Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/zq7wKzq8VOe3dGxWAKkO57myTEc.roa
File: zq7wKzq8VOe3dGxWAKkO57myTEc.roa (raw, json)
Hash identifier: KDLcyPURwd3KxMEhYbuVNmH2lFyyOYEgi35iisobcys=
Subject key identifier: CE:AE:F0:2B:3A:BC:54:E7:B7:74:6C:56:00:A9:0E:E7:B9:B2:4C:47
Certificate issuer: /CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Certificate serial: 322CD26A
Authority key identifier: C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/zq7wKzq8VOe3dGxWAKkO57myTEc.roa
Signing time: Sat 01 Jan 2022 05:05:57 +0000
ROA not before: Sat 01 Jan 2022 05:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202
IP address blocks: 213.174.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841798250 (0x322cd26a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Validity
Not Before: Jan 1 05:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ceaef02b3abc54e7b7746c5600a90ee7b9b24c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:ca:c0:80:74:b5:de:62:1b:ba:5b:fa:97:
c8:71:6d:61:1b:13:08:a9:7d:3c:a4:eb:f8:15:ac:
78:17:ef:20:b4:b1:a3:e6:fb:d9:e6:99:7c:ef:97:
ad:7e:61:a5:56:68:85:aa:29:98:cd:17:84:1c:29:
02:9d:96:39:f5:41:ce:2a:d2:27:19:15:33:ee:e5:
5e:73:a0:c5:33:4b:c1:79:53:b1:e2:e3:2c:de:55:
db:7b:9c:c5:92:d7:99:91:9d:ab:67:f8:47:16:c8:
69:9e:6b:8c:71:86:d9:b3:74:99:06:a1:17:fb:0d:
af:a3:be:37:9d:e1:30:bf:d9:62:9d:8c:da:b0:e1:
b8:eb:b4:9a:07:46:1b:95:5e:4c:e0:26:6d:de:1c:
f9:be:45:ce:79:66:aa:92:97:73:32:1d:cf:ca:fb:
1e:b5:d5:e9:be:a4:c8:fc:bd:41:f6:27:d7:77:9c:
46:33:8f:fa:15:09:01:50:28:fb:9e:8e:e5:f4:4d:
27:9d:1b:8e:43:c8:f1:7b:78:2d:54:08:22:32:af:
5e:16:4b:1d:19:3f:23:85:a8:45:88:1f:f7:8c:ca:
bc:18:6e:ff:1b:28:b6:2a:e5:50:23:8d:5f:f6:65:
78:78:36:6a:4d:0b:7c:3f:35:3b:89:b9:56:72:63:
47:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AE:F0:2B:3A:BC:54:E7:B7:74:6C:56:00:A9:0E:E7:B9:B2:4C:47
X509v3 Authority Key Identifier:
keyid:C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/zq7wKzq8VOe3dGxWAKkO57myTEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.174.127.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:4c:da:1f:0d:cc:60:14:43:fa:15:f0:22:48:bf:ad:e5:14:
2a:4c:54:99:ad:0c:76:32:c3:75:f8:55:9f:b0:5f:68:f3:ee:
52:68:72:2f:16:cb:de:51:c4:c4:5a:86:a2:8f:5f:4e:0b:8e:
ed:63:5d:5a:da:d9:f3:d8:b8:9c:0b:50:33:78:87:ff:ce:ed:
8f:0d:ff:da:85:4e:d8:b0:4a:71:e9:39:31:c1:f0:31:e7:e0:
15:64:33:c3:a5:08:22:71:7d:59:e5:1b:dc:50:60:bb:35:fa:
94:5e:41:4e:0d:ae:3d:54:8a:24:de:ec:7e:ff:7e:47:56:a9:
fa:6e:27:02:14:a0:5d:af:ba:61:7d:3b:6c:5d:f3:43:aa:18:
8b:bf:29:27:9d:61:9c:cf:3b:ba:14:1d:0a:b2:c1:1e:7c:b4:
b2:97:67:6f:0c:44:a7:01:56:44:6f:cb:e4:10:04:59:ec:0a:
f5:0e:bc:0b:b6:5d:e7:2d:5d:51:f6:6d:33:66:1f:46:d3:8b:
4a:53:6e:fc:0b:cd:90:f7:ea:77:8f:8e:a2:a6:1c:24:f2:84:
9d:b0:13:56:37:16:29:5e:37:aa:55:e7:bb:7a:87:a3:e9:40:
42:81:fa:4c:4f:d8:23:9a:74:0f:c6:b6:09:62:c5:d0:28:ee:
d6:c2:bb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:12 2024 by rpki-client on console-ams.rpki-client.org