Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/ZnEVJtu8b0FdmryBHabRD3nSWiI.roa
File: ZnEVJtu8b0FdmryBHabRD3nSWiI.roa (raw, json)
Hash identifier: gW0uwMvMNJIYinWhdz92Kj8cCc0i6+e8hwZnEJovZ4M=
Subject key identifier: 66:71:15:26:DB:BC:6F:41:5D:9A:BC:81:1D:A6:D1:0F:79:D2:5A:22
Certificate issuer: /CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Certificate serial: 04412DEA
Authority key identifier: 3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/ZnEVJtu8b0FdmryBHabRD3nSWiI.roa
Signing time: Sat 01 Jan 2022 11:58:57 +0000
ROA not before: Sat 01 Jan 2022 11:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200640
IP address blocks: 37.34.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71380458 (0x4412dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Validity
Not Before: Jan 1 11:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66711526dbbc6f415d9abc811da6d10f79d25a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:95:1b:2e:1a:ff:14:db:f0:6c:18:12:74:
f6:d7:39:2e:7f:bb:0a:d3:d3:c2:2b:43:6d:41:2c:
13:ef:b5:a5:7d:83:07:37:45:48:71:0a:d2:a2:0b:
41:6f:75:d2:1f:c8:9e:9c:8c:42:62:cf:2d:f0:9b:
41:ec:c3:48:91:89:dc:c3:2c:4b:f4:45:b2:84:df:
1d:eb:ee:2a:30:4d:29:7b:2e:53:b5:14:86:83:de:
7c:57:cb:e2:73:a6:ad:ac:8e:1d:6f:e9:da:76:7e:
5e:01:c0:84:a7:d2:f0:7a:75:56:b8:73:12:75:dc:
b2:18:b4:28:7d:03:69:7d:10:02:42:99:29:4a:3d:
dc:93:84:9a:60:e1:12:51:e3:b2:68:a3:23:88:9f:
45:41:b2:8b:fc:2b:d0:4d:bc:ab:7c:f8:1e:43:24:
40:db:7d:79:ad:71:99:c0:ab:47:11:fb:a3:64:1d:
ce:3c:11:c7:eb:b6:f2:c2:c5:94:6a:79:6e:fa:5e:
c1:a3:17:20:d8:86:37:c9:8a:df:44:78:ae:a5:d1:
d4:df:bd:aa:33:2f:a0:ca:61:6b:f5:1a:52:aa:f4:
ff:ae:a7:3d:20:1f:97:0c:1f:0b:16:c7:82:1b:4e:
e8:73:a3:e7:de:83:04:1f:c3:87:4a:7a:70:7d:ae:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:71:15:26:DB:BC:6F:41:5D:9A:BC:81:1D:A6:D1:0F:79:D2:5A:22
X509v3 Authority Key Identifier:
keyid:3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/ZnEVJtu8b0FdmryBHabRD3nSWiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PesQRGPpILRVQravGifVlQ6G6aA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.34.100.0/22
Signature Algorithm: sha256WithRSAEncryption
92:13:a0:23:ad:c3:a4:b0:80:91:2c:70:c7:d5:ac:a0:d1:5d:
55:bf:b4:7c:62:09:63:59:6d:75:20:6a:d1:a0:18:fd:46:49:
56:6a:47:52:29:75:f5:5d:38:eb:7e:9c:9c:cc:bc:39:46:44:
29:22:93:e3:f8:35:ea:d9:ae:ca:f3:06:ff:45:c1:a7:0a:ca:
ee:96:0f:38:82:d3:a4:58:d3:38:ec:f6:15:a5:3a:e7:91:c0:
21:83:02:38:67:e6:68:a9:97:60:80:4f:b1:b5:29:aa:ea:94:
d0:25:b1:25:79:25:99:5d:2c:2b:ae:c2:26:c5:9b:22:52:f3:
1b:f9:bc:78:68:c2:03:64:9b:57:9c:bf:33:1a:55:20:29:d5:
1d:01:98:fd:b2:ed:ed:76:2f:0b:83:11:02:f2:f9:ff:84:a7:
52:38:f9:b6:d3:c1:13:c1:7e:a5:2d:93:b5:82:39:e6:5d:b5:
c7:cf:57:3b:79:6f:21:ce:73:f0:6a:5f:6d:0e:0c:4b:41:60:
60:3b:2f:4e:ca:de:ba:73:20:e8:fc:dc:14:a4:24:0b:36:da:
e8:bb:e7:d5:ff:f2:c3:0c:14:0a:3c:bd:87:fa:1b:7d:8e:7f:
19:0d:53:25:10:74:de:b9:25:c6:ee:db:66:b9:29:17:63:3c:
21:1a:65:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:32 2024 by rpki-client on console-ams.rpki-client.org