Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/CZ4rxxuCSNCOt1pVr5MCCslMOJg.roa
File: CZ4rxxuCSNCOt1pVr5MCCslMOJg.roa (raw, json)
Hash identifier: XuLWdEcV81bSVABYdqERxDOk6fGMP4YjtI7NeM8pOo4=
Subject key identifier: 09:9E:2B:C7:1B:82:48:D0:8E:B7:5A:55:AF:93:02:0A:C9:4C:38:98
Certificate issuer: /CN=e4a714ffc598b15647bbafe2c6460a87eafbcf97
Certificate serial: 02157C14
Authority key identifier: E4:A7:14:FF:C5:98:B1:56:47:BB:AF:E2:C6:46:0A:87:EA:FB:CF:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KcU_8WYsVZHu6_ixkYKh-r7z5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/CZ4rxxuCSNCOt1pVr5MCCslMOJg.roa
Signing time: Sat 01 Jan 2022 00:54:08 +0000
ROA not before: Sat 01 Jan 2022 00:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.30.161.0/24 maxlen: 24
193.17.68.0/24 maxlen: 24
193.200.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34962452 (0x2157c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a714ffc598b15647bbafe2c6460a87eafbcf97
Validity
Not Before: Jan 1 00:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=099e2bc71b8248d08eb75a55af93020ac94c3898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:f5:76:d8:06:f4:46:e5:b1:7f:2f:93:3d:
ea:ae:3d:1a:fe:51:1c:32:9b:fc:07:dd:00:eb:0a:
2a:87:67:20:29:f8:62:75:2f:07:c0:4c:05:60:0d:
48:88:76:20:af:44:f2:38:00:ad:1e:73:85:90:b2:
54:86:e8:4c:55:bd:4e:c3:8e:20:ef:19:e4:a7:1f:
45:24:b0:d1:54:bb:62:10:32:dd:02:76:b4:45:7f:
1d:6e:18:fd:d9:47:67:7e:63:ff:7b:aa:f6:3c:8b:
e7:8e:91:ef:1e:c6:ed:04:83:f8:1d:77:48:6a:cf:
a9:08:55:88:c0:33:8c:bb:72:79:68:dd:c9:b2:d1:
83:c4:a3:70:16:ec:ec:4a:9c:d8:ff:ad:30:d9:48:
89:e7:e3:44:d6:b5:1c:f7:f7:8f:78:52:d8:d0:8c:
65:4c:2d:34:e5:cb:34:02:f5:25:f2:60:ae:e5:28:
d0:01:79:f4:8c:4a:2b:05:0c:00:9c:6f:6d:ed:7c:
bd:cb:9d:47:dc:5b:6a:b7:a9:3b:1d:77:b2:62:7b:
9b:39:66:b4:bf:4c:1c:80:7e:32:aa:33:66:38:2f:
f2:96:0e:be:78:f5:58:28:6f:f3:c1:5c:ec:23:78:
9d:91:8b:61:0d:35:29:0f:53:38:80:57:d2:28:16:
11:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:9E:2B:C7:1B:82:48:D0:8E:B7:5A:55:AF:93:02:0A:C9:4C:38:98
X509v3 Authority Key Identifier:
keyid:E4:A7:14:FF:C5:98:B1:56:47:BB:AF:E2:C6:46:0A:87:EA:FB:CF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KcU_8WYsVZHu6_ixkYKh-r7z5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/CZ4rxxuCSNCOt1pVr5MCCslMOJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/5KcU_8WYsVZHu6_ixkYKh-r7z5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.68.0/24
193.30.161.0/24
193.200.30.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:d6:bb:e3:47:21:3e:e6:b5:1a:8f:76:c6:43:47:11:24:66:
f4:6f:e6:a3:93:cc:f1:f5:db:08:14:f6:fb:35:39:be:1b:46:
4f:f1:41:4d:13:04:a6:b8:3c:bc:73:1b:8e:49:d5:0d:5d:20:
dc:4f:65:45:66:25:2a:1a:13:5d:08:c1:22:92:a5:65:9f:e9:
e9:c4:fe:93:38:04:68:ff:31:e8:cc:9a:fc:f1:77:e3:27:d8:
a9:f3:96:45:b8:7f:ce:ff:5f:d4:96:c5:ed:d8:3b:52:ce:d0:
c6:8a:d7:bb:4f:e1:b9:d0:3c:32:98:6c:c4:94:eb:bf:3e:a4:
17:cb:6e:86:ce:44:b5:de:75:a5:54:e6:bd:5a:d5:04:7b:96:
ee:87:75:25:53:69:f5:59:84:f2:81:7b:80:2a:b5:c9:e7:2a:
a7:df:b2:28:2e:db:3b:2b:f0:59:a7:ac:68:a5:96:9a:1e:a2:
10:2e:7b:21:ce:9e:42:45:07:f7:ab:59:12:8f:06:c1:51:da:
00:fb:52:4b:a1:1d:45:6c:1b:19:6f:41:ee:c2:2c:92:ea:ab:
10:12:f4:78:91:ea:ba:94:df:25:e2:58:73:d3:86:17:3e:91:
24:2d:38:5c:6f:ac:59:2e:df:62:34:bc:90:75:5f:44:da:6f:
ff:ed:7c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org