Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/zjnTsSOu1DUZwmnZZGAMe8QV7qo.roa
File: zjnTsSOu1DUZwmnZZGAMe8QV7qo.roa (raw, json)
Hash identifier: eoCPKPOCQSVr1s+cDfWiN8YXlN/rEl4rZRASFgqOW98=
Subject key identifier: CE:39:D3:B1:23:AE:D4:35:19:C2:69:D9:64:60:0C:7B:C4:15:EE:AA
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 0182C9F1172F6620D5103FE7341C9B2CE941
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/zjnTsSOu1DUZwmnZZGAMe8QV7qo.roa
Signing time: Tue 23 Aug 2022 09:03:16 +0000
ROA not before: Tue 23 Aug 2022 09:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 91.193.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c9:f1:17:2f:66:20:d5:10:3f:e7:34:1c:9b:2c:e9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Aug 23 09:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce39d3b123aed43519c269d964600c7bc415eeaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:00:75:f3:d9:55:71:3c:27:6a:68:16:22:b3:
d3:37:18:6b:34:e2:7e:a9:1e:31:7a:cc:1b:12:2d:
94:2d:b3:43:c3:84:c6:e8:5b:3e:3d:a4:5a:86:b4:
c5:33:b3:de:04:b9:e6:56:1f:5b:f8:27:0d:5e:b8:
44:e6:da:c7:c3:d8:ba:f7:f8:31:a1:00:0c:01:f9:
88:87:a1:29:d1:d2:48:1a:17:be:73:db:f4:7f:3a:
81:57:12:42:88:d1:2d:4a:1b:ad:ba:4c:40:2b:58:
63:9a:cb:de:f4:9f:43:04:fd:46:f0:3c:fa:25:5f:
d8:d3:9c:ef:aa:25:7a:b3:9c:f7:41:53:40:a1:cc:
54:f7:f2:ef:05:33:55:27:ec:11:9f:0d:84:5f:38:
65:27:93:f6:f8:63:bf:e9:43:8b:37:08:53:1e:e8:
ea:55:c3:6a:0f:de:d6:8c:65:cc:b4:e7:f5:61:fb:
72:9e:5a:87:2e:90:cf:7b:0e:f6:3b:f8:86:34:4b:
0a:d1:c0:0f:80:bd:de:0e:b2:f9:9b:1c:41:75:4b:
d7:b4:9e:bf:09:a4:a4:7c:ca:9c:86:07:17:39:c3:
4b:57:a4:a0:48:57:aa:6b:5f:27:c2:a3:10:6a:e4:
1f:48:c5:33:5d:91:a8:24:2d:f6:d0:1d:82:61:63:
2b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:39:D3:B1:23:AE:D4:35:19:C2:69:D9:64:60:0C:7B:C4:15:EE:AA
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/zjnTsSOu1DUZwmnZZGAMe8QV7qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.232.0/24
Signature Algorithm: sha256WithRSAEncryption
22:39:3d:fa:68:97:c4:b7:f0:52:5b:34:91:c0:ca:d9:cb:14:
62:10:77:e4:25:a9:61:6e:b6:8a:75:74:45:e7:21:6e:b4:24:
de:d9:0b:40:e0:93:34:f6:10:5b:21:be:fc:aa:5b:49:4d:3e:
30:d8:05:50:84:37:07:96:8c:4c:0f:70:50:45:d7:e7:6d:81:
f9:ed:4e:08:94:82:0c:46:20:6a:1c:a1:c5:05:c1:5d:ad:c9:
8b:4b:8e:8c:8d:0e:50:dd:24:4c:13:22:1c:5e:de:5a:46:74:
17:eb:35:49:89:b0:f8:ab:ad:b2:15:e4:20:73:6e:8d:61:2c:
ff:32:f9:fe:3e:fc:9d:92:ca:ef:74:82:0a:d1:84:1d:d1:3c:
90:d3:19:7e:64:13:ff:c4:b9:f7:9e:ab:1c:f8:4f:39:3d:d2:
f1:d4:9d:69:89:d3:7f:bb:5e:a4:6f:6b:6d:49:d9:1d:2a:51:
f8:c9:03:3f:08:11:a2:b7:42:da:cd:76:62:b8:b1:7b:70:6b:
9f:45:e6:ad:b7:62:22:ae:f0:d2:e4:14:39:d0:bf:78:11:53:
89:bd:6b:02:c8:85:dd:47:b3:bc:2f:05:ea:33:5e:0b:a3:82:
f9:0c:e0:e1:a1:05:44:8f:ab:b6:84:74:42:65:5f:1e:e5:34:
77:ed:bd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org