Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/ZR53xQcBrtuQZyyAV9_u_4TsIow.roa
File: ZR53xQcBrtuQZyyAV9_u_4TsIow.roa (raw, json)
Hash identifier: 7hFy717QZlIv9KV49LD+Q84fXXLBmrotq683DVvzZME=
Subject key identifier: 65:1E:77:C5:07:01:AE:DB:90:67:2C:80:57:DF:EE:FF:84:EC:22:8C
Certificate issuer: /CN=fb9e390bdcbd95afab4a5ff8c4ed9efc43687bd1
Certificate serial: DF148E
Authority key identifier: FB:9E:39:0B:DC:BD:95:AF:AB:4A:5F:F8:C4:ED:9E:FC:43:68:7B:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-545C9y9la-rSl_4xO2e_ENoe9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/ZR53xQcBrtuQZyyAV9_u_4TsIow.roa
Signing time: Sat 01 Jan 2022 02:54:00 +0000
ROA not before: Sat 01 Jan 2022 02:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 93.191.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14619790 (0xdf148e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb9e390bdcbd95afab4a5ff8c4ed9efc43687bd1
Validity
Not Before: Jan 1 02:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=651e77c50701aedb90672c8057dfeeff84ec228c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:2b:6f:45:de:15:87:b2:21:82:8a:4a:11:
1a:d5:f7:dd:a6:b9:0e:24:bb:ec:6d:05:7a:fb:54:
15:34:ad:e9:dd:31:ae:e2:26:00:e4:10:7b:2d:e7:
f4:9b:0b:8b:29:59:60:48:cb:cb:1d:76:df:db:47:
7c:4d:c2:39:0b:2a:a0:04:68:68:be:82:55:8a:53:
0d:f9:f1:74:6c:46:c9:4e:75:8c:14:08:51:e8:14:
e3:4a:10:0e:a3:33:5c:29:ef:11:70:5d:e9:c7:fa:
45:43:a0:e5:23:ab:c8:8d:42:91:1b:d5:dd:4b:65:
bd:43:e1:57:c7:13:f4:f2:4e:2e:53:7b:0f:3e:ef:
04:09:40:54:a0:c5:34:9d:9d:d7:4c:88:fb:4a:7e:
97:d2:99:b5:a8:a2:50:f1:b7:c4:f8:df:5e:50:6f:
dd:02:8d:40:0f:f3:a9:41:99:ce:1e:e1:83:58:67:
9f:bf:a0:20:a0:a3:22:12:41:bb:10:59:e8:27:a1:
4f:62:c4:53:dc:94:46:e3:ec:cb:a6:e5:f9:36:3e:
c3:7e:ce:de:7e:95:80:e3:b8:48:76:9e:ad:5a:dc:
28:bf:5f:e9:3c:39:0f:3d:81:18:3a:2b:35:08:be:
57:f5:9c:2f:0a:31:db:c4:d4:74:e7:c4:09:6a:60:
3b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1E:77:C5:07:01:AE:DB:90:67:2C:80:57:DF:EE:FF:84:EC:22:8C
X509v3 Authority Key Identifier:
keyid:FB:9E:39:0B:DC:BD:95:AF:AB:4A:5F:F8:C4:ED:9E:FC:43:68:7B:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-545C9y9la-rSl_4xO2e_ENoe9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/ZR53xQcBrtuQZyyAV9_u_4TsIow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/1-545C9y9la-rSl_4xO2e_ENoe9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.148.0/23
Signature Algorithm: sha256WithRSAEncryption
63:13:3d:0e:37:dd:53:50:ec:10:36:7e:64:d8:b1:a7:10:df:
37:81:12:da:6d:4f:6b:d4:ac:61:c5:12:a8:59:9d:fc:42:c2:
1f:4b:dd:01:35:a4:38:fc:83:39:74:f2:92:27:95:ba:e3:87:
a3:a3:3b:f0:3a:2d:a6:a8:67:ec:1d:b0:fa:e0:a3:d8:92:cb:
39:0e:b0:93:7c:e1:6f:1f:b8:b5:11:81:b2:08:9b:f3:aa:a2:
a8:24:2e:e8:95:83:76:42:2b:de:f6:0b:5a:1b:94:f3:72:a3:
85:a1:41:b6:c5:0e:51:28:9e:48:93:7a:de:51:86:7b:5d:1d:
e0:73:4d:1c:e5:13:b0:39:17:76:2a:70:3d:57:12:b9:3e:c9:
ac:52:62:c8:d6:77:db:8b:b2:0c:d1:e7:19:39:2b:ef:3c:29:
9c:57:84:ce:bb:1b:7a:9b:93:d8:37:1a:0b:f0:d3:61:2a:37:
d6:57:b7:7d:4e:4b:27:09:27:4a:f9:32:97:70:6b:c3:34:fd:
ee:9d:d3:d0:e0:ea:4d:69:92:0e:bd:02:66:35:59:80:d0:95:
fa:7e:a0:7e:fa:38:9f:2f:85:31:e8:c9:fe:24:9f:b0:fb:6c:
60:57:dc:70:d7:74:32:e0:b3:ce:e1:f2:7d:43:02:d2:7e:7b:
e7:24:2d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org