Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/M0_zXBTgrAOZg0lmkXS216H91kI.roa
File: M0_zXBTgrAOZg0lmkXS216H91kI.roa (raw, json)
Hash identifier: B34lDQY75VkXRJRgHRMjW5n/+ZZl4A6F3/lZeO/6SWk=
Subject key identifier: 33:4F:F3:5C:14:E0:AC:03:99:83:49:66:91:74:B6:D7:A1:FD:D6:42
Certificate issuer: /CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Certificate serial: 142AB164
Authority key identifier: 04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/M0_zXBTgrAOZg0lmkXS216H91kI.roa
Signing time: Sat 01 Jan 2022 04:51:13 +0000
ROA not before: Sat 01 Jan 2022 04:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.219.118.0/24 maxlen: 24
2001:67c:788::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338342244 (0x142ab164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Validity
Not Before: Jan 1 04:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=334ff35c14e0ac03998349669174b6d7a1fdd642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:c4:66:eb:28:18:34:35:02:2a:63:6d:84:
be:e1:ad:a7:94:33:c5:86:fe:67:f1:ed:93:1d:83:
bd:47:d6:c1:05:ee:ed:e3:20:50:ec:30:e6:e5:eb:
37:17:28:2b:92:48:e8:6c:49:0d:0e:af:3d:ee:7c:
99:b1:f3:f1:6f:15:22:e2:97:29:2b:67:9d:1b:8b:
25:fc:53:a5:50:fa:25:63:2f:f7:72:4a:9c:d7:91:
3b:9d:71:3b:c1:b8:ab:5f:56:bd:ea:c7:f4:44:be:
83:53:7b:7e:45:91:dd:9a:c2:ad:34:f1:d3:8e:47:
6f:44:77:21:56:90:81:a3:06:ae:cc:7a:da:74:6f:
79:a7:fc:20:fa:34:d7:95:eb:f0:fd:ca:77:5b:06:
11:92:98:14:76:0e:8b:2e:ed:e9:20:90:f8:f5:c3:
32:e7:9b:89:ee:c6:ab:54:a4:a3:22:71:d2:8a:21:
f1:ee:05:1a:d6:e1:96:95:4b:21:78:29:7e:be:8a:
2f:42:df:a2:bf:e4:47:5e:ac:87:08:fa:f3:18:04:
68:b9:ed:31:38:0a:e0:44:e9:51:6f:98:ef:be:8b:
9b:a8:19:78:c9:ba:fa:95:1c:57:d2:bf:c9:a0:5b:
cb:56:25:34:1e:dd:0b:b6:18:2a:c3:ac:52:ea:00:
63:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4F:F3:5C:14:E0:AC:03:99:83:49:66:91:74:B6:D7:A1:FD:D6:42
X509v3 Authority Key Identifier:
keyid:04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/M0_zXBTgrAOZg0lmkXS216H91kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/BNm8gopWawavTXZd-12lvB12xyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.118.0/24
IPv6:
2001:67c:788::/48
Signature Algorithm: sha256WithRSAEncryption
47:76:e2:0c:0f:35:92:af:8a:00:33:f6:ae:6d:60:2e:d4:72:
a7:ab:48:36:f4:3a:cc:e3:fb:10:3a:07:f3:8e:94:fe:88:db:
21:d1:c8:74:87:06:36:7d:7d:19:7b:5e:9b:f3:08:dd:49:03:
35:79:8b:bf:af:9e:de:f0:34:38:e5:d7:6e:b3:ba:54:01:dc:
2a:25:a6:7f:e2:56:59:92:30:a1:10:bc:9b:4c:a6:af:0f:b2:
9d:5c:dc:ec:68:1a:24:3d:16:77:70:bd:a0:c5:68:3d:06:5a:
1a:9c:32:4b:37:69:ec:37:21:16:99:6a:35:70:ea:a6:12:d6:
bf:68:af:f5:7f:3a:a5:1c:15:01:78:c9:61:9d:a8:94:75:da:
68:0b:b0:3f:b5:bf:16:8b:68:a5:28:a9:36:84:0b:36:ba:07:
d9:df:f0:19:d2:14:87:8e:1f:ef:26:76:c2:38:32:54:fc:4a:
da:55:c0:ef:45:b8:bf:84:b5:64:1a:39:61:99:9b:2c:8c:d8:
56:d0:07:28:68:d2:a4:f0:1e:2e:d2:b8:bf:68:bf:ec:bf:b3:
45:8c:86:cd:92:4f:5b:cb:7b:7a:e5:bb:9f:f4:d3:f8:94:e9:
20:77:fd:0f:0c:fd:a6:a0:86:7f:c4:bf:2d:32:9b:47:02:9f:
90:69:f1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-ams.rpki-client.org