Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/zamQfk72kF-zTJS_OuPUOMqNepM.roa
File: zamQfk72kF-zTJS_OuPUOMqNepM.roa (raw, json)
Hash identifier: fodBDdC/U5z9N0YBJsPmA+jP1sqeji0w38+f9y69gcQ=
Subject key identifier: CD:A9:90:7E:4E:F6:90:5F:B3:4C:94:BF:3A:E3:D4:38:CA:8D:7A:93
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB51A04
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/zamQfk72kF-zTJS_OuPUOMqNepM.roa
Signing time: Sat 01 Jan 2022 16:03:06 +0000
ROA not before: Sat 01 Jan 2022 16:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49027
IP address blocks: 195.33.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448076292 (0x1ab51a04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cda9907e4ef6905fb34c94bf3ae3d438ca8d7a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:82:cf:2e:0e:9c:ab:37:dd:2d:f1:b9:18:
51:9a:e8:01:9c:ff:ec:df:08:98:51:81:bd:c8:65:
20:29:9c:f6:5b:bd:ec:c7:b3:d3:b0:8f:fd:c0:cd:
ca:be:33:89:9f:a2:42:9e:cb:2a:63:8d:fc:eb:25:
21:1b:ad:47:67:73:6f:c7:bd:59:34:35:31:2f:c3:
7a:f5:d8:d4:25:c3:63:63:11:db:5c:4e:aa:c5:ef:
f7:d7:64:8a:bd:c9:e0:bb:5c:07:32:05:ce:9c:64:
dc:a2:12:d7:f7:78:6e:75:3a:b3:02:48:d1:d4:f3:
1e:47:7d:e6:86:0a:18:36:66:57:d8:8f:ab:e4:b6:
18:74:67:7f:d1:de:d0:99:19:a6:66:30:3f:92:b0:
d9:fc:70:c9:4f:c1:39:05:26:ec:d2:09:57:9c:12:
9d:f5:22:2c:80:31:6b:4f:40:41:44:32:b1:f4:e6:
1f:7d:a2:0a:d4:6d:c0:94:83:2c:5f:5f:70:38:07:
df:90:29:38:1c:35:78:be:6d:5e:67:69:78:c5:08:
6e:a1:a5:86:c7:82:88:51:fd:4f:13:93:0d:bc:3d:
8b:75:f2:b6:50:8c:43:31:94:59:b7:eb:be:2b:0c:
0f:b7:df:88:4a:57:9b:a6:d6:ca:16:c3:9e:a5:fe:
50:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A9:90:7E:4E:F6:90:5F:B3:4C:94:BF:3A:E3:D4:38:CA:8D:7A:93
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/zamQfk72kF-zTJS_OuPUOMqNepM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.33.202.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:09:98:d2:d7:0e:a4:86:dd:89:72:55:5d:81:df:e3:a7:f6:
ba:60:8e:db:c6:a0:c7:e7:06:60:af:d4:18:cf:18:eb:77:60:
89:b9:9b:09:41:dd:80:f3:dc:5f:91:74:a0:c6:b5:cd:e0:8f:
33:b9:fb:4d:0e:15:a7:9a:4f:ed:0b:6e:94:f3:f1:4e:a5:c0:
b1:bd:0d:12:f7:3b:a5:cd:5f:b0:9e:4f:78:12:bc:5a:15:ef:
85:1d:04:f1:63:be:50:81:41:e2:2f:26:6a:cb:54:04:57:6c:
5b:1e:59:e4:c3:68:d4:3a:66:dc:f6:7a:9a:9e:b3:83:5b:41:
d2:c7:a8:fa:4f:5b:d8:31:3d:df:bb:b5:96:2f:0a:aa:b9:26:
bc:ee:22:e7:46:09:6d:d8:98:75:bf:17:a1:ba:25:85:24:88:
4f:ac:9d:78:63:92:ef:f7:df:68:2c:f8:44:2c:28:b0:35:f7:
49:90:22:15:30:aa:0c:ca:93:40:cb:4b:93:e1:45:8d:8f:b9:
2f:f5:c5:85:7a:61:8e:e6:74:16:20:01:85:dc:d1:23:df:91:
ad:3e:0d:5d:d3:e2:e4:e6:fe:e3:47:67:cf:3d:0c:5b:0a:83:
e0:75:88:98:26:0f:ee:0d:39:79:1d:cf:ba:c5:eb:db:2a:c3:
12:7e:a4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org