Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/cef114-5868-47b8-9788-7b64089bb141/1/lZlM761QCMT17qpp_8tNOZJO3UA.roa
File: lZlM761QCMT17qpp_8tNOZJO3UA.roa (raw, json)
Hash identifier: R86qY57aDK4EIrzB+lEeON/UaIighh7xTOgJtpBkTxM=
Subject key identifier: 95:99:4C:EF:AD:50:08:C4:F5:EE:AA:69:FF:CB:4D:39:92:4E:DD:40
Certificate issuer: /CN=827173a380cdf93c7b28668fabae569aa6f7a35a
Certificate serial: 022FC98A
Authority key identifier: 82:71:73:A3:80:CD:F9:3C:7B:28:66:8F:AB:AE:56:9A:A6:F7:A3:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnFzo4DN-Tx7KGaPq65Wmqb3o1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/cef114-5868-47b8-9788-7b64089bb141/1/lZlM761QCMT17qpp_8tNOZJO3UA.roa
Signing time: Sat 01 Jan 2022 14:04:26 +0000
ROA not before: Sat 01 Jan 2022 14:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213100
IP address blocks: 193.17.35.0/24 maxlen: 24
2a10:cdc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36686218 (0x22fc98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827173a380cdf93c7b28668fabae569aa6f7a35a
Validity
Not Before: Jan 1 14:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95994cefad5008c4f5eeaa69ffcb4d39924edd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:4e:a6:db:82:3b:83:4e:25:bc:c1:49:53:
c9:4f:62:35:5c:89:34:ca:c1:ad:4f:b7:9a:d9:83:
ee:7b:77:a9:2a:09:8f:96:8b:a8:d2:50:a9:e4:91:
14:c7:0c:ef:09:a8:ce:19:72:e6:30:56:ec:93:15:
ea:42:a0:65:18:3e:79:f2:77:e3:69:cc:58:50:a4:
6f:06:cc:f9:9f:9e:9f:9b:32:00:a7:36:45:72:d5:
eb:0f:f7:b3:5c:e4:b6:51:44:c0:15:3d:98:95:e6:
c9:53:9a:e1:75:08:e9:85:cc:ec:02:46:92:93:3b:
93:6c:b8:a0:08:eb:cb:4a:9d:e3:38:a4:aa:ac:3c:
bc:27:7d:bd:cc:2b:1c:c6:f3:bc:fd:a4:c0:0d:66:
41:b2:46:6d:f2:38:1e:35:3e:c1:88:f1:cb:0c:09:
bc:cd:74:f7:db:fe:59:58:92:d0:1a:7c:77:6c:65:
23:d7:f9:fe:4b:93:f7:65:50:c3:44:71:da:11:82:
ce:e5:e6:b5:50:05:a7:59:a0:a7:9e:28:79:d1:65:
a7:ca:7a:d2:fc:62:9f:ea:9e:a5:84:de:31:c1:b6:
fb:1c:9e:05:19:ad:e3:9b:92:b6:b5:0a:1e:16:ec:
49:a8:34:9a:35:4f:5b:56:a7:e0:5e:85:e3:d4:af:
f5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:99:4C:EF:AD:50:08:C4:F5:EE:AA:69:FF:CB:4D:39:92:4E:DD:40
X509v3 Authority Key Identifier:
keyid:82:71:73:A3:80:CD:F9:3C:7B:28:66:8F:AB:AE:56:9A:A6:F7:A3:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnFzo4DN-Tx7KGaPq65Wmqb3o1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/cef114-5868-47b8-9788-7b64089bb141/1/lZlM761QCMT17qpp_8tNOZJO3UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/cef114-5868-47b8-9788-7b64089bb141/1/gnFzo4DN-Tx7KGaPq65Wmqb3o1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.35.0/24
IPv6:
2a10:cdc0::/29
Signature Algorithm: sha256WithRSAEncryption
31:07:73:b8:f2:da:7a:b2:32:bb:b4:69:28:d5:dd:91:70:af:
74:cb:c1:86:a9:17:ab:6a:58:a0:d6:88:62:76:45:ba:c1:23:
60:27:54:8f:05:c8:71:86:0b:6b:8e:45:f3:0e:d2:ff:f3:c9:
d9:fe:7f:ad:87:91:21:0a:b5:fa:84:04:5c:06:39:a8:d0:59:
8e:c3:d7:64:85:35:e5:71:f9:f8:49:42:76:a0:8b:b8:f1:37:
b9:03:6f:b0:59:d0:b0:20:d9:09:c6:a7:46:c3:f9:0b:82:cd:
36:a0:26:9e:6f:bf:8d:60:43:4b:54:1b:93:b7:dc:84:ff:6b:
3e:6f:15:bd:a7:53:ac:b4:cc:3e:a8:0b:e6:1e:bd:b2:64:4a:
e8:3b:01:c7:84:2e:6a:24:29:d0:c0:73:53:d0:81:97:f2:ef:
63:63:f1:b8:78:20:9d:2a:61:ce:31:fe:99:3b:0d:1d:ea:ce:
52:c0:96:f6:14:a6:26:f2:f7:57:f0:ca:67:44:f4:99:8c:13:
43:e6:09:60:12:a8:d8:cf:c7:dd:ed:e3:b9:ab:64:2a:43:0a:
5c:2a:6f:55:2d:25:e3:31:a9:54:99:09:97:e1:f0:6c:c0:5b:
0d:00:ac:00:b1:ae:82:cb:53:e0:3e:4d:cc:ec:3f:30:a8:7a:
03:83:17:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:21 2024 by rpki-client on console-ams.rpki-client.org