Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/zcXxaKqpuzPfBXOu5npvOETCCDM.roa
File: zcXxaKqpuzPfBXOu5npvOETCCDM.roa (raw, json)
Hash identifier: AfvAtOEe4PGGJRBfph6X4fHsobRA9DxDf3DzBcng4Dg=
Subject key identifier: CD:C5:F1:68:AA:A9:BB:33:DF:05:73:AE:E6:7A:6F:38:44:C2:08:33
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC5AB89BFE42EEB0822D106998E63
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/zcXxaKqpuzPfBXOu5npvOETCCDM.roa
Signing time: Thu 11 Aug 2022 06:34:43 +0000
ROA not before: Thu 11 Aug 2022 06:34:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202320
IP address blocks: 147.234.21.0/24 maxlen: 24
147.234.21.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c5:ab:89:bf:e4:2e:eb:08:22:d1:06:99:8e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdc5f168aaa9bb33df0573aee67a6f3844c20833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:17:87:c2:ec:87:b8:59:5c:ee:eb:bc:48:dd:
91:cb:fd:20:17:0f:39:a5:f1:48:6d:db:6f:9b:0f:
f3:e5:6e:45:2b:57:e0:34:24:15:f4:0d:4b:6b:00:
50:b4:ef:16:5c:0b:e9:ed:61:36:ff:32:a4:59:57:
b7:3c:ef:71:12:3b:27:cc:6e:23:c5:78:7d:3e:5d:
ab:b9:f1:4a:88:33:f1:83:0a:7e:d8:13:77:a2:c1:
65:2f:75:2f:78:b7:30:78:6e:ad:ab:4a:03:0f:23:
23:29:c9:40:2d:3e:36:58:06:7b:32:55:ea:18:b6:
81:b5:ff:6f:94:21:a5:3d:26:43:de:55:0d:20:ab:
52:3d:cb:0f:5a:35:10:cc:ed:83:a7:71:d8:36:92:
c7:17:2f:e1:33:9e:a1:42:9e:16:81:e1:d8:05:5b:
58:4d:81:ec:05:17:8d:04:ce:81:0f:8e:d8:c9:13:
ed:f2:6f:40:bc:49:3f:1d:f8:ed:7c:7d:34:9d:49:
0a:2f:91:af:80:be:3f:e2:e4:82:87:40:0e:2c:af:
84:22:33:ab:b2:ef:6f:1c:53:1e:d4:f6:30:68:6e:
ef:48:9c:80:89:4d:e7:03:b1:e9:ea:64:f9:c4:62:
4d:c7:69:54:45:39:8e:6a:8b:e5:39:dd:cf:41:e7:
b8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C5:F1:68:AA:A9:BB:33:DF:05:73:AE:E6:7A:6F:38:44:C2:08:33
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/zcXxaKqpuzPfBXOu5npvOETCCDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.21.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:35:17:62:38:21:96:ff:6c:68:bc:a8:a8:fd:e8:09:2b:05:
27:d3:bb:17:39:b8:93:50:85:bf:e1:00:40:fa:24:2e:dd:0c:
79:aa:cd:21:74:74:19:cf:be:92:18:4e:41:8c:b3:f3:d9:5c:
83:5b:a6:b1:91:4b:4d:c7:80:64:56:30:fd:1d:b5:70:37:c6:
e8:fc:94:0a:53:46:d9:ad:c7:bb:8d:c2:89:a2:95:8b:81:7f:
52:6e:26:b5:2c:e6:7b:6c:0a:51:45:1e:e7:9e:90:bb:88:29:
17:fb:0c:28:d5:e3:6a:53:6e:5c:92:07:f9:92:d5:5a:3f:93:
c4:e7:8a:42:79:0d:a2:28:4a:ce:cc:80:ca:26:bc:26:0d:4e:
b7:fa:f7:32:1a:59:57:f1:e5:42:df:cf:2d:f6:da:a8:3d:08:
d5:e2:b2:4b:48:45:a7:3e:7c:44:98:fa:6e:7c:05:8e:4f:02:
9a:27:13:0d:c6:25:a2:8d:81:83:c2:cf:95:d7:ba:01:48:04:
ec:b2:86:8d:d8:6f:35:73:36:ed:30:17:f7:d1:13:27:56:85:
4c:e2:35:ba:68:89:8b:9b:16:cc:24:ce:d1:34:f4:10:2d:3a:
c4:1d:84:c1:b9:f2:12:80:9b:a3:ef:45:6c:3e:74:5e:8c:c9:
8e:19:5c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:17 2024 by rpki-client on console-fra.rpki-client.org