Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/Z3ieA2dffEaozRuU83R_Or2oMcM.roa
File: Z3ieA2dffEaozRuU83R_Or2oMcM.roa (raw, json)
Hash identifier: 3pjZIskYe9BuUeHq/OHmQ4O8EWNy/Izaokz30iYpQRE=
Subject key identifier: 67:78:9E:03:67:5F:7C:46:A8:CD:1B:94:F3:74:7F:3A:BD:A8:31:C3
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 37A2A041
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/Z3ieA2dffEaozRuU83R_Or2oMcM.roa
Signing time: Wed 23 Feb 2022 20:00:31 +0000
ROA not before: Wed 23 Feb 2022 20:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8748
IP address blocks: 194.47.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933404737 (0x37a2a041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Feb 23 20:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67789e03675f7c46a8cd1b94f3747f3abda831c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:7b:80:e6:c7:44:43:5a:1a:04:67:c4:87:
1b:b1:d3:d3:3a:e8:08:89:93:da:a1:ab:d6:4a:a1:
23:5f:d8:34:93:cf:fb:9d:2b:69:8a:70:d3:b5:af:
3b:a9:0b:15:d4:03:06:88:ab:59:d2:05:48:cd:29:
94:4b:12:27:5e:5a:75:1e:c3:f8:45:d6:73:2f:c9:
9d:47:41:e5:33:2c:ac:1d:05:52:50:2a:89:cc:b4:
a3:c1:d8:e6:0a:54:8c:98:c3:a5:45:69:f4:02:dc:
d3:5e:99:05:a8:1f:16:db:f5:98:13:f8:92:32:6b:
fd:ef:5c:90:9e:2a:62:f9:e8:49:68:ad:0c:73:b5:
1d:d5:2a:ca:95:23:19:6d:35:0a:e0:bb:67:84:84:
f4:ce:0e:7e:5d:95:f0:db:5d:61:0a:76:cc:8d:46:
48:0d:6b:78:d0:34:97:1d:71:84:c1:0a:65:f7:53:
7e:64:9b:f0:85:f2:62:c7:e2:da:46:9e:bf:fa:5a:
57:53:82:64:9d:80:64:8e:72:25:bb:f4:1e:07:3a:
1e:88:30:1a:df:59:0c:83:77:18:76:44:b0:ed:a8:
33:bb:ee:dc:1c:2d:c2:ea:99:dc:aa:8c:1c:9c:51:
f5:0c:e6:02:85:36:a9:3d:96:dc:75:57:60:ce:c3:
ec:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:78:9E:03:67:5F:7C:46:A8:CD:1B:94:F3:74:7F:3A:BD:A8:31:C3
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/Z3ieA2dffEaozRuU83R_Or2oMcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.47.128.0/19
Signature Algorithm: sha256WithRSAEncryption
14:bd:a1:5e:9f:ee:89:d6:18:b9:63:9e:f3:df:7e:71:ca:42:
32:9f:e2:53:2c:75:a0:8a:91:a9:e5:cf:63:c0:f9:3e:c6:7e:
7a:9c:83:05:57:24:bd:e6:2e:8c:29:b7:46:f7:52:07:ac:9d:
af:1e:4e:0c:53:7a:87:7e:67:2c:97:94:08:48:f8:5b:99:ef:
a6:b3:8e:6a:7c:c1:29:0c:9a:dd:a5:23:57:92:8f:ba:30:3d:
eb:51:ef:fe:65:65:52:93:1b:ad:a2:f2:4b:31:92:12:f4:8c:
45:9c:ec:9d:55:cd:7c:a5:84:14:ea:e5:15:59:3f:78:7a:9f:
99:73:8a:89:f5:35:58:ad:ef:bb:76:29:81:87:1c:c3:0c:05:
c8:c7:4f:c1:b7:be:57:28:c9:79:43:88:8b:ac:a8:4a:d1:44:
71:b1:a5:28:f1:99:d4:4a:72:11:f0:3e:9d:94:08:eb:99:40:
46:0d:2b:c2:e5:40:fb:3e:ee:97:f0:d4:01:e8:85:a5:eb:f3:
c0:c8:3d:4b:2f:e6:23:b9:2b:37:5b:41:96:e0:e0:84:2d:d5:
8b:a5:89:0f:6d:6d:3e:95:4c:8e:04:93:13:b0:92:e7:a5:8d:
28:82:95:72:f5:c8:a3:85:2e:92:3b:a9:e5:73:06:63:be:69:
e4:cd:62:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:20 2024 by rpki-client on console-fra.rpki-client.org