Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZBHadw7ZAgcD-FievaXXqy0TYW8.roa
File: ZBHadw7ZAgcD-FievaXXqy0TYW8.roa (raw, json)
Hash identifier: r9QhZlD6RUDCnZwsolBR9hv1z/dpwIZ0aX3Iy3e/o9s=
Subject key identifier: 64:11:DA:77:0E:D9:02:07:03:F8:58:9E:BD:A5:D7:AB:2D:13:61:6F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184657A4B3F2C7836268C321FEF5875622F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZBHadw7ZAgcD-FievaXXqy0TYW8.roa
Signing time: Fri 11 Nov 2022 06:57:04 +0000
ROA not before: Fri 11 Nov 2022 06:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 84.32.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:65:7a:4b:3f:2c:78:36:26:8c:32:1f:ef:58:75:62:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 11 06:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6411da770ed9020703f8589ebda5d7ab2d13616f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:31:8c:e7:60:02:82:97:91:94:39:6a:88:
ba:ec:9b:0a:ce:45:46:8e:c0:fe:f5:d4:6f:4d:bc:
5a:62:9a:54:86:ad:e2:94:25:fb:38:da:c2:82:ce:
48:3a:22:7a:a8:54:84:a8:c5:ad:2c:44:d3:56:f1:
ae:dd:a2:dc:09:71:9b:4a:8c:08:81:59:68:cf:3c:
31:31:6d:e8:a7:59:e1:a0:f6:62:e2:41:44:fa:a8:
b9:46:67:31:90:36:f3:e2:25:34:72:40:e1:34:0c:
73:e4:22:b9:1f:af:1a:c3:94:e0:34:f2:ad:34:ba:
74:06:8d:40:66:62:b4:05:ab:6a:83:64:ec:15:a0:
46:b3:5c:91:e7:cf:d5:3f:dc:b3:ba:43:fc:e4:8a:
b9:f7:a3:a6:07:4e:26:80:ad:41:25:41:0b:c1:3e:
84:57:8b:9f:04:82:96:4a:04:94:83:87:8f:78:e4:
78:7e:9b:f2:0b:9a:6f:ac:bf:14:f3:5b:55:c3:c9:
ae:be:a9:af:28:21:8b:4d:e1:8c:49:3a:02:f0:25:
5f:6d:52:83:c2:96:07:f3:5d:5d:cd:c8:3b:29:c3:
42:c1:21:68:dc:ad:4e:3d:de:b5:c2:11:0f:2c:1b:
ee:a7:7c:2a:f4:ac:ff:fa:21:70:f9:9b:3f:30:a6:
5a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:11:DA:77:0E:D9:02:07:03:F8:58:9E:BD:A5:D7:AB:2D:13:61:6F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZBHadw7ZAgcD-FievaXXqy0TYW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.244.0/24
Signature Algorithm: sha256WithRSAEncryption
21:3d:b5:74:24:3f:c9:57:8a:f1:ff:7e:fb:c2:10:30:6a:9f:
59:99:3f:84:a4:a9:98:f2:ef:44:56:2c:99:2d:6c:9b:4e:d8:
d6:d7:9e:76:5c:59:ab:ec:3c:fe:91:cd:df:b6:04:4d:ec:16:
ad:08:b6:0a:29:45:25:94:44:bc:38:60:fe:26:50:c5:93:ac:
c9:01:f7:a4:f5:78:14:0c:33:74:1a:7b:a3:ff:2d:c5:28:7f:
54:70:19:60:15:d4:36:91:3f:cf:16:9c:86:76:43:dc:a7:7d:
a1:dd:29:f9:5e:f4:ba:5f:22:f4:b7:1c:56:ae:2d:14:1d:46:
03:3e:f4:92:85:14:37:43:aa:05:c9:3f:81:da:21:44:18:66:
ca:eb:7d:e6:52:d0:8f:18:6b:d5:04:d6:2d:ea:b4:9f:c1:3c:
bf:77:d4:8c:64:1b:4b:ac:20:37:95:b5:e8:3b:68:69:df:d7:
bd:06:b9:c7:0d:82:73:d3:3b:30:42:77:be:4d:96:fc:31:18:
4e:95:5c:49:6a:72:eb:e2:18:0c:a6:2c:8c:f2:a0:7a:83:71:
88:4f:3b:24:d4:1d:a2:f7:ea:2f:c8:65:ad:cd:84:54:3b:bd:
fd:7d:21:d4:e6:bc:16:ec:34:4c:a6:8f:28:63:3a:17:44:8f:
da:db:41:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:48 2023 by rpki-client on console-fra.rpki-client.org