Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Z_hpMR-80sm42FQ3WNnla6GY7VU.roa
File: Z_hpMR-80sm42FQ3WNnla6GY7VU.roa (raw, json)
Hash identifier: PrtbhpsMuZSlgl0WYwE8cc1bs82eboPCoXw8TZMLLGg=
Subject key identifier: 67:F8:69:31:1F:BC:D2:C9:B8:D8:54:37:58:D9:E5:6B:A1:98:ED:55
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 01833D2DD06E2611E61F3C9A49A2F733A103
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Z_hpMR-80sm42FQ3WNnla6GY7VU.roa
Signing time: Wed 14 Sep 2022 18:05:56 +0000
ROA not before: Wed 14 Sep 2022 18:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 194.34.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3d:2d:d0:6e:26:11:e6:1f:3c:9a:49:a2:f7:33:a1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Sep 14 18:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67f869311fbcd2c9b8d8543758d9e56ba198ed55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:bd:9a:31:5e:b1:56:e0:12:de:28:f3:dc:
5c:fb:be:47:b9:d0:60:eb:19:c0:b4:63:1f:6b:85:
01:7c:32:1b:b9:df:ce:f9:66:65:e4:ca:54:30:9d:
94:e7:f2:20:1a:6e:74:77:f9:89:67:c3:49:aa:90:
9b:e5:5f:3c:29:1c:c0:25:e8:3f:71:71:13:ad:9f:
4a:5e:d9:c1:8a:f9:5a:91:b2:81:5a:12:3a:0c:8f:
4d:06:2c:87:6d:9b:46:de:4c:2a:2f:ca:4f:3a:31:
7a:bf:0c:25:21:77:a5:42:5c:8f:e1:ef:c2:52:de:
91:f7:f9:5a:3c:ab:13:31:bf:4d:97:99:76:41:de:
b7:c7:28:1d:a5:22:ce:31:a5:03:6b:c5:a1:5a:38:
50:b9:de:56:54:1e:2f:08:48:fa:90:e9:d6:4f:61:
d3:46:d6:4b:be:85:8f:ea:3c:ee:09:e5:03:64:fd:
22:a2:92:af:53:8b:d0:1f:8f:2c:82:61:fb:53:67:
63:de:36:a5:49:b7:e5:af:83:3a:43:e7:cb:eb:97:
05:95:d7:92:ac:8c:99:db:98:bd:e0:1d:a7:83:32:
c7:43:11:26:5d:ee:17:1c:3d:e3:34:a3:1f:2c:0c:
17:cb:10:89:cd:8f:b5:13:ad:6d:3c:24:5a:fe:f4:
8c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F8:69:31:1F:BC:D2:C9:B8:D8:54:37:58:D9:E5:6B:A1:98:ED:55
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Z_hpMR-80sm42FQ3WNnla6GY7VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.105.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e2:bc:97:a7:53:24:b5:62:52:7a:c3:af:a4:a9:68:31:df:
3a:13:e4:7e:f7:d3:44:e6:ad:cf:45:ad:92:d1:5e:7e:48:09:
39:32:2c:f4:0e:e3:00:2d:31:8d:a4:28:1e:7d:3f:36:d1:3f:
c5:b2:41:8d:46:be:f6:de:11:56:72:5e:46:3d:54:82:8f:6e:
27:d9:10:38:a3:d5:02:af:78:6a:97:c1:f6:31:30:39:87:29:
97:6a:df:2a:fd:19:07:d0:fe:1a:9b:53:8a:75:c2:f1:51:54:
58:32:cf:12:02:6b:3c:28:14:44:37:82:0e:dd:da:52:12:94:
eb:5a:a7:d2:45:9d:56:38:07:3a:01:8b:58:00:73:89:fe:6e:
67:2c:b9:e6:0c:27:66:e3:4a:9e:ed:08:f6:00:d4:c5:70:58:
bd:a4:a4:6b:82:aa:d6:10:08:64:0a:59:90:04:2d:93:96:af:
29:cf:0b:b1:dd:8b:ec:7e:4a:25:39:eb:e0:67:73:5f:2e:e5:
dc:8a:70:f8:8a:c7:75:88:67:cd:3c:7d:14:3b:d5:50:09:c3:
76:28:25:de:e5:ba:f4:58:36:d7:5e:30:29:ca:f4:31:b6:ad:
0b:55:b4:8a:a2:57:05:5f:1c:24:55:eb:ee:dd:12:da:8a:8a:
81:f9:03:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org