Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZiiPbztPwRbMGSdN3VG8s6Q8eBU.roa
File: ZiiPbztPwRbMGSdN3VG8s6Q8eBU.roa (raw, json)
Hash identifier: GENMr/+zIwa+5D8yw4ytbw4/6JS+Qn532wUAfj8KlAk=
Subject key identifier: 66:28:8F:6F:3B:4F:C1:16:CC:19:27:4D:DD:51:BC:B3:A4:3C:78:15
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01855998C3D140D5AE9B75193628DE383B43
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZiiPbztPwRbMGSdN3VG8s6Q8eBU.roa
Signing time: Wed 28 Dec 2022 16:37:41 +0000
ROA not before: Wed 28 Dec 2022 16:37:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 194.110.172.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:59:98:c3:d1:40:d5:ae:9b:75:19:36:28:de:38:3b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Dec 28 16:37:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66288f6f3b4fc116cc19274ddd51bcb3a43c7815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a0:16:b3:98:87:e4:a4:c1:66:1a:5d:a6:92:
6a:0a:94:74:65:0d:6a:b7:a4:2c:36:db:0c:b3:1d:
52:4a:39:d6:17:d2:a6:da:e2:7e:bc:f5:a0:6b:50:
4c:aa:16:6b:eb:66:ee:29:08:c6:e3:15:89:ac:7a:
4a:31:84:03:ce:09:e6:d8:c5:c6:6e:12:6a:90:a4:
be:a0:87:8d:a0:39:83:a1:d6:f8:c7:67:e8:49:b7:
80:70:ec:05:21:0f:08:4e:f1:79:08:16:b9:22:b6:
73:76:bf:75:d4:ff:d5:ce:ab:0d:63:a2:27:93:60:
0d:f3:16:b8:87:42:61:74:0c:f8:eb:2b:0f:b0:41:
be:d3:0b:9c:27:79:62:bd:7b:d9:bf:6e:ac:41:47:
53:ee:92:c4:3a:d8:73:93:69:db:6c:a3:fc:8f:00:
36:e7:a3:a9:28:c6:ab:c0:eb:81:9e:24:34:78:20:
96:ce:d4:d9:db:b6:0a:eb:28:48:41:49:0b:84:7a:
d1:a8:df:9d:85:d9:9b:61:4c:fc:a7:26:6b:66:e6:
64:cb:b6:bf:8e:52:52:c3:72:92:27:18:37:33:43:
b6:c5:0d:ac:c9:61:94:8a:cb:4a:b5:ca:70:d3:13:
f7:38:95:e6:73:30:0a:78:06:47:55:3f:ff:a1:76:
7f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:28:8F:6F:3B:4F:C1:16:CC:19:27:4D:DD:51:BC:B3:A4:3C:78:15
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZiiPbztPwRbMGSdN3VG8s6Q8eBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.172.0/23
Signature Algorithm: sha256WithRSAEncryption
92:87:b5:47:f4:fa:87:10:f4:46:fe:dc:4d:be:27:ef:86:45:
79:18:c1:c4:b5:d8:9b:55:57:fb:8e:0d:51:d8:4f:bf:dd:91:
f4:11:2e:3b:ad:01:a4:7b:c0:c7:fe:c6:c8:ba:6c:83:92:19:
db:89:2f:64:32:69:ba:34:a8:e2:b6:5b:0e:c2:25:5c:15:96:
f8:5a:5e:4b:6b:da:d7:27:6f:fc:ba:15:e6:a8:51:12:26:2d:
b5:09:dc:35:44:f3:b9:d5:65:8f:60:c6:d6:d1:1a:23:2a:a2:
f8:a3:d2:43:8f:31:8a:ef:89:de:5d:63:ac:a8:6b:62:d0:81:
81:13:45:b3:c3:b9:65:08:55:46:40:62:ac:37:6d:6d:74:5b:
54:38:93:f6:da:40:82:6b:1a:50:a1:05:52:94:59:1b:78:42:
46:db:f8:b5:15:eb:38:0f:50:3d:e3:2b:ba:72:ce:37:f3:0e:
65:81:5d:83:cd:1c:9c:a2:6f:86:36:c5:97:88:e2:33:13:3b:
38:00:56:ae:42:6e:2f:d2:84:81:1a:39:f0:42:f9:ef:90:85:
7d:56:59:7b:7d:ad:af:84:38:2b:ff:af:b8:75:3b:f5:23:9c:
4f:21:bb:eb:16:80:66:d0:6d:b8:50:3f:97:8a:4d:f4:db:df:
28:97:f2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org