Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ZM-XlTBIhKuf3EXrSOlfY4pBhdU.roa
File: ZM-XlTBIhKuf3EXrSOlfY4pBhdU.roa (raw, json)
Hash identifier: +sMoDDsQBSrV7ZnxH5afZMSwJr0dMiaXQPqoYXBKm0w=
Subject key identifier: 64:CF:97:95:30:48:84:AB:9F:DC:45:EB:48:E9:5F:63:8A:41:85:D5
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 3FC26DD6
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ZM-XlTBIhKuf3EXrSOlfY4pBhdU.roa
Signing time: Sat 01 Jan 2022 08:55:08 +0000
ROA not before: Sat 01 Jan 2022 08:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206687
IP address blocks: 195.150.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1069706710 (0x3fc26dd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 1 08:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64cf9795304884ab9fdc45eb48e95f638a4185d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:19:52:5f:18:f9:77:ce:94:69:0c:13:2b:
7e:25:35:9c:a5:e0:22:de:c5:11:25:2e:2d:99:86:
0e:54:3c:ca:13:90:9f:9b:0a:22:9c:b0:49:2f:8f:
d8:70:3a:db:94:7d:cf:94:dd:a0:7b:96:82:49:ee:
76:5b:27:32:96:8c:97:4e:a7:8e:c5:59:c3:b7:ae:
34:e1:02:ef:b6:97:4e:c1:f2:a5:fb:09:35:5c:a4:
b2:d7:95:92:f2:50:52:3d:5f:b7:74:8f:66:39:81:
2c:e5:66:c9:7c:ed:63:ea:b9:12:d4:61:d4:f8:f8:
b7:a7:02:d3:20:a1:dd:67:f8:0b:96:ee:b6:76:e9:
3f:e9:35:32:fd:20:07:34:a1:31:97:b7:7b:3b:23:
08:b7:d9:7a:46:05:f6:18:e1:99:93:33:37:48:49:
5d:9c:cc:e5:99:1e:80:9f:0d:82:cb:d5:6a:b6:b1:
10:84:a1:c6:f5:0e:f5:33:e9:1b:cc:12:ad:86:7b:
e5:e3:ba:ba:fe:5c:d5:27:32:07:73:0c:aa:2f:b8:
39:df:58:f0:43:29:41:be:aa:56:fc:37:a6:37:ec:
ef:90:9a:40:d6:b5:69:1e:19:07:6d:40:a1:4c:35:
68:b1:75:bf:82:e1:5b:3c:e6:27:9e:1a:56:c2:ff:
b0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CF:97:95:30:48:84:AB:9F:DC:45:EB:48:E9:5F:63:8A:41:85:D5
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ZM-XlTBIhKuf3EXrSOlfY4pBhdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.100.0/24
Signature Algorithm: sha256WithRSAEncryption
80:7b:2e:a8:52:b3:3a:62:ef:67:61:ef:92:19:9d:5e:cc:62:
c5:43:9c:8d:51:c0:fe:52:c5:9c:1f:e7:34:c1:37:87:24:ab:
f4:0a:eb:a5:60:3e:09:6e:41:8a:c2:cd:ba:93:5d:32:e7:cc:
f9:d4:6b:52:52:4c:e9:4f:b8:16:96:d5:0a:27:25:00:09:af:
82:90:02:18:19:3d:cb:7f:c2:11:11:0e:c7:f0:dc:de:e0:af:
5a:d1:de:14:36:85:72:53:1c:10:65:46:06:ae:1f:44:be:f5:
6d:ec:c1:26:0b:95:4d:d5:7d:24:0e:48:d8:4c:24:4b:20:d0:
1d:d6:e4:35:8c:f2:cb:14:9c:5f:93:66:39:f5:c4:f8:07:e8:
e3:40:c4:f9:6b:c8:71:50:ac:76:af:f7:b7:28:73:77:5c:34:
c1:e0:bf:3b:b8:cf:06:89:41:c3:ae:67:42:79:4d:d3:49:10:
13:ac:40:b8:3b:b6:02:e9:0c:44:11:18:c5:11:2f:5e:e3:2b:
d7:d3:73:63:40:b5:ab:b5:e4:97:62:55:08:69:80:04:fb:d7:
5d:39:bf:80:7b:16:a4:19:6a:30:d6:29:83:a3:1c:61:20:1c:
22:0e:31:10:38:6a:e6:f2:a3:56:cb:41:b5:fb:17:77:4e:35:
4f:2c:c3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-ams.rpki-client.org