Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/zX78wVST2_0XgpXAJeiI4ze-wfQ.roa
File: zX78wVST2_0XgpXAJeiI4ze-wfQ.roa (raw, json)
Hash identifier: Iwmc1Rof5ECCxi8Q6GhF2JYMezD0zU9zNZ344fPA4n0=
Subject key identifier: CD:7E:FC:C1:54:93:DB:FD:17:82:95:C0:25:E8:88:E3:37:BE:C1:F4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018240B97EA39DEA3191E9A484584BE12559
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/zX78wVST2_0XgpXAJeiI4ze-wfQ.roa
Signing time: Wed 27 Jul 2022 17:34:34 +0000
ROA not before: Wed 27 Jul 2022 17:34:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 193.189.82.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:b9:7e:a3:9d:ea:31:91:e9:a4:84:58:4b:e1:25:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 27 17:34:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd7efcc15493dbfd178295c025e888e337bec1f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:76:a5:a4:2e:33:2a:4f:bb:ce:06:90:6b:ea:
83:3b:b8:0a:c2:ad:7b:02:e5:8c:40:78:26:7e:71:
7b:e1:37:b8:36:66:34:0f:90:01:8c:2e:77:b4:cd:
6f:25:9b:2d:94:3a:25:57:2e:68:21:44:23:de:96:
63:86:79:a3:bc:09:80:0d:88:21:68:77:8f:08:58:
d5:e8:28:5a:81:ff:54:7f:4a:27:ce:7d:1b:3f:c5:
9b:79:45:7b:dc:26:ca:8f:b9:a4:b9:3b:fe:35:85:
ea:ce:43:e8:b6:2b:77:2b:dc:58:8e:76:92:9e:16:
11:50:fb:55:c7:70:40:94:ea:b3:5e:7c:7f:71:c1:
82:d1:d8:e1:19:60:b4:14:32:0f:77:5f:57:68:86:
73:93:1d:6d:70:29:18:79:6e:69:52:38:7e:97:ea:
71:e7:2e:58:dc:0a:fe:f7:d5:8c:fe:7f:63:71:99:
b9:23:8c:4f:dd:37:5c:0f:b5:68:3a:21:04:5a:7d:
19:8f:59:ea:e0:6a:9c:51:02:6a:ae:1e:a5:4e:5f:
6a:6d:75:bb:21:e5:fb:52:62:ab:3c:8c:b5:ee:0c:
8a:e0:39:a9:eb:83:b3:3e:55:76:5e:40:1b:51:1a:
bc:b8:2e:f8:66:06:95:bb:ea:07:a9:65:04:30:2d:
63:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7E:FC:C1:54:93:DB:FD:17:82:95:C0:25:E8:88:E3:37:BE:C1:F4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/zX78wVST2_0XgpXAJeiI4ze-wfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.82.0/23
Signature Algorithm: sha256WithRSAEncryption
e3:79:8d:a1:eb:53:eb:90:f9:2c:15:36:4a:2f:5d:90:56:6d:
5b:18:6a:c0:9b:31:e0:42:25:fb:70:01:86:a5:45:cd:3c:3c:
e6:1a:13:ca:da:59:89:06:8e:e1:fb:7b:65:e0:bd:da:85:d7:
18:0c:9f:d7:5e:6d:b9:4b:1a:37:c7:fb:aa:e8:f9:34:3e:7c:
70:c9:f0:e4:b5:3e:ef:ff:08:6c:df:10:2c:05:36:62:4e:f4:
5f:76:0a:68:1e:1a:5a:51:40:6f:6c:d2:4c:a0:37:1c:da:48:
ce:e5:ed:07:cc:42:34:86:f4:f6:a9:8c:12:78:0f:94:f3:c4:
1c:d6:85:d9:5b:18:b7:74:ba:06:5e:d3:12:2c:e4:ef:9c:fc:
bc:bd:ad:ba:98:3f:a3:84:bc:76:e2:50:0d:23:10:43:eb:c3:
f3:21:3c:21:93:eb:c3:ca:09:7f:a5:bc:58:a7:ed:4f:eb:1a:
08:0c:e5:b4:20:43:27:03:3a:58:b7:b0:14:2a:73:a0:15:84:
2b:10:21:d8:ba:c6:a7:c0:72:07:0f:41:c4:54:80:93:6b:a6:
9a:67:cf:64:52:cd:94:44:3b:03:e3:b8:a7:65:c4:75:45:08:
39:23:2e:65:2a:ca:2d:f4:69:1a:0a:86:ed:02:0e:bc:cc:9c:
3d:26:42:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org