Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/Zll78Ldp-jk7seS2ykOWFPBEzMk.roa
File: Zll78Ldp-jk7seS2ykOWFPBEzMk.roa (raw, json)
Hash identifier: QYHB2LTaqgKAr2iGIQWGViq6zeCBf8dtWWkV0z7juOE=
Subject key identifier: 66:59:7B:F0:B7:69:FA:39:3B:B1:E4:B6:CA:43:96:14:F0:44:CC:C9
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 035842E3
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/Zll78Ldp-jk7seS2ykOWFPBEzMk.roa
Signing time: Sat 01 Jan 2022 04:01:17 +0000
ROA not before: Sat 01 Jan 2022 04:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9171
IP address blocks: 193.47.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56115939 (0x35842e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: Jan 1 04:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66597bf0b769fa393bb1e4b6ca439614f044ccc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b5:ad:13:a6:9c:47:18:6d:61:69:a3:d6:b8:
7e:38:f4:26:2a:d8:00:5c:8b:c1:d3:24:c6:88:6a:
26:d5:75:e8:af:bd:ce:22:9f:80:7c:0d:7c:d5:fc:
28:4b:04:6b:d0:c1:33:1c:4d:3a:a4:10:68:8d:2a:
52:df:a4:09:96:35:a1:b2:bd:49:87:82:7a:d4:49:
4c:7d:16:02:b2:f8:b0:97:70:d4:af:b6:53:61:a7:
10:d6:f1:ea:58:17:5b:3e:81:7c:16:f5:d6:b0:64:
79:d3:1d:6c:07:df:b3:09:85:68:62:4d:51:8e:55:
c7:ee:c0:8c:2e:6e:91:25:57:3e:43:4b:91:94:f3:
3b:2f:42:08:de:b5:b2:84:71:08:60:bd:e2:6e:37:
02:f9:74:0c:83:62:94:0b:77:b5:a6:47:0d:55:27:
e1:0c:20:ed:ad:6a:12:ff:9a:83:47:3c:ea:b2:f6:
5c:da:b2:ea:7b:c1:ba:0c:27:e7:76:96:a4:73:44:
08:35:db:95:e1:d8:ab:86:9c:6e:ff:73:09:90:b4:
00:87:76:e4:e6:1a:88:a1:4d:ce:72:29:81:ec:d3:
37:49:af:fc:18:cb:2a:67:be:39:bd:a3:25:12:bb:
a5:b3:bd:4c:f6:e8:6e:6e:6a:3a:60:8e:d0:c6:f6:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:59:7B:F0:B7:69:FA:39:3B:B1:E4:B6:CA:43:96:14:F0:44:CC:C9
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/Zll78Ldp-jk7seS2ykOWFPBEzMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.142.0/24
Signature Algorithm: sha256WithRSAEncryption
56:be:7d:b9:1e:b7:5a:55:53:7a:16:51:19:e8:09:0d:d1:32:
ca:95:f2:c1:b3:97:eb:d6:c2:88:d4:96:b6:83:2a:b6:26:10:
2e:42:36:e4:e9:20:d3:cc:2b:b5:d6:35:f8:33:eb:0a:a2:c6:
39:36:a8:d5:3e:5a:0e:82:06:54:85:b3:b9:fd:53:0c:d1:ff:
4a:fc:8f:69:39:5a:74:02:d1:5a:09:db:59:fa:05:7f:da:30:
82:10:85:97:29:d0:0e:df:c1:30:83:76:1e:c5:a2:5a:b3:ed:
6f:15:2a:e7:96:40:f9:48:02:48:e7:a7:fa:7d:d7:54:c7:ec:
bd:15:d8:f7:76:09:e5:65:24:74:f8:e0:a7:c9:ad:dd:71:f1:
6d:fd:0b:d0:64:ce:e3:18:e4:68:5e:34:7f:0c:e9:ac:c9:52:
44:cb:40:3e:02:52:b3:ef:45:96:7e:f4:f2:4e:c4:26:94:89:
01:d4:4b:4f:14:db:66:8c:ab:c6:93:7b:d5:b1:45:79:16:da:
01:d4:c9:b6:96:ae:ef:7e:9c:e8:1f:a9:bc:c4:ed:c0:7b:15:
ad:1f:97:7b:91:8c:f6:5c:82:c8:31:1d:3e:8b:38:25:54:2c:
34:74:f9:72:7e:31:9a:99:7a:ed:93:54:c1:1c:25:48:df:a5:
cd:fa:59:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org