Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Z7ESGzrKW53H3ZnTOriExpSXKko.roa
File: Z7ESGzrKW53H3ZnTOriExpSXKko.roa (raw, json)
Hash identifier: RFylBOSqT6piijHnFnYFJ8Sh45XnhVR7yKaeKLcGess=
Subject key identifier: 67:B1:12:1B:3A:CA:5B:9D:C7:DD:99:D3:3A:B8:84:C6:94:97:2A:4A
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 043C05D4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Z7ESGzrKW53H3ZnTOriExpSXKko.roa
Signing time: Sat 01 Jan 2022 12:05:06 +0000
ROA not before: Sat 01 Jan 2022 12:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211725
IP address blocks: 193.233.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71042516 (0x43c05d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67b1121b3aca5b9dc7dd99d33ab884c694972a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9a:46:0a:4d:a5:55:ed:6c:30:4b:0a:51:c1:
de:ab:f2:f5:a3:e1:33:4c:c3:7c:bf:5c:ed:5a:62:
cf:81:a9:e3:ed:cf:99:02:c1:a4:e2:c1:0b:19:7a:
08:f0:ef:f7:0c:ab:e8:88:ae:2e:1f:8f:34:6e:0f:
3c:cc:5c:da:91:6e:5b:ca:80:af:04:2e:bf:94:6d:
8d:d2:52:45:10:e6:b9:d5:da:b8:2c:07:52:29:42:
5d:db:9b:b3:78:a7:ed:2b:f0:8d:35:05:66:2c:11:
34:16:25:8a:42:36:bf:a5:53:32:4f:7b:bc:e2:c1:
c4:b2:4b:05:07:47:80:e7:f7:d2:88:7d:00:b7:7d:
b5:14:39:de:34:dd:e3:94:70:33:75:ad:30:3d:d8:
e8:30:df:51:29:2a:47:8a:ee:83:a0:d3:e7:42:fc:
85:18:10:5d:c8:44:9b:78:82:f4:35:ad:bd:5a:15:
c9:b6:1f:b8:91:14:6c:5f:07:ee:46:b4:21:7f:87:
57:e8:26:71:44:01:4a:4e:bc:07:62:2d:7f:47:d3:
24:c1:b6:b9:51:de:20:8d:e5:91:98:8a:a2:e9:6a:
16:64:74:45:6c:7e:59:5e:64:d4:be:e4:75:6a:ef:
f3:aa:bc:d6:a0:84:9c:75:06:a7:67:56:fd:a8:06:
78:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B1:12:1B:3A:CA:5B:9D:C7:DD:99:D3:3A:B8:84:C6:94:97:2A:4A
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Z7ESGzrKW53H3ZnTOriExpSXKko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.81.0/24
Signature Algorithm: sha256WithRSAEncryption
07:80:c9:2c:f9:5d:84:43:6e:fc:64:81:1c:8a:f6:2c:23:4c:
71:7c:ac:ee:6f:bc:95:bf:db:4f:69:64:37:c1:4f:cc:2d:61:
64:9f:97:2e:a8:84:b6:3b:e5:a5:36:dd:bd:b7:e2:09:88:4c:
39:7a:ac:ae:93:d5:20:c7:22:93:7d:19:c0:1e:1a:2f:1f:cf:
40:e7:6b:02:f6:ca:92:b4:80:51:eb:74:15:0e:e1:22:c6:5f:
b3:25:dd:90:e7:50:bc:fa:b0:34:60:cd:f1:59:2a:68:03:f3:
6d:4a:ab:bd:92:27:ae:ec:dd:4e:61:3a:f5:88:58:01:a0:97:
af:e2:97:f4:e3:05:ad:a0:b9:86:83:1c:b8:fb:ae:6d:6e:b5:
66:b6:60:0a:2c:ed:e0:6c:dc:75:ba:ff:c5:98:fb:a6:eb:b5:
3a:a7:3f:47:11:0d:c7:09:3a:fe:b0:af:ba:e9:4f:c2:0f:51:
7f:48:cd:67:5f:4e:44:3f:7a:40:2a:13:92:9c:d4:56:c1:5c:
80:2b:bc:f9:2e:26:34:e4:fc:bf:22:22:3c:ad:bd:a9:1d:76:
78:1a:95:8c:77:d0:f2:49:b1:d6:6b:ac:68:34:fa:bd:5e:22:
5c:ff:16:7c:ff:a9:5b:fb:d9:54:7f:51:98:a8:4d:e7:9e:4d:
25:08:ce:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org