Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/a733bc-68f8-499f-850f-8e924ffbe584/1/zxyDAtzJeImLhSPtNlbqXGal3eo.roa
File: zxyDAtzJeImLhSPtNlbqXGal3eo.roa (raw, json)
Hash identifier: jGtKLU6EEjLp3opfwSfPpq4hpGgi8A/HWEPgeWyUS1Y=
Subject key identifier: CF:1C:83:02:DC:C9:78:89:8B:85:23:ED:36:56:EA:5C:66:A5:DD:EA
Certificate issuer: /CN=c09fc8a067fa6d2476bdce24afffad17131d9e86
Certificate serial: 02909039
Authority key identifier: C0:9F:C8:A0:67:FA:6D:24:76:BD:CE:24:AF:FF:AD:17:13:1D:9E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJ_IoGf6bSR2vc4kr_-tFxMdnoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/a733bc-68f8-499f-850f-8e924ffbe584/1/zxyDAtzJeImLhSPtNlbqXGal3eo.roa
Signing time: Sat 01 Jan 2022 03:53:44 +0000
ROA not before: Sat 01 Jan 2022 03:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211607
IP address blocks: 195.230.103.0/24 maxlen: 24
2a10:b640:3000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43028537 (0x2909039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c09fc8a067fa6d2476bdce24afffad17131d9e86
Validity
Not Before: Jan 1 03:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf1c8302dcc978898b8523ed3656ea5c66a5ddea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:51:e1:77:1d:3c:9f:3b:ec:b8:41:6a:05:8e:
38:b3:88:91:2d:21:0f:3a:8a:d4:05:15:a7:7e:ff:
eb:29:42:b8:f0:32:03:75:88:89:76:14:1b:8c:e9:
b2:b9:f8:4f:f1:59:32:fe:87:23:c9:21:23:18:00:
fc:17:a4:33:21:3b:a4:08:9d:4f:8c:fe:24:e2:3f:
3b:b2:a2:0c:6a:e1:27:22:2b:71:7a:00:39:e3:8e:
d6:fb:ab:c7:08:cf:04:81:a0:d6:a5:ad:27:a5:68:
06:83:79:19:3e:ae:38:88:83:63:df:2e:37:c1:2c:
32:b6:7a:c4:9d:c3:42:16:7e:f9:0e:cc:4d:a2:e0:
ff:19:d4:15:bb:b8:15:b6:35:55:f9:28:27:e8:bb:
dd:53:96:01:9f:59:e8:11:51:53:fb:68:89:94:d6:
0d:d7:63:4c:2a:66:26:bc:12:f3:7d:1a:77:11:d9:
0e:65:d3:3a:fe:6e:1c:31:26:8f:69:81:df:a1:74:
90:da:43:c0:4e:35:7f:77:63:59:ac:38:19:78:6a:
9b:17:cb:c8:bc:03:21:b7:f4:30:59:e1:a3:41:38:
eb:2d:6c:f1:6e:41:53:83:57:17:00:dc:d1:21:39:
fc:8b:d7:3c:97:5b:57:95:c2:03:4d:2b:5c:15:03:
ed:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1C:83:02:DC:C9:78:89:8B:85:23:ED:36:56:EA:5C:66:A5:DD:EA
X509v3 Authority Key Identifier:
keyid:C0:9F:C8:A0:67:FA:6D:24:76:BD:CE:24:AF:FF:AD:17:13:1D:9E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJ_IoGf6bSR2vc4kr_-tFxMdnoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/a733bc-68f8-499f-850f-8e924ffbe584/1/zxyDAtzJeImLhSPtNlbqXGal3eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/a733bc-68f8-499f-850f-8e924ffbe584/1/wJ_IoGf6bSR2vc4kr_-tFxMdnoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.103.0/24
IPv6:
2a10:b640:3000::/36
Signature Algorithm: sha256WithRSAEncryption
8c:09:43:d8:05:a8:1c:94:f6:b5:07:f1:d7:4e:a1:87:25:bb:
cf:82:69:37:70:db:04:dd:81:70:26:40:da:2d:00:8b:5a:93:
46:e9:a8:63:28:ed:a6:9e:a7:94:46:43:68:3b:7b:a6:65:3d:
f1:c7:c0:05:46:43:71:90:99:5b:c0:95:bc:07:ea:39:04:53:
63:c8:f6:16:9b:1b:da:2d:6b:73:8d:5a:77:e3:fc:01:8a:1f:
5a:b8:1b:dd:8f:b4:09:45:5e:67:e7:b0:10:22:17:5e:6a:01:
bb:d3:d9:15:14:38:4c:c6:08:1b:88:bf:52:ba:c2:b5:a4:a2:
fb:ab:3b:75:3a:3d:f4:2d:65:64:70:d1:a2:e3:47:f2:a1:69:
ad:15:c4:a2:3c:63:fb:b7:f4:1f:4e:bf:cb:fe:72:e4:c3:bc:
c2:8a:6b:90:9d:5a:4a:8c:14:cd:a1:80:f9:88:b1:eb:49:62:
4c:4b:22:31:33:c2:04:e1:f9:66:ef:55:4e:6a:89:d7:eb:74:
92:81:1c:ba:59:57:f2:63:42:9c:84:3d:ca:11:fb:57:93:62:
71:12:f8:1e:7e:aa:a9:78:cf:2e:99:2b:87:dd:da:dd:90:62:
fe:10:f4:bc:49:ac:f9:d5:ad:2d:9e:a6:48:c6:d3:dd:a9:57:
d5:9d:bf:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:21 2024 by rpki-client on console-fra.rpki-client.org