Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/c65587-f3ec-43ce-ab76-f1d349823504/1/z967cZdgP8UjCa1RHCU03tclUxY.roa
File: z967cZdgP8UjCa1RHCU03tclUxY.roa (raw, json)
Hash identifier: xRvVqtUMtz06j3Rw00xoBYyCUKEid+hsLJEZTynjA4w=
Subject key identifier: CF:DE:BB:71:97:60:3F:C5:23:09:AD:51:1C:25:34:DE:D7:25:53:16
Certificate issuer: /CN=7934f7ee5d04a026223c3aa31912bf610d00db7b
Certificate serial: 0573BF58
Authority key identifier: 79:34:F7:EE:5D:04:A0:26:22:3C:3A:A3:19:12:BF:61:0D:00:DB:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTT37l0EoCYiPDqjGRK_YQ0A23s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/c65587-f3ec-43ce-ab76-f1d349823504/1/z967cZdgP8UjCa1RHCU03tclUxY.roa
Signing time: Sat 01 Jan 2022 14:02:39 +0000
ROA not before: Sat 01 Jan 2022 14:02:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48152
IP address blocks: 194.88.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91471704 (0x573bf58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7934f7ee5d04a026223c3aa31912bf610d00db7b
Validity
Not Before: Jan 1 14:02:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfdebb7197603fc52309ad511c2534ded7255316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:3d:91:ce:71:0b:38:6c:1a:35:cd:41:9b:
5f:93:43:49:cc:d9:8b:42:ee:03:1d:01:84:bf:ca:
a6:f6:1e:cc:5e:ba:6e:a5:77:25:67:da:47:ab:c9:
f5:0b:ab:a8:91:93:14:8b:ca:5f:76:64:66:d5:8c:
09:d6:02:f6:e5:55:45:85:08:b6:e9:1c:94:72:d6:
65:9b:0f:28:bf:28:b3:b6:28:d4:81:ca:6a:36:30:
84:d2:74:6b:a8:c4:d1:33:8e:6c:92:39:f0:33:2c:
7a:9c:cc:0e:19:b3:49:c8:b6:66:a9:bb:f1:ce:e1:
85:9b:f7:e6:64:21:3a:20:19:c8:e7:a7:d7:38:4e:
02:fe:c0:f6:01:43:98:6b:7e:70:b7:20:b3:8c:80:
d0:91:28:00:dd:22:cc:bd:e7:46:2f:6e:86:93:bc:
ae:fc:fe:d5:08:9f:22:f9:4b:a6:c4:45:2f:b6:f1:
63:20:7a:62:10:4f:d0:7f:60:58:3d:41:0b:5e:08:
b9:e9:5c:7f:94:95:5f:ba:b0:80:cb:f7:f8:78:16:
b4:d5:1b:31:7b:7a:e8:ae:4b:94:a4:bc:78:e6:90:
9d:c5:26:c8:55:56:6e:24:8e:53:b8:32:75:b1:62:
a5:95:2c:b5:4b:78:1e:d4:2a:cb:ec:25:fb:b3:fc:
dc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DE:BB:71:97:60:3F:C5:23:09:AD:51:1C:25:34:DE:D7:25:53:16
X509v3 Authority Key Identifier:
keyid:79:34:F7:EE:5D:04:A0:26:22:3C:3A:A3:19:12:BF:61:0D:00:DB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTT37l0EoCYiPDqjGRK_YQ0A23s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c65587-f3ec-43ce-ab76-f1d349823504/1/z967cZdgP8UjCa1RHCU03tclUxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c65587-f3ec-43ce-ab76-f1d349823504/1/eTT37l0EoCYiPDqjGRK_YQ0A23s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.0.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5b:d0:05:3a:44:ec:3e:d8:6c:33:e8:4a:a7:75:b1:68:cc:
ed:85:b3:ee:df:c8:20:5e:07:b7:0f:24:50:ca:cc:1d:6d:f1:
85:b6:2c:4d:13:c0:73:79:b3:85:c0:f3:8d:e9:d0:0f:2b:98:
f7:33:01:2c:0e:3d:ab:3f:6a:00:68:69:49:cd:db:e2:b9:aa:
7e:8d:aa:19:1d:ec:b6:87:20:f5:db:94:cf:2f:ba:d5:26:46:
fb:c0:23:92:ea:21:11:ab:78:3f:65:4b:4f:6a:89:ca:18:e2:
d6:b8:09:61:83:49:65:ca:7d:ed:cc:bc:bb:3f:48:9b:9f:4e:
eb:36:4c:1a:6d:ed:d4:a6:24:2a:0b:24:b0:37:5a:d3:79:61:
d4:c5:66:7b:db:71:23:75:58:d7:66:72:76:f8:fd:3b:f4:66:
c5:f0:13:0c:66:8c:1c:72:b0:78:c1:28:b4:d4:0f:4e:8e:16:
01:e5:60:96:06:d3:8c:a5:a9:7a:a4:99:32:97:f9:bb:ca:c6:
00:dc:50:c9:0e:59:d1:2a:42:e5:1d:e7:4b:c6:46:ce:ee:7d:
8f:20:dc:07:16:25:39:99:ec:fe:c3:d6:b3:c1:95:2f:03:ed:
85:99:9b:c0:96:2a:89:d2:72:e3:2a:18:03:0c:63:b0:a3:75:
e0:cc:ec:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBXO/WDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OTM0ZjdlZTVkMDRhMDI2MjIzYzNhYTMxOTEyYmY2MTBkMDBkYjdiMB4XDTIyMDEw
MTE0MDIzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2ZkZWJiNzE5NzYw
M2ZjNTIzMDlhZDUxMWMyNTM0ZGVkNzI1NTMxNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkjPZHOcQs4bBo1zUGbX5NDSczZi0LuAx0BhL/KpvYezF66
bqV3JWfaR6vJ9QurqJGTFIvKX3ZkZtWMCdYC9uVVRYUItukclHLWZZsPKL8os7Yo
1IHKajYwhNJ0a6jE0TOObJI58DMsepzMDhmzSci2Zqm78c7hhZv35mQhOiAZyOen
1zhOAv7A9gFDmGt+cLcgs4yA0JEoAN0izL3nRi9uhpO8rvz+1QifIvlLpsRFL7bx
YyB6YhBP0H9gWD1BC14Iuelcf5SVX7qwgMv3+HgWtNUbMXt66K5LlKS8eOaQncUm
yFVWbiSOU7gydbFipZUstUt4HtQqy+wl+7P83DkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTP3rtxl2A/xSMJrVEcJTTe1yVTFjAfBgNVHSMEGDAWgBR5NPfuXQSgJiI8
OqMZEr9hDQDbezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VUVDM3bDBFb0NZaVBEcWpHUktfWVEwQTIzcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvYzY1NTg3LWYzZWMtNDNjZS1hYjc2LWYxZDM0OTgyMzUwNC8x
L3o5NjdjWmRnUDhVakNhMVJIQ1UwM3RjbFV4WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
YzY1NTg3LWYzZWMtNDNjZS1hYjc2LWYxZDM0OTgyMzUwNC8xL2VUVDM3bDBFb0NZ
aVBEcWpHUktfWVEwQTIzcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJYADANBgkqhkiG9w0BAQsFAAOC
AQEAQFvQBTpE7D7YbDPoSqd1sWjM7YWz7t/IIF4Htw8kUMrMHW3xhbYsTRPAc3mz
hcDzjenQDyuY9zMBLA49qz9qAGhpSc3b4rmqfo2qGR3stocg9duUzy+61SZG+8Aj
kuohEat4P2VLT2qJyhji1rgJYYNJZcp97cy8uz9Im59O6zZMGm3t1KYkKgsksDda
03lh1MVme9txI3VY12Zydvj9O/RmxfATDGaMHHKweMEotNQPTo4WAeVglgbTjKWp
eqSZMpf5u8rGANxQyQ5Z0SpC5R3nS8ZGzu59jyDcBxYlOZns/sPWs8GVLwPthZmb
wJYqidJy4yoYAwxjsKN14Mzsig==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:59 2024 by rpki-client on console-ams.rpki-client.org