Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/CZAXPGBniud4tOMrgO2YG9868ow.roa
File: CZAXPGBniud4tOMrgO2YG9868ow.roa (raw, json)
Hash identifier: bPTwTQcYKlI+ZjPl30irDYulUtPKpIvUwOYYuCEev8g=
Subject key identifier: 09:90:17:3C:60:67:8A:E7:78:B4:E3:2B:80:ED:98:1B:DF:3A:F2:8C
Certificate issuer: /CN=dbb653bbd1704c47bada62ab6ce3502307f244b6
Certificate serial: 17D4BC1C
Authority key identifier: DB:B6:53:BB:D1:70:4C:47:BA:DA:62:AB:6C:E3:50:23:07:F2:44:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27ZTu9FwTEe62mKrbONQIwfyRLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/CZAXPGBniud4tOMrgO2YG9868ow.roa
Signing time: Tue 22 Feb 2022 12:20:10 +0000
ROA not before: Tue 22 Feb 2022 12:20:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 193.186.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399817756 (0x17d4bc1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb653bbd1704c47bada62ab6ce3502307f244b6
Validity
Not Before: Feb 22 12:20:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0990173c60678ae778b4e32b80ed981bdf3af28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:82:0d:d8:47:ac:bf:0a:9c:13:ae:fc:92:69:
e3:e3:96:fb:25:34:9d:5b:c2:2b:06:da:52:94:88:
08:2d:02:52:e7:d8:38:d5:3f:7a:2a:5a:9d:57:3f:
fb:b7:68:7e:28:97:e0:14:ec:7c:e4:b6:d6:a5:f2:
18:5a:64:54:be:aa:a0:12:f8:a9:98:2d:d5:64:44:
b4:99:ed:99:8e:7e:4f:28:5a:6c:36:53:0b:f8:c5:
45:b1:5c:cc:73:fa:16:a4:41:17:b9:fd:70:57:68:
c8:3a:43:13:74:b4:f5:e0:af:72:83:74:31:e0:f6:
b4:14:d7:7d:87:67:e4:9f:1b:37:5f:4d:62:5a:49:
97:5f:c8:e9:b5:48:8d:e4:c7:e6:20:19:06:76:70:
d4:e0:9f:6a:c2:74:26:16:0f:71:c3:c3:2a:1d:36:
f8:1c:f8:fa:51:43:3d:bf:dc:95:7e:43:6f:b7:6e:
20:0b:3a:39:3d:72:d3:84:55:16:27:dc:9b:f0:1b:
55:c8:ee:2e:3b:45:4e:79:04:b6:0c:cc:f6:36:8d:
57:bb:6b:03:c0:c3:1e:06:1e:1f:80:34:fd:f4:f1:
f3:7d:60:25:02:84:57:04:15:82:d4:cc:25:2f:12:
b6:2c:92:18:ca:91:f1:4d:9d:75:a6:57:6c:46:99:
fd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:90:17:3C:60:67:8A:E7:78:B4:E3:2B:80:ED:98:1B:DF:3A:F2:8C
X509v3 Authority Key Identifier:
keyid:DB:B6:53:BB:D1:70:4C:47:BA:DA:62:AB:6C:E3:50:23:07:F2:44:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27ZTu9FwTEe62mKrbONQIwfyRLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/CZAXPGBniud4tOMrgO2YG9868ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8060df-a6f7-4166-a929-a980bed33ab0/1/27ZTu9FwTEe62mKrbONQIwfyRLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.86.0/23
Signature Algorithm: sha256WithRSAEncryption
27:5e:94:10:1a:30:f3:d9:89:0c:1f:03:52:52:5c:13:98:f2:
0b:77:7e:e2:85:2b:bb:35:83:2f:54:73:46:7c:9f:8d:a9:87:
6d:0c:bc:87:02:bf:2e:cd:25:6c:af:b0:b2:47:64:0b:af:49:
06:23:54:9b:ed:81:06:b3:af:11:f1:80:4a:d2:52:96:52:a1:
01:8e:90:bd:a5:de:a1:bc:bc:f1:ec:46:6d:85:92:b8:39:95:
77:49:2d:86:f0:24:e1:52:f1:1a:6d:32:10:74:2a:94:d0:b1:
0e:31:b5:3a:2a:ca:80:81:17:5b:d9:8e:e7:bd:20:e1:fc:61:
78:86:f1:96:3d:eb:55:36:c0:0e:e5:20:09:8c:a2:55:b9:1e:
1a:f3:99:ee:02:84:d3:cb:2c:e5:e6:08:98:d9:ab:c6:8c:09:
6b:1a:a2:b4:99:fd:69:bd:ee:1a:06:d0:20:97:b9:28:80:4a:
ce:5f:64:14:d1:67:77:c8:37:e6:78:26:cf:44:49:a4:44:08:
e9:df:9c:5c:f8:d5:f2:5c:9f:24:c6:8f:3b:b0:04:a4:28:2a:
9d:91:60:84:f5:82:60:ef:fb:68:28:37:76:18:15:46:4f:36:
fb:e9:12:31:ce:a4:47:e5:33:73:94:b2:8c:c8:9b:b9:ba:0c:
9b:19:45:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:50:33 2025 by rpki-client