Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZUxSa1bcABVhFPIX8MeHVi8qPKg.roa
File: ZUxSa1bcABVhFPIX8MeHVi8qPKg.roa (raw, json)
Hash identifier: KrbrlldbndgIUBFLUHfrHjNFwzA5bOkQZNfmmEr4AO4=
Subject key identifier: 65:4C:52:6B:56:DC:00:15:61:14:F2:17:F0:C7:87:56:2F:2A:3C:A8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184BE869473CBC1D3AB868F33C92B5863C3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZUxSa1bcABVhFPIX8MeHVi8qPKg.roa
Signing time: Mon 28 Nov 2022 13:56:41 +0000
ROA not before: Mon 28 Nov 2022 13:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50225
IP address blocks: 193.124.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:86:94:73:cb:c1:d3:ab:86:8f:33:c9:2b:58:63:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 28 13:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=654c526b56dc00156114f217f0c787562f2a3ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:be:19:7d:62:e2:a2:40:95:e2:22:91:75:86:
88:ad:ae:80:65:44:87:6d:bc:8c:9c:d6:6a:ec:46:
da:a6:1d:80:70:e6:1e:0b:22:b2:21:80:82:14:ce:
c7:b9:b6:cb:d0:db:dc:1e:f6:69:38:cd:69:05:d3:
ae:ec:ae:9d:e7:8e:3d:10:18:6e:99:12:52:25:36:
05:c6:1d:c0:c9:95:54:0e:cf:b5:36:f8:09:6b:da:
5e:08:74:5b:ad:aa:a6:db:6f:6c:e3:b6:2e:eb:95:
ae:45:69:58:d1:34:36:f1:9f:cd:e1:17:ea:25:65:
d0:99:cd:ed:64:7c:04:c7:4e:2d:4e:44:3b:99:a6:
d8:e0:59:f2:f0:e6:72:73:d5:14:2b:e9:5f:35:6a:
fb:74:d3:f1:d5:d7:62:15:56:bb:ea:f0:56:a0:65:
3c:dd:6d:0e:21:aa:13:fa:da:d7:fe:da:21:93:d0:
e2:78:c6:a1:3f:55:c2:6d:29:7e:7c:c7:61:47:23:
d1:0b:5b:fc:b9:7e:7f:fc:47:81:f7:3a:97:63:4f:
75:4b:2d:29:9f:85:f8:eb:38:55:13:47:4b:3c:05:
88:19:66:e0:61:25:2b:dd:6e:11:f2:f5:42:c0:82:
f1:23:f7:49:d6:4b:0a:bc:60:7a:c1:7f:16:33:0f:
39:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4C:52:6B:56:DC:00:15:61:14:F2:17:F0:C7:87:56:2F:2A:3C:A8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ZUxSa1bcABVhFPIX8MeHVi8qPKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.46.0/24
Signature Algorithm: sha256WithRSAEncryption
55:71:56:17:93:1e:b9:85:f5:8d:1c:e2:77:d0:81:d8:07:49:
a5:5c:66:2c:da:52:99:09:19:92:1c:9f:23:e8:05:f1:16:14:
8f:eb:ca:26:12:e2:93:e0:50:89:1f:47:dd:6c:ea:17:53:c6:
59:8f:89:6c:f6:d5:60:f6:3a:9c:ab:5a:48:68:cc:1f:41:bf:
76:82:16:d3:dd:6d:5d:eb:57:c2:ac:e8:26:4b:1c:8d:fa:1d:
19:16:68:0c:bf:eb:51:5f:63:9d:e8:c1:82:3b:f7:ff:06:50:
ed:e2:f0:e7:38:a3:54:8c:00:51:04:10:f8:72:fb:e1:93:4f:
8b:2e:b1:83:72:b3:0e:0e:72:6f:41:18:e1:fd:41:3e:84:8f:
21:68:05:79:2a:d7:c7:51:58:3c:8c:09:81:87:50:e1:ea:34:
61:a6:eb:c0:a1:ba:16:0e:08:b9:c8:b2:11:20:14:24:07:b5:
d0:85:23:33:06:d2:44:57:56:28:dd:f1:89:2b:97:df:e0:91:
3f:4e:31:77:6d:5a:f8:36:93:fb:d1:4b:43:82:5f:5d:84:32:
62:81:c7:30:96:ce:40:39:4c:69:36:ab:1d:c8:d8:c0:59:70:
43:98:69:94:e2:0b:07:f3:70:a4:d0:95:5c:a6:d2:d6:e0:6a:
1a:3d:42:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-ams.rpki-client.org