Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/ZhIHKU0bzFvkvT3DLKD76e6igTo.roa
File: ZhIHKU0bzFvkvT3DLKD76e6igTo.roa (raw, json)
Hash identifier: y07LauTdtgD8M2p0HoprE8EvFivjwT/R+Y6lxhZkvx0=
Subject key identifier: 66:12:07:29:4D:1B:CC:5B:E4:BD:3D:C3:2C:A0:FB:E9:EE:A2:81:3A
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 06ECC028
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/ZhIHKU0bzFvkvT3DLKD76e6igTo.roa
Signing time: Sat 01 Jan 2022 09:58:28 +0000
ROA not before: Sat 01 Jan 2022 09:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206934
IP address blocks: 193.30.90.0/23 maxlen: 24
193.30.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116178984 (0x6ecc028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Jan 1 09:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=661207294d1bcc5be4bd3dc32ca0fbe9eea2813a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:e9:88:e8:5f:95:83:81:82:46:e0:d6:ca:
65:ab:40:6e:00:e2:62:98:fb:32:ef:bd:3f:82:d5:
07:c2:27:49:6e:b0:5e:2e:d3:56:7d:f9:d5:c8:17:
8c:4f:a2:a9:24:55:29:b9:7f:28:3d:81:df:5c:48:
ee:15:fc:9d:43:0b:3a:8b:cb:24:06:b3:66:8b:de:
82:b2:3f:22:29:bb:12:69:2d:23:6f:97:0a:de:c1:
9c:02:60:7d:4a:58:2b:04:a0:76:7f:fe:a8:71:96:
71:70:e5:5d:1c:c8:4a:0a:79:00:29:bb:bf:8c:d1:
9b:d1:01:83:70:8c:f2:8e:67:7e:27:a6:ba:01:fe:
89:51:6b:17:4e:47:46:75:18:d4:62:0a:2c:0f:9c:
b9:f8:9b:9f:1d:9c:3a:92:ef:df:27:09:c1:89:70:
8d:d1:fd:0b:bf:ca:00:a9:14:c6:f2:d5:f6:29:e9:
5f:c6:ff:20:f5:ea:5a:43:eb:e9:c5:0d:c2:92:a0:
50:f2:55:d4:41:3b:48:ca:c8:d3:f0:d9:b6:9c:6a:
1e:a6:70:b8:12:71:84:11:6e:11:05:f7:5d:2e:91:
d1:64:60:ef:62:46:9b:b3:91:e8:b2:12:c9:53:08:
e7:b6:27:7e:8f:e0:15:e6:65:21:b8:c0:1e:cf:54:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:12:07:29:4D:1B:CC:5B:E4:BD:3D:C3:2C:A0:FB:E9:EE:A2:81:3A
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/ZhIHKU0bzFvkvT3DLKD76e6igTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.23.0/24
193.30.90.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:5e:48:2a:72:3a:3a:62:4f:08:b5:70:36:2b:eb:74:c8:7d:
1b:56:78:67:a9:c8:20:81:f9:3f:ee:52:a1:b5:30:eb:62:35:
76:37:50:22:48:a6:b9:f4:b2:3a:03:63:ef:68:97:8a:f7:70:
78:63:62:e3:c8:8a:fd:48:ac:9c:c1:a1:94:01:3f:a5:5d:7d:
96:fa:91:e7:cc:88:c1:b0:ee:da:90:65:60:03:ee:21:85:81:
43:9e:0c:28:50:91:f9:ae:3e:24:92:30:9d:e9:98:fe:fc:fd:
8d:47:f9:46:68:c8:43:f0:1f:d4:17:bc:10:a5:c1:43:80:fc:
35:8b:77:fa:80:96:c1:d6:4d:ae:b0:48:e6:5e:4a:31:24:ba:
37:07:96:6c:f8:6a:00:6b:dc:24:62:a3:bd:83:4c:5d:c3:45:
28:de:72:c8:47:47:04:85:f5:a5:5e:6a:2b:6f:f5:8f:59:b8:
9d:33:45:61:f1:3d:d1:d5:b8:2b:89:93:52:ff:4c:f2:69:4e:
6d:fc:f7:f5:b7:9a:26:16:71:e1:56:66:10:b0:f3:04:d6:0c:
94:2b:74:fd:32:00:0c:cf:d5:3f:bb:e0:0a:54:74:8e:b0:50:
0f:bc:85:4f:bd:b1:8d:7e:74:b6:b9:f1:1f:e4:69:1f:7c:1f:
cc:15:cf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:22 2024 by rpki-client on console-fra.rpki-client.org