Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/zLCbEIN1pASKfCndXwVqs0K_DM4.roa
File: zLCbEIN1pASKfCndXwVqs0K_DM4.roa (raw, json)
Hash identifier: Ua+764nukW6xDitGUAf6XTSFY249saxdIN2Q8/zG3BU=
Subject key identifier: CC:B0:9B:10:83:75:A4:04:8A:7C:29:DD:5F:05:6A:B3:42:BF:0C:CE
Certificate issuer: /CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Certificate serial: 0183F19A1B256046F3C0D8693A35546932D2
Authority key identifier: 13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/zLCbEIN1pASKfCndXwVqs0K_DM4.roa
Signing time: Wed 19 Oct 2022 18:55:51 +0000
ROA not before: Wed 19 Oct 2022 18:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.109.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f1:9a:1b:25:60:46:f3:c0:d8:69:3a:35:54:69:32:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Validity
Not Before: Oct 19 18:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb09b108375a4048a7c29dd5f056ab342bf0cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8a:0d:b5:da:b4:1d:4d:69:51:4e:16:47:d9:
67:33:7c:dc:d7:15:71:be:d9:91:f3:f1:a0:f5:21:
a8:39:ac:0f:d6:8b:b1:b3:37:ed:9c:a1:17:48:c7:
bc:c9:f9:b2:e6:0e:06:5d:2b:f5:11:89:3d:80:82:
14:1a:fe:ab:be:8b:dd:70:8c:57:87:36:82:ba:8b:
47:40:6b:07:02:13:b3:3a:46:d0:96:e1:b4:b8:ad:
b7:20:c8:29:c2:74:64:30:39:b2:05:3b:c4:9d:d1:
b6:00:8a:9e:f2:7a:21:54:d1:7f:1e:a3:54:66:06:
05:69:fd:81:c3:9d:0c:f9:34:50:d6:5d:08:c3:4f:
b4:91:4c:89:34:e2:01:2b:b1:bd:01:89:a7:28:4e:
a0:bb:f6:af:15:3b:b8:60:ff:40:99:ae:fe:41:d2:
f6:46:bb:e3:19:f3:9c:ad:bb:f8:93:bc:75:4c:a7:
42:1a:56:97:ef:e1:28:73:af:dd:34:3f:3b:2a:6d:
be:c6:ea:08:4a:1b:3b:13:f3:0c:4d:0d:6a:44:aa:
1b:14:12:87:e7:61:15:09:16:1d:bd:b4:58:9b:1f:
d8:f1:3b:8e:16:c1:66:cd:87:c2:df:1d:03:15:1f:
56:e5:22:61:a3:d3:2c:99:b8:50:c2:11:ef:52:c7:
24:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B0:9B:10:83:75:A4:04:8A:7C:29:DD:5F:05:6A:B3:42:BF:0C:CE
X509v3 Authority Key Identifier:
keyid:13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/zLCbEIN1pASKfCndXwVqs0K_DM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/E2a5YKbx8EQ58JGG-ez1ManOJkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:9b:fe:1a:91:e6:02:9c:fe:e4:b1:08:a4:59:3c:ed:ae:03:
99:7e:de:88:3e:cc:ae:52:77:fd:cb:3c:84:c5:db:91:73:5b:
e0:05:89:c6:53:f7:b0:44:c2:65:22:79:90:26:87:7d:e7:99:
a9:90:d5:05:2e:1c:b1:80:9c:51:0e:19:d8:d8:e3:f0:a0:67:
fb:6a:13:1e:8a:60:ef:ee:57:72:8c:86:a2:aa:ac:0a:5c:95:
f0:5f:ae:5e:81:a0:ab:57:5a:73:3e:28:9b:bf:7d:c5:12:d3:
e9:53:12:80:1a:a3:c0:ed:aa:89:c7:fb:b6:ee:16:9d:68:f2:
d5:6c:e4:9e:a8:99:c7:a4:13:67:bc:41:07:15:86:ae:04:8b:
84:0c:65:23:a5:f7:f9:d8:ae:7b:b6:95:3e:8e:22:a3:ed:8c:
61:6d:92:12:c4:a3:c9:be:9c:23:0c:44:7c:1f:82:b4:3f:51:
2b:4b:bc:4d:46:ff:e9:df:04:13:4d:8f:67:14:ca:4c:2b:3b:
61:f8:39:24:3c:90:d2:63:74:d9:07:7c:fc:2c:2b:d2:06:49:
b3:6b:10:74:d1:94:f4:7f:45:f6:e1:47:35:2a:58:0f:ea:af:
19:27:a6:a4:84:23:9d:f9:75:85:3a:46:7c:d5:65:e4:46:af:
9a:fc:71:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:31 2023 by rpki-client on console-ams.rpki-client.org