Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ZfqFZOInFZpWI9vAl22J04ZnJcA.roa
File: ZfqFZOInFZpWI9vAl22J04ZnJcA.roa (raw, json)
Hash identifier: ++NOpLFGTyH1wf9GSnzkRa7s0jx/DV338jTEUyE1GpM=
Subject key identifier: 65:FA:85:64:E2:27:15:9A:56:23:DB:C0:97:6D:89:D3:86:67:25:C0
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33DF10B1
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ZfqFZOInFZpWI9vAl22J04ZnJcA.roa
Signing time: Sat 01 Jan 2022 04:55:32 +0000
ROA not before: Sat 01 Jan 2022 04:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15843
IP address blocks: 194.27.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870256817 (0x33df10b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65fa8564e227159a5623dbc0976d89d3866725c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:90:fa:e4:11:8c:b4:c1:e6:4e:b6:52:0a:cf:
06:f4:9b:90:ea:ae:67:6f:bd:3f:16:c9:8b:a9:ef:
3b:c6:c8:f2:ae:09:8a:0a:82:fd:f3:33:69:31:2a:
c2:fc:ee:c3:ca:ed:07:23:2c:d0:ad:30:1a:5c:a3:
19:86:7e:c7:7e:0c:17:4b:fa:48:ee:4e:d5:49:60:
e0:c3:82:77:c9:de:75:1b:ae:85:ca:e2:bb:52:79:
2c:9c:a6:6d:f7:38:51:19:22:60:52:71:da:d9:9e:
74:6b:28:2e:1b:73:bc:b2:5b:3d:37:d1:38:b8:30:
ae:8e:7b:44:ff:e5:fd:30:1c:0e:6a:77:f1:d1:19:
12:a8:12:1c:af:48:29:e6:8e:cf:01:cf:c9:6c:c3:
0a:58:d4:cb:fe:05:56:54:80:d7:cc:3a:9f:55:cf:
a0:70:e7:f7:2a:68:26:cb:13:ac:7b:b5:c4:04:37:
e8:1d:c2:c2:ed:8c:97:a1:79:06:8e:04:7e:db:63:
c8:70:54:1c:3d:bc:dc:77:92:70:79:ed:3f:28:e1:
56:83:87:05:1d:f5:22:91:2c:7c:f0:05:71:d6:a8:
33:2d:f2:4b:a3:cd:f5:15:3b:8b:dc:9f:09:21:b6:
cc:44:7d:49:bb:88:b0:b2:e8:8f:79:ad:21:96:94:
85:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FA:85:64:E2:27:15:9A:56:23:DB:C0:97:6D:89:D3:86:67:25:C0
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ZfqFZOInFZpWI9vAl22J04ZnJcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.27.192.0/22
Signature Algorithm: sha256WithRSAEncryption
99:75:cd:29:c6:78:06:84:b3:51:2d:ee:17:b9:76:96:65:50:
37:34:d3:44:1c:25:7f:1b:e7:68:13:3f:46:ea:c6:5e:3a:3e:
b3:7a:4e:c8:e2:1f:ef:cd:b2:5a:82:d5:56:84:22:49:0b:31:
a0:3d:d7:69:a4:fc:2d:3f:0d:17:70:d7:e5:18:c1:1e:fd:1a:
48:38:a3:94:62:69:fe:a7:52:16:46:ce:36:d2:06:b5:59:b9:
f3:93:06:34:43:85:d4:f8:95:26:62:dd:98:2c:ac:f5:23:7b:
bd:e5:4e:a2:38:e6:26:4d:01:40:a1:c5:22:d5:0e:90:99:c5:
fd:69:ad:d6:06:7d:b5:3d:31:44:14:e4:5d:da:25:b7:a5:d3:
c6:58:d9:ac:34:e0:b0:e7:3a:f5:81:dc:ec:78:d8:ce:ed:ff:
37:17:7f:9d:cc:1f:2a:71:cc:8e:51:05:38:5e:e1:1f:cc:cf:
a5:95:24:c6:e2:e4:e0:c1:63:c7:2f:da:92:8a:e6:7b:59:43:
fe:7e:54:e3:3a:93:e5:de:be:a7:69:e7:26:c2:88:63:e0:66:
80:31:b7:4e:87:27:04:3f:e4:65:0d:fe:b5:c8:8e:88:d9:5d:
ba:3b:00:d3:b4:9c:76:34:f4:ed:3a:39:55:da:f6:b0:84:e5:
b2:97:b7:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org