Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/Z4aRYYu5qAlvdoq7W72IHlDrnfg.roa
File: Z4aRYYu5qAlvdoq7W72IHlDrnfg.roa (raw, json)
Hash identifier: +di/0M9+HO0INS8/BaU+Bfbt0tZAuYeVsyY7J17ZiPE=
Subject key identifier: 67:86:91:61:8B:B9:A8:09:6F:76:8A:BB:5B:BD:88:1E:50:EB:9D:F8
Certificate issuer: /CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Certificate serial: 0A095414
Authority key identifier: DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/Z4aRYYu5qAlvdoq7W72IHlDrnfg.roa
Signing time: Sat 01 Jan 2022 06:02:49 +0000
ROA not before: Sat 01 Jan 2022 06:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209799
IP address blocks: 194.15.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168383508 (0xa095414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Validity
Not Before: Jan 1 06:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=678691618bb9a8096f768abb5bbd881e50eb9df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b8:ea:b3:a8:d1:12:7c:aa:57:e1:0d:49:2b:
a0:ed:fd:89:7d:59:47:ed:de:02:07:4f:60:6c:10:
94:40:3f:2a:84:50:56:20:c2:4f:f9:5b:cf:dc:b2:
6a:e5:36:6f:4c:61:58:47:89:20:b9:16:5b:3b:f1:
be:41:db:e2:0b:1d:ee:35:c3:ee:2b:21:9b:7b:14:
9c:92:91:78:f2:71:f2:ec:ba:a4:3a:d0:fe:3b:f4:
58:00:43:08:66:de:94:c2:29:55:69:34:c2:f9:d5:
ec:89:1d:3e:ca:83:79:91:fe:d4:18:8b:73:d8:93:
a1:d0:74:cd:9d:a7:af:ee:4d:a2:97:33:6a:b4:5c:
65:84:44:16:60:8c:43:a9:e5:fc:95:8c:9e:74:1f:
0f:5e:b0:92:38:32:f8:e4:08:00:77:2b:ef:ee:17:
ee:fb:b8:9d:e8:61:82:a2:0b:4b:10:01:df:fa:68:
5b:5c:fb:9b:74:f9:b0:84:62:63:2b:6c:24:3e:e6:
f0:c5:8f:9b:1c:cf:69:ef:b0:c6:d9:8a:d6:74:92:
4a:2d:bd:64:c2:40:02:1c:c8:7e:d6:ae:52:b0:13:
42:9d:f4:15:1b:49:a4:49:00:6a:3f:cb:53:e3:9b:
5b:a2:47:80:69:d2:63:83:c1:cc:55:41:fb:80:c7:
a8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:86:91:61:8B:B9:A8:09:6F:76:8A:BB:5B:BD:88:1E:50:EB:9D:F8
X509v3 Authority Key Identifier:
keyid:DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/Z4aRYYu5qAlvdoq7W72IHlDrnfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/3NywK2HjoV6sNzuZLg4aZUX2HlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.100.0/22
Signature Algorithm: sha256WithRSAEncryption
74:70:71:5c:34:9a:17:7f:1b:c1:48:40:f8:c4:81:d0:58:24:
fa:2e:a8:cb:71:3d:7d:cd:22:1a:55:64:ab:7c:7f:7f:75:87:
bb:f6:57:10:e8:dd:b7:f1:06:5b:91:c8:36:f5:bb:50:bf:da:
26:84:e8:de:6a:e0:d1:da:b8:be:bd:08:ba:26:aa:2f:ed:75:
8b:80:08:db:1e:eb:e4:0b:fc:1f:83:ba:16:0a:a3:cf:d7:3a:
40:9f:e9:77:8c:5a:f3:6f:0a:8c:e8:ba:7f:ee:48:a5:e6:af:
b8:27:5b:22:0b:07:66:39:19:cb:d0:0f:bd:ff:dd:18:b9:ee:
d2:9c:9b:4d:ce:82:0c:90:aa:43:fc:f9:11:fa:32:75:3d:97:
1b:34:43:74:cd:0d:f0:34:22:8f:cd:06:1e:d0:31:bb:59:6d:
23:a4:c4:e6:1a:02:74:60:11:1e:4c:86:33:8d:18:d2:d2:82:
5a:fa:9a:5f:44:99:0f:c0:bf:fc:31:f1:51:04:30:6f:88:9f:
f4:f4:fb:39:ac:35:3f:3c:90:45:c8:ef:5f:29:f3:3f:0d:40:
20:f4:97:7d:fa:0f:96:06:58:8e:dd:16:e3:61:25:6d:bc:e4:
d7:a0:4a:99:41:09:ea:bb:e5:b6:7b:9b:b4:70:a3:12:4d:74:
62:ba:c6:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:10 2023 by rpki-client on console-fra.rpki-client.org