Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/zewXPVcc-JsgzeLb7lO7c71lTkY.roa
File: zewXPVcc-JsgzeLb7lO7c71lTkY.roa (raw, json)
Hash identifier: t3CTCVZrMxHg+8HYUFFAvtM1dx6oIBMII/RjJPc4In0=
Subject key identifier: CD:EC:17:3D:57:1C:F8:9B:20:CD:E2:DB:EE:53:BB:73:BD:65:4E:46
Certificate issuer: /CN=17eb3e00450198c8ad45ebf83e130219b93643a5
Certificate serial: 01849E7415C17E2D3B3D255C8DD6A28FCD08
Authority key identifier: 17:EB:3E:00:45:01:98:C8:AD:45:EB:F8:3E:13:02:19:B9:36:43:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F-s-AEUBmMitRev4PhMCGbk2Q6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/zewXPVcc-JsgzeLb7lO7c71lTkY.roa
Signing time: Tue 22 Nov 2022 08:28:38 +0000
ROA not before: Tue 22 Nov 2022 08:28:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49256
IP address blocks: 91.214.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:74:15:c1:7e:2d:3b:3d:25:5c:8d:d6:a2:8f:cd:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17eb3e00450198c8ad45ebf83e130219b93643a5
Validity
Not Before: Nov 22 08:28:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdec173d571cf89b20cde2dbee53bb73bd654e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:32:12:d0:a9:d7:e5:d4:bd:f2:cf:8c:05:3f:
3c:8c:d7:89:9b:2b:61:1e:f6:16:5f:59:06:f5:df:
3b:8e:5d:4b:e8:13:98:94:79:95:f0:3c:9b:a7:46:
09:f7:91:00:b8:ff:68:9f:01:d7:57:ae:31:37:df:
21:2f:e5:d0:d5:93:65:f4:b8:68:0c:71:42:6d:8f:
73:8c:e8:28:8c:80:7a:ad:a3:ae:96:93:03:63:33:
15:73:52:57:1b:70:82:a0:ad:68:41:68:d0:3f:9b:
2d:4c:f5:6a:1a:db:27:7c:b8:b8:bd:82:67:8d:50:
e4:ef:0b:08:9a:f1:e8:87:9b:60:bb:50:a7:11:cf:
4a:ce:b6:53:8d:41:74:6f:66:82:e9:f8:82:99:02:
01:78:7a:12:08:84:54:af:9b:8d:6d:34:24:a0:82:
78:ca:2b:ea:90:34:33:fb:0c:13:07:6f:fb:9e:1b:
9b:4d:eb:1c:e9:af:11:ab:29:8d:11:07:96:07:a3:
0f:82:34:30:3b:c2:ea:51:2e:e9:86:10:59:ef:8b:
d8:c2:ad:69:23:64:4f:5a:3d:69:b8:e7:f8:f2:3c:
6f:ce:d7:10:f0:c9:31:9a:19:67:26:2f:c1:f2:df:
2f:bb:ae:b3:34:a5:6f:95:df:81:ad:a6:51:e6:80:
fc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EC:17:3D:57:1C:F8:9B:20:CD:E2:DB:EE:53:BB:73:BD:65:4E:46
X509v3 Authority Key Identifier:
keyid:17:EB:3E:00:45:01:98:C8:AD:45:EB:F8:3E:13:02:19:B9:36:43:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F-s-AEUBmMitRev4PhMCGbk2Q6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/zewXPVcc-JsgzeLb7lO7c71lTkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/F-s-AEUBmMitRev4PhMCGbk2Q6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.13.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:fc:f1:83:b7:fe:45:b8:78:ec:cb:c3:08:34:15:8d:6b:dd:
b8:58:e3:49:6b:4a:4b:b7:22:13:79:c3:19:67:58:b3:85:b0:
d3:ca:b8:4f:52:dd:c2:04:cc:38:ae:94:28:fc:30:74:48:6b:
4c:08:2e:f0:2f:c8:a9:1e:f7:6c:08:33:de:e9:3c:c3:b0:c3:
60:8f:00:46:ef:cc:ac:a4:49:df:c0:a5:bf:1e:cb:04:a7:d4:
53:d5:4c:f7:bd:af:25:2b:0b:02:2d:3e:e8:82:b8:00:93:95:
a0:c3:ef:a8:8f:51:49:a6:eb:96:a5:3b:27:1a:0b:1e:0d:22:
89:d5:29:82:50:3f:3e:97:64:9f:d5:59:0b:5d:ed:cf:8e:95:
0d:de:c3:3e:dc:ff:3d:68:79:af:d8:65:38:0d:09:95:50:d6:
24:f2:d4:cf:68:fd:fc:5b:81:de:9a:0c:73:d4:71:4c:c5:26:
a2:37:dc:10:28:91:b9:41:8a:7c:08:1c:b9:1d:d8:0b:24:f3:
68:48:2f:c3:48:0f:b9:b3:89:57:ca:5c:f0:99:b9:3b:aa:40:
ff:90:2f:b5:80:25:6c:62:63:4c:c4:ba:5e:87:23:b6:c5:7d:
d5:38:9a:b5:89:86:17:25:58:2c:8b:15:dd:24:b6:fe:d4:0f:
b8:c5:17:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:24 2024 by rpki-client on console-fra.rpki-client.org