Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f37538-7f9f-4228-a31e-2dab43ac04b3/1/zaKAEvMdJGpSV2xy44-EaherYHg.roa
File: zaKAEvMdJGpSV2xy44-EaherYHg.roa (raw, json)
Hash identifier: TZIR+b1137coJN/JMGuiC13IOLAP7BvMd1EkScOzves=
Subject key identifier: CD:A2:80:12:F3:1D:24:6A:52:57:6C:72:E3:8F:84:6A:17:AB:60:78
Certificate issuer: /CN=709f8f32082152359cdaf9aabd4a551f4fb40213
Certificate serial: 0185711541AC933752F0EFE72D8CDB10D53E
Authority key identifier: 70:9F:8F:32:08:21:52:35:9C:DA:F9:AA:BD:4A:55:1F:4F:B4:02:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJ-PMgghUjWc2vmqvUpVH0-0AhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f37538-7f9f-4228-a31e-2dab43ac04b3/1/zaKAEvMdJGpSV2xy44-EaherYHg.roa
Signing time: Mon 02 Jan 2023 06:04:56 +0000
ROA not before: Mon 02 Jan 2023 06:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43815
IP address blocks: 193.30.244.0/24 maxlen: 24
2001:678:8b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:41:ac:93:37:52:f0:ef:e7:2d:8c:db:10:d5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=709f8f32082152359cdaf9aabd4a551f4fb40213
Validity
Not Before: Jan 2 06:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cda28012f31d246a52576c72e38f846a17ab6078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:25:e3:0e:87:d4:db:a5:56:62:9d:ad:cc:
4c:b2:70:bb:ef:e7:04:30:d5:a6:77:35:0a:bc:06:
83:e9:00:f3:f8:d6:6f:ee:28:f5:d5:15:bc:de:7a:
de:33:74:81:42:e4:ed:9d:c2:8c:5a:2f:5b:f9:44:
8f:e1:7d:ee:e5:f6:ec:b5:af:0a:6a:fe:23:30:60:
d6:bc:e2:28:6e:62:0f:4d:9a:bd:aa:f4:f5:fd:76:
fa:58:5f:4b:2c:13:85:39:27:8e:87:38:8c:83:cf:
e7:16:e2:76:bf:02:02:9a:30:d6:79:b4:dc:60:70:
05:7c:99:5e:f1:3b:39:16:89:00:ea:0d:c8:b5:d5:
0e:ca:98:11:1b:8d:e8:4e:98:e9:8d:e3:c6:42:19:
e8:d5:d4:f0:c9:10:95:44:23:d4:74:c3:2e:dc:40:
06:c2:56:7a:f6:6a:3d:cd:cf:df:9f:f8:11:d8:07:
1c:d9:6d:a6:3a:44:c7:22:80:b9:71:f6:80:20:1c:
7d:9b:c9:2b:6d:28:aa:e0:22:dd:16:6e:04:93:9e:
d1:2a:33:42:5a:5a:fb:04:70:58:5c:00:51:25:96:
c0:8b:f9:aa:52:01:ca:7f:8a:49:f1:ab:d0:22:6b:
eb:6f:8d:2e:36:82:74:61:c6:c6:e1:b5:7e:46:dc:
07:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A2:80:12:F3:1D:24:6A:52:57:6C:72:E3:8F:84:6A:17:AB:60:78
X509v3 Authority Key Identifier:
keyid:70:9F:8F:32:08:21:52:35:9C:DA:F9:AA:BD:4A:55:1F:4F:B4:02:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJ-PMgghUjWc2vmqvUpVH0-0AhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f37538-7f9f-4228-a31e-2dab43ac04b3/1/zaKAEvMdJGpSV2xy44-EaherYHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f37538-7f9f-4228-a31e-2dab43ac04b3/1/cJ-PMgghUjWc2vmqvUpVH0-0AhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.244.0/24
IPv6:
2001:678:8b0::/48
Signature Algorithm: sha256WithRSAEncryption
0c:36:f5:d7:08:5e:e8:0f:1b:53:92:94:1c:6d:5b:23:5b:0f:
52:a0:f4:19:7b:e0:4d:ac:2f:ef:25:6d:63:12:b6:09:2e:b9:
96:cb:65:51:5f:1e:28:a9:ca:24:45:92:6e:c8:50:44:d5:4d:
0e:60:d3:df:66:45:02:10:8c:30:38:a2:79:df:46:08:e5:40:
a2:3e:a4:c5:85:7e:8b:73:50:16:c5:9a:30:13:aa:a0:03:a6:
c2:0a:a3:a8:52:0a:5b:77:3e:eb:5e:5c:0e:9e:0e:7b:af:85:
69:db:68:38:cc:35:64:01:70:c0:14:6c:7d:fa:bc:33:fc:f2:
88:ca:57:01:12:12:4c:2c:30:05:2d:a9:63:86:be:ee:4f:77:
ae:94:6a:b0:2a:84:92:43:e3:c2:5b:f0:94:40:86:c9:e5:ba:
6a:ac:77:d9:0f:12:6d:42:36:0b:f5:f9:72:f3:2e:c6:82:32:
fb:ac:e4:fc:d2:50:e3:02:41:39:94:48:83:11:38:10:d6:e1:
6b:7d:1a:63:d5:32:33:d1:49:55:5e:26:f7:1f:30:d7:c6:84:
28:2f:a7:13:e3:82:16:60:37:97:a8:e2:d7:f9:c1:a6:08:52:
05:90:9e:6e:84:6e:50:bc:05:67:a5:0d:6a:74:9a:90:eb:38:
23:a2:a5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:54 2025 by rpki-client