Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/ZN1dwZZY1ZVS3U4glAi9vXxs-3A.roa
File: ZN1dwZZY1ZVS3U4glAi9vXxs-3A.roa (raw, json)
Hash identifier: 1ve8n39AhaM/tfaSVyz8agxs0LflNjkyAnQ0WJzzBXQ=
Subject key identifier: 64:DD:5D:C1:96:58:D5:95:52:DD:4E:20:94:08:BD:BD:7C:6C:FB:70
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 0464E2C9
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/ZN1dwZZY1ZVS3U4glAi9vXxs-3A.roa
Signing time: Thu 07 Apr 2022 22:52:44 +0000
ROA not before: Thu 07 Apr 2022 22:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 78.142.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73720521 (0x464e2c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Apr 7 22:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64dd5dc19658d59552dd4e209408bdbd7c6cfb70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:91:83:cc:d4:d0:28:e2:ae:fa:cd:cb:c3:
05:0c:ef:14:fa:31:c1:1e:83:a2:cd:70:f6:00:88:
14:9a:03:db:da:d9:3a:2f:c0:ef:d5:1e:1b:c5:c8:
dd:27:5f:fa:c7:29:79:a4:09:2c:13:a5:55:01:14:
05:1b:3a:13:f1:e6:91:f1:d5:e6:66:53:17:9a:b1:
3f:b4:d5:1b:68:94:14:87:5c:99:4f:14:36:1a:00:
6c:f7:e8:10:d9:bb:26:d8:f4:59:85:20:9d:81:9c:
6d:53:1f:8b:d6:54:d6:ae:69:d1:01:93:95:1e:fd:
1c:39:b3:9c:72:85:42:d1:f1:52:a8:49:83:cb:cc:
16:77:36:63:f5:ed:b2:c4:07:a8:e9:38:41:3e:9e:
db:6f:b1:d6:7e:92:e0:c8:a2:fd:8e:2e:fa:10:63:
5d:7c:a0:81:6f:cc:e5:d4:27:cf:fa:4d:ab:dd:46:
77:cf:66:f7:c0:0c:2c:f1:13:4b:33:43:72:17:cd:
41:3c:92:59:e8:f3:55:8e:ac:96:7b:6c:39:b4:5b:
8a:09:7c:7c:ff:0e:9d:07:7b:c2:12:13:8d:4b:05:
88:53:ea:64:f3:8d:9a:a5:3f:cb:35:09:1b:08:b7:
f1:ee:e4:ca:a7:c4:d2:5a:08:59:cc:e0:6e:7d:fb:
c5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DD:5D:C1:96:58:D5:95:52:DD:4E:20:94:08:BD:BD:7C:6C:FB:70
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/ZN1dwZZY1ZVS3U4glAi9vXxs-3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.216.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:02:a5:6d:ec:35:8e:30:f9:98:27:0e:2f:0c:e2:53:53:fa:
b9:63:73:39:87:a2:d0:ad:f8:44:56:46:88:ec:87:c7:44:25:
6c:0e:42:5a:30:54:31:b1:75:58:de:a4:23:47:c3:16:e1:29:
e9:09:dc:93:f1:88:d2:8d:1b:bc:6f:09:9b:d4:f4:26:56:cf:
e7:af:f6:14:45:9d:c7:8a:29:e6:2c:a2:09:97:87:a5:45:6e:
7d:1e:af:9b:d7:d4:d3:0c:07:a9:3e:0e:65:df:7c:9c:1b:66:
26:d8:34:4e:ad:2b:89:05:0e:23:eb:68:70:40:81:d0:91:20:
1f:83:f3:17:4b:50:69:c3:9d:4d:e2:78:8c:b7:8b:52:d3:73:
30:5d:b7:d6:0d:38:b5:ea:86:4e:73:31:4e:d1:36:98:50:9d:
68:93:fe:25:54:77:ef:78:7c:80:69:59:64:2d:81:64:7a:45:
a7:eb:56:80:97:a0:75:51:7b:d2:c2:86:67:c5:3b:5e:05:be:
65:de:dc:4f:1a:4a:11:54:89:d7:2e:c6:9d:8b:4b:c8:26:5a:
7e:ff:ae:34:35:b8:51:28:24:dc:da:9f:91:0b:d2:c0:18:e0:
31:2c:44:fc:ba:bc:2f:35:dd:bc:7e:48:4f:8c:cb:bd:03:d2:
6a:0d:c9:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org