Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZNpjrCW3XO5BbITRko_VkaCQ2iw.roa
File: ZNpjrCW3XO5BbITRko_VkaCQ2iw.roa (raw, json)
Hash identifier: p8fCA0GBjy2aBGQO8QelOcqNlDSrEkKTZ0iN44yGWq0=
Subject key identifier: 64:DA:63:AC:25:B7:5C:EE:41:6C:84:D1:92:8F:D5:91:A0:90:DA:2C
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0472AB1A
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZNpjrCW3XO5BbITRko_VkaCQ2iw.roa
Signing time: Wed 02 Mar 2022 10:06:09 +0000
ROA not before: Wed 02 Mar 2022 10:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201448
IP address blocks: 194.181.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74623770 (0x472ab1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64da63ac25b75cee416c84d1928fd591a090da2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:72:c6:2d:c2:bd:3b:27:45:54:7b:22:f1:dd:
b1:db:8d:91:3f:5c:77:d1:d6:4c:c2:c4:26:42:76:
67:40:02:fa:f0:4a:d0:5a:3a:82:b7:c6:ec:a7:be:
c5:72:10:f7:f4:32:c2:34:1d:c2:64:c5:f9:ea:0e:
1b:4f:3d:cd:7f:cd:73:0b:a7:fb:8c:fa:cc:40:17:
c6:b2:bf:f5:52:b1:16:ef:fa:a6:c0:d9:5b:ad:23:
dc:ef:ee:49:57:c0:14:08:a2:15:b2:7e:a9:96:99:
8c:b5:22:12:8a:da:ae:62:e2:49:61:e7:51:c0:34:
b2:42:13:e6:c9:a1:2e:4c:d0:b2:80:df:5f:cf:59:
2e:cd:3d:03:dd:37:ed:b6:e8:39:b9:78:83:a3:0f:
af:19:89:46:25:27:ee:83:b0:ac:bb:c6:49:3f:0f:
cc:b9:aa:36:57:2a:f0:8a:fc:83:4b:1c:ce:1e:1e:
d9:bc:93:ae:76:7b:95:44:48:69:f2:01:7a:7a:79:
fc:2d:99:2f:48:b2:28:30:df:89:e3:fb:66:4f:10:
42:ba:cb:d0:88:97:69:88:b0:4b:d2:f6:d7:1e:0e:
6d:00:d0:26:79:95:1a:64:2f:e7:db:0c:04:a7:77:
c8:c0:ec:b7:62:6a:ce:61:d4:8b:09:67:41:fb:9e:
98:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DA:63:AC:25:B7:5C:EE:41:6C:84:D1:92:8F:D5:91:A0:90:DA:2C
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/ZNpjrCW3XO5BbITRko_VkaCQ2iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.38.0/24
Signature Algorithm: sha256WithRSAEncryption
33:48:93:0c:aa:a9:72:6e:7d:35:b2:f2:fd:fb:1a:c1:62:e0:
dc:e0:e3:6f:ed:d3:88:c3:d7:6e:4b:1d:ce:90:69:da:dd:77:
17:f9:d7:cf:2f:14:36:cd:84:1c:5b:de:bd:f5:e2:3d:92:12:
5f:fe:63:67:37:8a:8b:65:23:9f:e8:28:c3:af:7b:bd:cc:75:
61:70:85:af:8c:37:5d:ff:fc:d3:2a:54:84:0a:2e:5d:14:b3:
92:a4:55:9f:d5:30:11:06:28:59:09:31:49:19:dd:fd:c2:bb:
7d:a7:56:be:40:17:b9:dc:34:53:11:1c:2c:9b:e2:4c:fb:9d:
51:ae:03:d2:f0:ce:dc:88:0b:02:da:0e:0f:2c:9a:39:bf:cf:
7d:ae:a6:fd:0c:86:87:31:ee:60:6a:1b:dd:5d:7e:7c:fd:2b:
43:53:31:a7:24:7c:d7:32:c6:29:92:84:e2:ba:96:d4:ac:f1:
6d:62:41:9c:0f:93:b0:c3:25:48:29:5a:a3:1f:93:91:05:97:
3c:39:01:e5:68:2c:2e:10:e4:bb:b2:f5:6c:84:f4:c1:bc:40:
c4:c6:36:5d:53:c8:7d:a7:a7:77:cc:01:4d:07:80:74:16:23:
25:12:85:0b:f5:a2:6f:38:af:68:3b:95:65:4b:c8:78:fa:52:
f7:00:98:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org