Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/2ZNlRHFoL0ZXXbrcolTTLvHiAMA.roa
File: 2ZNlRHFoL0ZXXbrcolTTLvHiAMA.roa (raw, json)
Hash identifier: erFxsppUSpSHGpR6FetrLStcjm49x7MyoPCKMBkWeXA=
Subject key identifier: D9:93:65:44:71:68:2F:46:57:5D:BA:DC:A2:54:D3:2E:F1:E2:00:C0
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 043AEAB5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/2ZNlRHFoL0ZXXbrcolTTLvHiAMA.roa
Signing time: Sat 01 Jan 2022 12:05:05 +0000
ROA not before: Sat 01 Jan 2022 12:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207447
IP address blocks: 193.233.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70970037 (0x43aeab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d993654471682f46575dbadca254d32ef1e200c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1d:d8:13:ee:35:78:ba:03:e6:1d:f2:ee:94:
01:59:6a:34:71:b9:06:dc:95:1a:73:f4:ae:c9:97:
15:ea:60:a0:03:95:2c:73:fd:f4:ae:b6:0b:7b:a4:
a3:10:02:60:b5:41:e1:aa:70:2c:e6:2e:ed:e0:3d:
c9:82:83:cb:0d:24:24:aa:50:d4:fe:77:09:8e:b7:
64:22:04:05:52:11:3e:79:19:46:f6:f0:8b:5c:7e:
eb:5f:41:4c:af:3c:1b:31:a6:ab:31:0e:b4:92:b7:
b3:7f:a8:55:14:ec:f3:3d:2d:a2:09:bd:17:d0:3a:
d1:fa:0f:60:f4:bd:c2:e4:7b:16:d4:c3:70:ef:c5:
24:61:cb:a3:a9:bc:72:2e:74:d5:6a:5e:47:63:a9:
7a:18:e9:77:c6:29:2d:61:06:c7:c5:cd:f6:fb:f8:
7e:d8:33:4e:c2:f0:73:b5:56:3c:ed:5b:e5:5b:50:
ac:92:7b:b5:b7:00:b4:17:fe:0d:8d:82:8b:45:54:
fc:28:b2:1d:8d:50:89:da:5f:9b:44:7a:9b:6a:02:
2f:f5:e2:4e:f6:8a:ca:61:0e:0d:d4:20:2a:3d:a2:
34:95:80:b9:34:82:19:e0:01:b6:ad:af:5a:0d:bb:
a2:8b:f8:34:eb:8d:48:2e:b2:66:bb:90:39:c2:f7:
50:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:93:65:44:71:68:2F:46:57:5D:BA:DC:A2:54:D3:2E:F1:E2:00:C0
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/2ZNlRHFoL0ZXXbrcolTTLvHiAMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.52.0/23
Signature Algorithm: sha256WithRSAEncryption
70:80:dc:a4:0a:a9:11:0d:55:70:ce:8e:4f:88:10:18:51:e2:
09:ea:17:b7:d3:92:80:99:d1:1b:f8:b0:76:a6:cf:dd:fc:6f:
4c:82:dd:4a:f2:00:d4:e8:a9:d1:6e:2c:97:18:79:b8:7e:6e:
0f:a2:e2:9b:07:d9:70:d4:77:d6:a7:ef:ef:6a:1c:ea:eb:64:
52:a0:9d:80:a1:7e:57:60:2f:4a:b9:1a:02:2a:60:5f:2a:c3:
b0:2d:fb:85:4c:5e:8f:53:07:f8:d6:c3:e8:43:c0:60:af:62:
bd:f0:09:bb:a1:f4:e5:5f:66:ef:54:9d:9b:ed:8d:8a:14:43:
18:76:13:26:b4:8f:09:6e:ed:8d:3c:70:39:af:21:bc:ee:c2:
81:9b:16:1f:81:25:b5:e3:10:67:70:46:c0:31:bc:4c:5a:d6:
db:3f:b3:91:91:56:96:73:e8:03:6e:b8:3e:54:16:f5:47:3d:
79:43:05:61:f5:9e:e0:ca:94:a5:29:db:3a:76:c6:54:e2:e3:
c4:bb:ca:82:78:88:bc:cc:a7:e6:2d:5d:9b:22:5a:76:c2:8e:
c3:d8:e3:17:8c:c1:42:2a:5b:e4:f5:1f:46:f5:f6:57:b8:cf:
35:5e:77:9d:82:f3:5b:6e:4c:8e:32:d2:98:fb:6a:86:69:2a:
18:f3:bb:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org