Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/zIPt-reD6gS9HesxDFk_ewFhyOQ.roa
File: zIPt-reD6gS9HesxDFk_ewFhyOQ.roa (raw, json)
Hash identifier: RUvt+LO1PfZPSinX+F7DUpQlVX1AGNllLQCUoEidsLg=
Subject key identifier: CC:83:ED:FA:B7:83:EA:04:BD:1D:EB:31:0C:59:3F:7B:01:61:C8:E4
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 2B5B
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/zIPt-reD6gS9HesxDFk_ewFhyOQ.roa
Signing time: Tue 26 Apr 2022 15:24:02 +0000
ROA not before: Tue 26 Apr 2022 15:24:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.134.32.0/22 maxlen: 24
193.8.128.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11099 (0x2b5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Apr 26 15:24:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc83edfab783ea04bd1deb310c593f7b0161c8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c2:42:d6:ac:e3:eb:e2:b2:d9:5b:de:56:20:
46:8b:9d:f2:14:0e:bb:32:9b:ba:23:ea:00:08:c9:
bf:a5:02:5e:1f:13:29:c3:62:50:e1:17:2c:d8:19:
64:ff:61:7a:3c:02:b8:59:2d:57:0e:94:0e:63:34:
a1:cf:15:43:69:71:e9:ab:71:1d:43:23:37:fa:8b:
db:7f:dc:eb:3a:a2:8c:c4:1e:45:b4:2d:ef:4e:08:
ef:bf:76:b7:92:24:01:6f:96:07:53:75:be:63:b4:
02:1b:1d:0c:92:8c:0b:c5:d5:2a:92:5a:be:73:5e:
44:b0:56:81:b5:13:4a:3d:77:c9:64:69:bd:bc:5b:
eb:f3:fb:3a:bb:16:3d:20:1f:74:87:a6:68:13:b1:
ce:4f:e3:13:20:4f:30:85:90:ce:37:8a:8e:5a:73:
b5:b3:67:03:d0:a9:fe:5b:02:7e:1a:d9:84:7c:5d:
f7:2c:da:ed:b9:83:61:ce:e8:26:ff:1e:91:30:e2:
e8:69:c0:e0:5c:e1:38:b8:0a:79:2c:55:c8:87:15:
9f:f0:93:df:35:1c:86:94:cb:ec:b0:d0:dd:fe:96:
91:5c:70:c3:95:22:5a:b2:2c:77:ed:e7:a7:c6:da:
0f:63:89:14:19:39:c5:2d:a0:98:47:63:42:04:99:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:83:ED:FA:B7:83:EA:04:BD:1D:EB:31:0C:59:3F:7B:01:61:C8:E4
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/zIPt-reD6gS9HesxDFk_ewFhyOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.128.0/23
193.134.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:07:99:6c:cc:11:71:ce:09:07:65:a5:04:9e:81:a8:7f:48:
49:ef:29:07:a5:5e:04:28:2d:96:dc:5c:fe:57:94:a5:e9:91:
2d:79:49:0e:67:5e:63:4d:24:39:6b:b4:3f:bc:14:92:ef:6f:
00:63:a4:9d:6c:7f:10:0a:a0:65:5f:2f:6f:95:04:47:0f:5f:
eb:8d:5f:57:d1:a3:c2:1a:bf:1c:9a:c2:f3:5b:7a:4d:a6:7f:
47:b1:0a:a1:81:26:21:e2:f3:16:cb:1a:d6:f0:83:b5:64:92:
f2:2e:90:74:1d:d2:c7:be:42:3e:c8:c3:52:e4:96:cb:45:33:
fb:10:dd:20:2c:bf:82:1d:8c:7f:f4:48:cc:c6:ff:d5:e3:0f:
b0:ad:76:e9:80:b6:5f:32:55:51:85:84:b3:c0:e1:5f:58:8b:
dc:68:d5:70:44:3e:83:a2:b5:67:87:2c:5d:ac:7c:f5:3e:18:
22:84:f4:e9:6f:2d:a2:9f:c7:f9:a2:95:d6:03:3d:aa:a4:72:
63:cb:18:35:38:8b:24:14:e6:7e:7b:41:d1:78:65:a9:c2:45:
75:28:e6:29:b3:9c:19:cf:9e:0b:03:bc:92:cc:0c:fb:a5:bf:
e0:fb:e7:bf:05:1c:9a:2f:7f:c8:74:d9:ee:b5:fc:58:54:37:
63:b5:54:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:36 2024 by rpki-client on console-ams.rpki-client.org