6f:0d:af:89:0b:
62:6a:4d:5c:e3:1a:cd:78:22:c1:c5:04:48:5b:75:
ef:b3:c0:a0:2c:53:a8:77:68:0f:78:11:fc:9f:cd:
93:ba:b3:e7:ad:5b:9c:d7:36:ae:14:6f:f7:32:d9:
65:59:30:1a:b1:ca:24:55:ae:ff:8a:3b:7c:ae:1e:
60:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:10:71:CB:2C:B6:E9:7A:4E:16:EE:E8:45:C8:C3:64:AB:90:54:09
X509v3 Authority Key Identifier:
keyid:33:72:F5:D1:18:AB:D1:29:1A:E2:48:E6:C6:9D:64:A9:9A:9A:EF:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M3L10Rir0Ska4kjmxp1kqZqa7wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/zBBxyyy26XpOFu7oRcjDZKuQVAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/M3L10Rir0Ska4kjmxp1kqZqa7wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.102.0/23
IPv6:
2001:678:164::/48
Signature Algorithm: sha256WithRSAEncryption
13:d9:af:77:d0:c4:c8:a3:08:25:8b:bb:0a:6b:c8:47:79:b7:
f9:99:2c:85:e0:19:8a:fe:f7:32:60:44:e2:f2:18:f8:66:6b:
3b:d8:41:66:0d:3e:a3:6c:d5:25:08:fd:02:af:8c:a4:5a:7d:
06:be:00:a4:cd:e2:7d:e2:cc:40:c0:11:32:01:90:03:7a:51:
30:ee:84:9f:8f:2e:f7:00:9d:21:e3:68:23:36:58:e9:bb:82:
a5:83:ce:32:ec:8f:a9:1f:ab:64:4e:40:a8:d4:d9:03:f3:cf:
d9:51:cd:0e:c5:2e:f4:96:8b:55:5d:2a:6b:33:05:23:84:e0:
7e:a9:96:40:27:91:72:a7:a4:ad:4b:f1:26:6e:c7:3c:6e:be:
db:cf:35:6e:e2:da:70:45:88:77:51:38:93:fc:16:91:f9:96:
bf:7b:15:54:5b:fd:a7:b0:8a:07:0b:b0:7e:e2:24:6c:6b:cb:
e0:a1:ec:01:fc:a5:53:25:a3:60:22:be:f1:52:28:9e:6b:7c:
59:37:51:88:5c:b7:6a:4f:78:c2:77:e8:f3:c0:80:d4:98:bb:
0d:de:63:52:65:5e:bc:8f:9d:fd:20:ce:44:02:70:98:04:02:
fb:d2:fa:bb:b5:d9:b9:90:e7:62:a1:06:d3:81:87:7c:3e:e2:
51:97:4e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:48 2024 by rpki-client on console-ams.rpki-client.org