Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ZwSH3u5mZJBxhSEHg5htNUQw9yg.roa
File: ZwSH3u5mZJBxhSEHg5htNUQw9yg.roa (raw, json)
Hash identifier: LvJQtfFoxW5WN2UTAjch13WDNUiZBIpcmk2wxX6v55s=
Subject key identifier: 67:04:87:DE:EE:66:64:90:71:85:21:07:83:98:6D:35:44:30:F7:28
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01848507FE094C72042AEAFEAABA332ECD30
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ZwSH3u5mZJBxhSEHg5htNUQw9yg.roa
Signing time: Thu 17 Nov 2022 10:00:04 +0000
ROA not before: Thu 17 Nov 2022 10:00:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47817
IP address blocks: 213.195.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:07:fe:09:4c:72:04:2a:ea:fe:aa:ba:33:2e:cd:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 17 10:00:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=670487deee6664907185210783986d354430f728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:90:d9:b9:fd:2a:e3:30:73:39:65:d1:b4:b8:
92:d3:6a:5c:01:8f:7e:bb:7e:bf:11:46:2d:96:7a:
85:47:57:63:a9:a5:87:cd:89:f5:c2:f7:e4:25:eb:
5e:83:b2:b0:f6:f7:45:ae:f3:b0:28:b2:1f:c5:94:
bd:15:f2:63:bb:77:e5:07:d2:4b:f4:ff:d6:85:50:
be:82:55:cf:47:2e:b7:05:35:ff:3a:9d:64:df:a3:
02:ef:14:f7:33:34:ee:42:5b:99:b9:ad:98:5f:1b:
7c:5f:c8:5a:4a:a5:97:c3:94:c9:18:5e:af:80:12:
d2:15:6f:df:6c:a9:b9:b6:28:8c:d9:b1:5c:22:e1:
be:81:cb:25:65:38:31:ac:66:26:e4:f9:68:a0:2e:
12:7a:50:ce:8e:72:37:d6:9c:bf:eb:75:0a:db:dd:
d1:bd:d7:00:48:be:43:1d:a3:da:61:08:46:21:7e:
d8:1a:fb:84:6c:82:2e:c0:61:1f:d3:39:00:9d:56:
18:6e:15:fe:e9:64:e3:96:0a:0c:e8:6d:2b:06:47:
a7:05:01:d0:4b:57:c8:9d:60:3b:fc:78:79:57:0a:
8f:a7:19:d5:c5:91:9a:77:5d:f4:09:75:40:82:df:
cc:ae:5b:33:8c:a8:f7:03:c7:9d:9a:5e:a4:29:cb:
20:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:04:87:DE:EE:66:64:90:71:85:21:07:83:98:6D:35:44:30:F7:28
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/ZwSH3u5mZJBxhSEHg5htNUQw9yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.195.21.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:51:a0:ea:1a:33:a3:65:7f:14:4b:da:80:4b:a4:86:5f:b8:
6f:79:84:b4:f2:dd:9b:84:9c:a0:ad:dd:cf:dc:7b:07:55:6b:
f3:d2:e8:01:41:f1:78:17:c6:65:5e:36:38:8e:16:fe:0e:82:
c0:11:e2:53:e0:12:7b:7f:e8:b4:59:ea:83:e4:f2:3e:69:63:
e6:32:0f:22:27:5d:eb:02:08:85:f1:a0:00:75:14:7c:c6:4d:
24:3d:6e:f5:ef:7b:5e:99:59:40:d6:1c:36:b2:90:d3:40:83:
7a:4b:11:a4:38:fe:57:ca:1e:44:52:73:f5:f6:a0:05:45:5a:
b2:a0:6b:03:03:7e:47:c3:71:94:0c:78:52:58:30:ac:c7:2f:
d0:bc:02:d1:ec:5f:52:61:6d:40:54:48:c2:7f:6b:da:fa:f8:
dc:f8:c4:6e:ee:5e:55:4d:69:96:3c:a3:2d:fc:fe:8a:65:6e:
e4:7f:97:62:f1:9d:d8:9b:94:c7:47:73:a9:c6:45:55:df:cb:
b0:87:77:e7:13:dd:66:08:2f:97:53:1c:36:70:6e:89:a5:76:
4a:84:f4:cc:89:9f:11:fe:42:f4:c3:9b:ae:04:e8:37:c7:e0:
ba:a4:26:4c:4a:00:7f:7d:2c:86:00:54:bc:53:04:a5:a9:78:
16:27:a5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org