Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/0ZTCN1JPwP5JglNQj-3WyAySLOI.roa
File: 0ZTCN1JPwP5JglNQj-3WyAySLOI.roa (raw, json)
Hash identifier: sqsyHItEb2VH8ZlRk8CbncZNhvH792xfPZaYBWYk7tA=
Subject key identifier: D1:94:C2:37:52:4F:C0:FE:49:82:53:50:8F:ED:D6:C8:0C:92:2C:E2
Certificate issuer: /CN=64f873adb6a1f3e81b3343c74998947526c43dcf
Certificate serial: 03F4D73B
Authority key identifier: 64:F8:73:AD:B6:A1:F3:E8:1B:33:43:C7:49:98:94:75:26:C4:3D:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPhzrbah8-gbM0PHSZiUdSbEPc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/0ZTCN1JPwP5JglNQj-3WyAySLOI.roa
Signing time: Fri 11 Mar 2022 22:12:23 +0000
ROA not before: Fri 11 Mar 2022 22:12:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59657
IP address blocks: 195.190.135.0/24 maxlen: 24
194.37.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66377531 (0x3f4d73b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f873adb6a1f3e81b3343c74998947526c43dcf
Validity
Not Before: Mar 11 22:12:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d194c237524fc0fe498253508fedd6c80c922ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:7d:f9:4c:69:6d:b5:e7:68:0c:25:7a:61:
d9:32:d1:f9:0f:0b:e2:05:90:19:37:c0:6b:b7:4a:
55:d4:b2:3e:b9:02:9d:34:d2:b5:27:fb:dd:4c:5d:
f9:13:8b:38:79:45:86:7c:e8:be:4e:52:45:2c:8d:
c1:82:b1:8c:58:2a:6e:de:ad:c7:8f:95:d1:ee:e1:
b7:49:2b:1d:3d:bc:f0:b1:0c:03:e8:49:73:bf:fe:
61:58:7d:02:2f:92:68:62:57:d8:c2:66:79:40:af:
6a:82:af:bb:2d:01:ba:2f:76:68:21:82:c7:35:43:
e4:c5:18:f5:db:06:f9:08:96:95:71:73:c2:42:52:
af:02:41:71:2d:99:6b:15:13:58:4d:57:7d:7b:c2:
72:26:e1:a6:e7:93:d6:e6:15:21:5e:e4:a3:81:f0:
f3:9c:6e:9d:c5:2d:e7:f3:d3:ce:7d:d0:d2:a3:58:
05:62:35:67:81:4b:98:8e:02:87:b8:6b:c0:ef:ec:
0c:ac:74:8a:df:8f:a1:59:1f:e8:a4:7c:22:aa:ff:
f9:eb:c3:14:c8:75:7d:e9:d0:79:88:a5:f3:ce:12:
83:6f:4a:26:2f:3f:dc:dd:32:35:11:12:b6:38:86:
f2:15:cc:75:20:20:2e:db:29:ce:bf:33:2e:5c:af:
4b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:94:C2:37:52:4F:C0:FE:49:82:53:50:8F:ED:D6:C8:0C:92:2C:E2
X509v3 Authority Key Identifier:
keyid:64:F8:73:AD:B6:A1:F3:E8:1B:33:43:C7:49:98:94:75:26:C4:3D:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPhzrbah8-gbM0PHSZiUdSbEPc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/0ZTCN1JPwP5JglNQj-3WyAySLOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/b9e4c4-a3dc-46e8-aa3e-397f36c91982/1/ZPhzrbah8-gbM0PHSZiUdSbEPc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.255.0/24
195.190.135.0/24
Signature Algorithm: sha256WithRSAEncryption
ee:82:e7:bf:2a:36:95:54:0e:b2:e0:40:20:2e:1a:9b:99:1e:
30:1e:2b:7f:29:36:a2:25:d7:ae:0e:45:8d:4b:86:5e:64:6d:
44:84:14:c1:4d:ec:2d:a8:1c:63:c4:73:f4:4b:8b:45:aa:cd:
5b:90:b7:9a:6f:62:62:aa:34:6c:30:9d:ab:b5:76:47:f7:28:
94:d5:56:e4:e6:41:0e:53:c5:5c:21:80:96:c1:38:65:ce:2b:
fe:60:26:7d:89:6b:40:4e:cd:04:32:0e:dd:bf:aa:89:4f:d9:
fb:98:0e:6d:1f:7d:d0:84:0b:2d:39:db:22:50:cd:da:4d:7a:
db:8c:07:07:2c:bf:ae:fa:96:9f:9e:e2:74:07:36:c5:83:dd:
22:e7:86:cd:f8:ff:4a:98:ec:87:db:3e:82:ea:b3:ea:f5:a9:
3e:77:1e:5b:09:ff:a9:1e:3c:3a:9f:ea:c3:9d:cb:cd:69:7f:
61:01:94:57:77:f3:08:5a:bf:c6:67:d8:69:e8:ae:d8:64:41:
78:2c:e3:c9:ef:c6:c3:c1:86:24:1d:4f:33:cc:d3:3d:12:9c:
a7:c3:25:88:4e:a7:62:59:3d:68:92:ed:28:a9:99:d7:1a:a0:
c1:b3:65:62:0e:53:21:68:69:37:b8:3b:f3:48:fa:f2:3c:8c:
db:4b:46:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:10 2024 by rpki-client on console-fra.rpki-client.org