Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/Z27lfBkQmtsnFIkzqVn5EPjaTU8.roa
File: Z27lfBkQmtsnFIkzqVn5EPjaTU8.roa (raw, json)
Hash identifier: vhndHaw9mu8ucJm5Mr7SnHE5BflDSlgyHBDl01mLS4Y=
Subject key identifier: 67:6E:E5:7C:19:10:9A:DB:27:14:89:33:A9:59:F9:10:F8:DA:4D:4F
Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5
Certificate serial: 03754A3E
Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/Z27lfBkQmtsnFIkzqVn5EPjaTU8.roa
Signing time: Sat 01 Jan 2022 03:51:16 +0000
ROA not before: Sat 01 Jan 2022 03:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39526
IP address blocks: 193.111.29.0/24 maxlen: 32
2001:67c:2124::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58018366 (0x3754a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5
Validity
Not Before: Jan 1 03:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=676ee57c19109adb27148933a959f910f8da4d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ad:55:84:e7:f8:89:34:8c:47:15:2e:1b:a6:
57:33:32:6e:f2:e6:8b:57:77:48:83:c0:d0:fc:2b:
5c:cc:01:e8:19:66:c5:a7:a1:b4:3a:a6:6f:dc:14:
85:87:42:be:fa:f9:bd:85:72:78:9c:62:a0:33:c4:
73:3c:c9:bc:54:e9:90:8d:48:4e:69:ba:85:81:0a:
17:9d:1c:72:a6:d6:8c:39:81:60:61:8b:dd:ab:2f:
74:e3:29:2a:79:5a:77:1a:1d:3d:ee:ad:61:db:dc:
05:9d:92:39:1d:06:c6:ad:be:3d:ca:08:19:aa:a1:
63:7c:91:66:31:f2:ec:e0:93:a9:97:b0:5e:34:d1:
48:7e:67:99:d4:02:dd:6a:32:f2:8d:19:6c:69:de:
9a:b2:ce:f5:a8:e5:33:a0:b5:13:08:e0:7b:65:96:
09:f6:34:55:4f:8b:5c:e7:3f:c9:70:5b:a8:3d:68:
f5:e4:80:b2:69:8a:e3:4a:fd:f4:32:3e:29:7a:5a:
39:69:b3:13:cf:11:22:7f:d3:f3:e3:0f:67:06:d4:
ef:43:0f:8f:1b:ab:ba:73:c6:35:0e:4a:0b:86:eb:
d7:5b:d0:ea:3a:f4:2e:93:bb:f2:e5:01:69:8f:1c:
c8:5f:6f:0c:56:31:5f:8c:35:bd:ec:69:3d:22:a2:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6E:E5:7C:19:10:9A:DB:27:14:89:33:A9:59:F9:10:F8:DA:4D:4F
X509v3 Authority Key Identifier:
keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/Z27lfBkQmtsnFIkzqVn5EPjaTU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.29.0/24
IPv6:
2001:67c:2124::/48
Signature Algorithm: sha256WithRSAEncryption
28:e8:96:13:f6:dc:a9:e0:b8:12:a2:5a:db:ac:35:1d:50:69:
c0:1f:34:cb:c0:75:70:5d:3c:91:1b:3a:cb:c0:a0:ab:ea:35:
72:41:9c:e8:c0:14:59:ef:e6:21:3b:4f:f0:31:05:c6:ed:94:
cd:c4:d8:64:5c:e2:b7:2a:61:0e:1f:77:30:45:9e:3c:7e:57:
b5:6b:c9:93:28:67:78:27:bd:37:a4:11:53:27:d2:48:4d:3f:
bc:30:be:af:79:4a:0a:f1:a9:e7:ce:9b:42:a7:5a:57:95:54:
9d:2f:c9:af:94:46:44:b6:43:15:52:b6:dd:82:24:1d:71:a2:
28:3f:74:d7:aa:d0:c6:da:28:3d:27:3b:5d:7b:50:3b:0c:06:
d9:ce:17:07:60:27:88:6b:7a:72:45:0c:ef:46:2b:16:dd:2c:
9d:2f:fb:41:cd:8b:60:5e:c5:5e:ce:ef:cd:74:cd:b3:d9:0e:
a0:e8:cd:dc:d3:65:cf:cf:eb:eb:10:38:1a:a8:8b:e4:24:cf:
51:c6:eb:fa:77:1e:1e:17:a1:74:5c:1d:72:e4:2f:04:ed:03:
83:fd:5b:c5:e5:c0:46:83:bc:50:c0:71:d8:f8:34:83:e3:48:
8c:8c:5f:78:5a:01:9e:c2:65:13:a5:3f:d1:74:9c:14:f3:d1:
5c:cc:56:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:37 2024 by rpki-client on console-ams.rpki-client.org