Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ZyTI2TJgmwnlhkM6HXAysg4_gwI.roa
File: ZyTI2TJgmwnlhkM6HXAysg4_gwI.roa (raw, json)
Hash identifier: ZXB9jLYUj2jovElna8vsKWLYuaY0iSO3uL8kOyN/z78=
Subject key identifier: 67:24:C8:D9:32:60:9B:09:E5:86:43:3A:1D:70:32:B2:0E:3F:83:02
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0183F9FDEF7DC7643B5B7C4BA34D8E31409D
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ZyTI2TJgmwnlhkM6HXAysg4_gwI.roa
Signing time: Fri 21 Oct 2022 10:01:52 +0000
ROA not before: Fri 21 Oct 2022 10:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 188.191.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:fd:ef:7d:c7:64:3b:5b:7c:4b:a3:4d:8e:31:40:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 21 10:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6724c8d932609b09e586433a1d7032b20e3f8302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fd:95:e4:37:a5:44:54:7d:11:71:44:f7:77:
00:53:ec:a6:13:dd:32:58:b0:09:b3:35:3e:cd:5b:
ce:c4:89:4f:c5:f7:78:5b:ff:70:25:fd:63:0f:82:
82:08:9c:f4:7a:a7:ea:f5:5a:18:f2:08:53:81:d6:
86:13:88:64:ab:da:6f:a5:4b:c1:49:5e:6a:3a:32:
ea:bd:7b:c9:b2:ab:12:1d:c2:2c:a1:cc:4b:01:2c:
7c:e3:5a:e3:71:80:d3:03:b8:3f:9e:bb:9c:85:7f:
36:3f:75:9a:fc:22:f9:9e:c2:f7:fe:89:68:ef:67:
d7:8d:b9:d0:51:12:08:85:93:a8:c0:97:24:eb:ad:
83:14:3e:98:d3:13:f9:69:74:ce:66:53:6e:af:dc:
b6:24:b0:31:fb:d7:a5:5d:0c:d6:8d:b6:e1:9d:3b:
74:10:1a:6e:71:b3:8f:fc:2c:85:f1:92:82:e4:52:
79:e1:f7:6e:a3:06:a7:04:60:52:91:d4:8b:e2:23:
e2:39:1e:14:31:f8:c1:e4:18:2d:b0:7b:52:e1:e0:
e6:49:6d:35:8a:67:10:06:f7:57:eb:50:72:ce:71:
96:6d:b1:99:3a:bf:3d:0c:85:f0:bf:3c:60:af:b1:
2b:8d:97:8d:d7:1f:90:56:62:0d:71:d7:04:ef:4e:
e4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:24:C8:D9:32:60:9B:09:E5:86:43:3A:1D:70:32:B2:0E:3F:83:02
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ZyTI2TJgmwnlhkM6HXAysg4_gwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.100.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:82:7b:21:19:67:6b:0e:67:9e:71:b0:4f:70:c7:35:82:4f:
b5:a7:e6:ac:12:47:48:0c:08:24:7a:df:0b:5e:68:95:09:ce:
5f:35:88:9f:ad:b1:67:37:19:77:f3:8d:10:63:8d:ca:0f:56:
58:d3:35:48:be:68:20:7b:28:be:32:c2:2c:29:cb:eb:8d:72:
c9:4d:56:05:1c:38:54:7a:ca:da:be:1f:99:af:40:ca:ea:a5:
77:f2:1d:ca:8c:c6:fd:bb:63:7f:85:a4:4f:48:b3:b1:b8:49:
b3:66:eb:4d:56:b7:ae:fb:24:9d:c1:7c:86:17:86:ce:86:e2:
c4:a4:2d:52:14:22:73:12:54:60:70:e2:ab:35:8c:b9:e0:f8:
fb:60:49:61:85:97:ac:7a:1c:84:dd:7e:ba:57:84:08:b6:79:
50:0f:59:74:55:9d:59:9d:e6:aa:1a:a0:a6:10:cb:47:6f:eb:
5b:c2:b7:ba:e9:a1:3b:6b:33:a3:cf:2f:3c:44:a8:b0:b9:e8:
eb:87:f7:70:18:0b:a3:3e:a8:fb:7d:b7:dc:24:e5:23:b5:47:
9c:24:38:51:d4:f0:82:1d:77:86:1e:86:4c:c0:67:1a:26:6f:
aa:dc:a5:78:19:4e:7b:c9:4a:c1:70:f1:30:a0:5b:44:04:f3:
50:16:60:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org