Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/ZMx0l_i_-2gmuHIpF7U8p8iD4oA.roa
File: ZMx0l_i_-2gmuHIpF7U8p8iD4oA.roa (raw, json)
Hash identifier: dYMGmHpxsfNFtql43t2Lu7MoEJZSE3eJyWDXq2+PmKs=
Subject key identifier: 64:CC:74:97:F8:BF:FB:68:26:B8:72:29:17:B5:3C:A7:C8:83:E2:80
Certificate issuer: /CN=f0e206ce6d53f04908a36463d89e9b21a70c438e
Certificate serial: 49443E
Authority key identifier: F0:E2:06:CE:6D:53:F0:49:08:A3:64:63:D8:9E:9B:21:A7:0C:43:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8OIGzm1T8EkIo2Rj2J6bIacMQ44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/ZMx0l_i_-2gmuHIpF7U8p8iD4oA.roa
Signing time: Sat 01 Jan 2022 02:58:05 +0000
ROA not before: Sat 01 Jan 2022 02:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 212.23.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4801598 (0x49443e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0e206ce6d53f04908a36463d89e9b21a70c438e
Validity
Not Before: Jan 1 02:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64cc7497f8bffb6826b8722917b53ca7c883e280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:54:64:22:1d:97:c9:d3:8b:62:4b:87:8a:ed:
16:b0:39:6f:30:8f:1b:94:b1:46:15:68:01:20:1e:
76:dc:9b:79:4c:fb:fb:ee:f2:74:24:ab:82:0f:31:
16:4a:73:05:36:4f:a0:54:1c:1b:9f:c3:34:da:ca:
d1:dc:4c:10:50:82:51:a9:5a:e8:07:47:91:02:4d:
6f:00:ab:21:2f:45:28:8e:2d:da:88:53:cf:d6:59:
c5:ec:bd:f0:1c:7f:28:09:eb:e6:d7:70:3e:8e:a4:
4a:0e:ff:79:e1:e0:01:89:55:67:0c:aa:db:f2:d2:
f1:5a:ae:2e:e1:16:af:27:9f:f5:a1:ff:d5:d9:fc:
65:e4:3b:65:8b:25:79:2e:a8:ec:3b:01:46:7b:ac:
64:e3:b3:9c:8b:7c:49:0f:4d:2a:fa:91:24:9f:85:
65:f8:a3:0a:50:2a:cf:49:1c:08:e5:a6:3f:3e:66:
06:a7:bf:77:ac:f1:82:d6:60:ef:ce:d0:0b:22:d7:
4c:87:26:27:76:cf:c6:cd:05:61:17:b6:ff:c9:5c:
d6:70:61:d2:7c:be:99:ab:13:df:3d:25:04:00:6c:
53:1c:85:d7:4e:01:9f:5b:d9:a5:2f:03:11:8c:87:
70:55:ca:4b:31:45:f6:35:82:5e:09:61:e2:c3:1f:
50:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CC:74:97:F8:BF:FB:68:26:B8:72:29:17:B5:3C:A7:C8:83:E2:80
X509v3 Authority Key Identifier:
keyid:F0:E2:06:CE:6D:53:F0:49:08:A3:64:63:D8:9E:9B:21:A7:0C:43:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8OIGzm1T8EkIo2Rj2J6bIacMQ44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/ZMx0l_i_-2gmuHIpF7U8p8iD4oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/8OIGzm1T8EkIo2Rj2J6bIacMQ44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.223.0/24
Signature Algorithm: sha256WithRSAEncryption
23:96:31:23:f6:71:68:a6:58:bb:9b:d2:a9:ad:b1:a2:d7:36:
1c:c8:6c:69:2a:dd:0b:a6:9d:e6:7f:51:6a:d8:c0:ca:41:a7:
5c:0f:55:3b:24:b9:93:e2:54:77:b1:73:35:ac:02:ef:fb:60:
4c:dc:b5:4c:d5:74:b3:18:9b:82:f2:93:56:95:27:c4:a9:53:
c8:27:ea:ce:65:99:e1:a8:78:5a:b2:e1:59:27:47:81:3a:00:
01:7c:42:74:a5:e4:a3:e4:7c:ed:a7:04:1d:6b:11:9f:ef:86:
41:95:31:fa:eb:fd:99:b4:1d:10:52:cc:c9:48:bf:f2:31:d4:
87:66:0f:8b:9b:0a:f6:bc:6b:4d:74:8f:f8:9a:4f:78:b2:09:
22:f6:1c:a8:6b:3d:cf:6b:e2:e6:d3:6b:db:de:82:6e:d8:0f:
28:e3:52:83:56:a7:67:30:0c:7d:c9:ac:d3:aa:c3:61:78:05:
7a:34:57:f4:19:ea:b5:97:9e:05:4b:9a:02:98:19:7e:8d:12:
7b:5e:1e:88:2f:78:8a:ed:de:55:3d:84:12:a3:ca:c7:5e:a5:
cc:ab:51:15:10:e7:73:a2:29:3b:33:31:0d:05:bb:c2:bc:d0:
ed:78:34:a4:f0:d3:c1:af:ac:3d:5e:07:3d:7b:07:88:99:9c:
d1:e8:97:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:32 2023 by rpki-client on console-fra.rpki-client.org