Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/9e39da-1925-4464-9576-bbf719c3ca74/1/Z0jLqzIcBCdnSwkcLK9I3MjLWHs.roa
File: Z0jLqzIcBCdnSwkcLK9I3MjLWHs.roa (raw, json)
Hash identifier: HqzoAcoW78VKO+0pa/ycMk2y8AAA1KXZCyKpSOyawbQ=
Subject key identifier: 67:48:CB:AB:32:1C:04:27:67:4B:09:1C:2C:AF:48:DC:C8:CB:58:7B
Certificate issuer: /CN=cb425fde747aa7fea8e7b335b46c88d238850abe
Certificate serial: 03436CF5
Authority key identifier: CB:42:5F:DE:74:7A:A7:FE:A8:E7:B3:35:B4:6C:88:D2:38:85:0A:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y0Jf3nR6p_6o57M1tGyI0jiFCr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/9e39da-1925-4464-9576-bbf719c3ca74/1/Z0jLqzIcBCdnSwkcLK9I3MjLWHs.roa
Signing time: Sat 01 Jan 2022 13:04:25 +0000
ROA not before: Sat 01 Jan 2022 13:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.200.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54750453 (0x3436cf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb425fde747aa7fea8e7b335b46c88d238850abe
Validity
Not Before: Jan 1 13:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6748cbab321c0427674b091c2caf48dcc8cb587b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:0f:94:38:58:63:82:f4:7c:1d:ea:bc:c7:
32:38:e7:19:20:b9:88:c3:66:92:3a:c0:0c:af:d5:
20:e6:9e:b2:7d:07:a5:94:9c:55:21:d1:f4:99:09:
19:56:af:dc:fc:59:54:d9:16:b9:fd:25:dc:fe:e5:
97:ff:28:0b:fd:be:84:78:c4:5e:44:7c:c3:d7:78:
c9:5b:bb:a5:c9:56:2c:c5:8b:cf:dd:76:4b:25:9a:
b0:b1:f2:93:1a:0d:1d:2c:a3:41:97:da:66:31:e2:
a7:79:33:54:c7:5d:41:3f:6b:da:4d:0b:f2:19:5d:
72:d1:1b:b1:62:e4:c6:77:ae:72:fd:df:be:ee:ea:
4c:0d:39:86:d7:58:00:19:2e:46:e9:86:2c:dc:20:
04:5c:0d:32:38:4c:b9:af:f0:2e:c3:8c:19:8d:af:
29:a6:af:fa:e7:64:02:c0:f2:7d:c2:d1:f4:e2:55:
4f:f1:ce:c0:ae:73:98:a3:7a:96:18:9c:d4:36:4a:
a2:66:13:86:6e:b8:f6:2c:a4:67:09:f4:af:49:b1:
99:3d:2d:86:3c:04:32:02:85:bc:c6:4e:b2:3a:b3:
72:c3:70:9b:c1:12:fe:8d:3e:0d:84:9e:26:23:28:
9c:6c:7f:2d:9b:08:5d:e0:2e:39:70:a4:90:60:a1:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:48:CB:AB:32:1C:04:27:67:4B:09:1C:2C:AF:48:DC:C8:CB:58:7B
X509v3 Authority Key Identifier:
keyid:CB:42:5F:DE:74:7A:A7:FE:A8:E7:B3:35:B4:6C:88:D2:38:85:0A:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y0Jf3nR6p_6o57M1tGyI0jiFCr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/9e39da-1925-4464-9576-bbf719c3ca74/1/Z0jLqzIcBCdnSwkcLK9I3MjLWHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/9e39da-1925-4464-9576-bbf719c3ca74/1/y0Jf3nR6p_6o57M1tGyI0jiFCr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.191.0/24
Signature Algorithm: sha256WithRSAEncryption
89:56:d8:70:95:12:93:7b:c6:4b:c4:27:18:72:d1:ff:95:01:
55:86:db:19:4c:73:33:88:56:9c:e6:fd:72:51:5b:4a:f2:03:
f1:0e:38:ad:53:75:e2:55:db:e9:b4:4e:0e:80:aa:ca:14:8b:
18:ab:95:d0:cb:5f:11:ca:0c:dd:87:18:a7:07:bf:c5:34:b7:
d4:31:e0:1d:6a:ee:d3:6a:9a:a0:b5:a2:a6:97:4e:d5:62:b7:
6d:83:03:19:d7:03:f8:9b:aa:3b:6d:42:36:40:61:ff:61:e7:
c6:12:0a:f4:53:c9:fb:b5:f9:b5:8c:72:87:02:a9:18:b7:60:
0a:cf:1e:b8:b4:91:dd:8a:a8:2b:ea:a3:dd:e9:34:8e:52:78:
1b:e2:e3:24:92:a6:76:ce:55:6c:36:c4:38:9f:03:a3:85:50:
09:04:18:d6:f1:1b:98:d1:9d:2f:c8:98:a0:4e:f3:ca:28:46:
df:94:ce:69:ca:cf:db:93:9c:be:0f:e8:9d:a7:04:d9:f6:ab:
c2:d4:b8:73:35:c6:95:72:5f:d9:27:01:d1:5c:cb:93:21:30:
40:8d:e4:cb:11:fe:b8:c4:99:27:a2:49:91:3c:de:5e:1e:48:
3e:8c:03:56:5c:42:68:5b:20:61:78:e9:2e:6d:e0:11:a1:39:
89:5c:e4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:07 2024 by rpki-client on console-ams.rpki-client.org