Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/ZammUr2hFnTUJ2JpjSH0hn0hZgQ.roa
File: ZammUr2hFnTUJ2JpjSH0hn0hZgQ.roa (raw, json)
Hash identifier: LPfKwi7VtwirBdoJIPntp5nOQ/WgZz+kuJT6ghqh+qY=
Subject key identifier: 65:A9:A6:52:BD:A1:16:74:D4:27:62:69:8D:21:F4:86:7D:21:66:04
Certificate issuer: /CN=e927fdc63d310d3d231b4a7553ae4e4158025e9f
Certificate serial: 0A665697
Authority key identifier: E9:27:FD:C6:3D:31:0D:3D:23:1B:4A:75:53:AE:4E:41:58:02:5E:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Sf9xj0xDT0jG0p1U65OQVgCXp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/ZammUr2hFnTUJ2JpjSH0hn0hZgQ.roa
Signing time: Sat 01 Jan 2022 16:03:25 +0000
ROA not before: Sat 01 Jan 2022 16:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48918
IP address blocks: 195.20.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174478999 (0xa665697)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e927fdc63d310d3d231b4a7553ae4e4158025e9f
Validity
Not Before: Jan 1 16:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a9a652bda11674d42762698d21f4867d216604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:14:13:83:28:97:27:ef:84:61:7c:c2:da:e6:
f8:61:56:ea:9c:9d:3a:73:2b:01:4e:d5:74:93:ee:
22:20:22:53:9f:60:02:92:9c:c0:46:1e:8a:ea:35:
f7:0b:ba:86:fc:7c:67:86:3f:4f:bd:ad:a1:62:5c:
f9:5a:54:ea:03:25:2c:a3:79:ba:8b:7f:fc:8c:9c:
7b:5b:92:f9:45:cf:3b:fd:f4:bd:07:e9:b9:39:6c:
37:94:45:8c:03:29:30:88:af:36:5c:ce:67:bb:b2:
8d:8d:c2:e7:3d:82:3b:5f:d0:cc:a5:03:b9:b3:d1:
ec:2b:a7:80:ab:c8:d6:a7:a6:f9:c4:60:9b:8b:f1:
53:49:dc:24:58:ee:27:4e:1a:75:0b:21:cb:0e:c0:
8f:73:2e:cd:1b:e0:59:6a:f0:6a:7a:34:32:f1:6f:
1d:fd:cf:0e:e7:91:18:d5:07:56:18:ec:d9:73:96:
e9:ce:ad:e3:07:43:7c:c3:7c:fa:a9:4f:4b:45:54:
d1:29:26:fb:4e:52:ec:1b:a1:62:2f:22:a0:26:a9:
4e:f3:f1:3f:2d:6e:ac:ca:f3:9e:21:4d:7e:f5:59:
c1:92:4c:bd:01:79:67:e9:7c:6f:4e:25:85:45:9f:
d6:7b:c0:a2:e9:2e:2f:90:32:1f:aa:e0:58:8e:27:
ea:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A9:A6:52:BD:A1:16:74:D4:27:62:69:8D:21:F4:86:7D:21:66:04
X509v3 Authority Key Identifier:
keyid:E9:27:FD:C6:3D:31:0D:3D:23:1B:4A:75:53:AE:4E:41:58:02:5E:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Sf9xj0xDT0jG0p1U65OQVgCXp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/ZammUr2hFnTUJ2JpjSH0hn0hZgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/6Sf9xj0xDT0jG0p1U65OQVgCXp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:41:f2:92:4e:a1:a6:35:b5:fc:ef:c7:aa:70:d4:07:af:46:
30:c6:48:a4:5d:80:0b:19:a4:00:1a:f7:a1:8f:a2:e4:8a:a4:
fa:87:46:ad:dd:c0:ca:33:ee:f8:50:85:ee:d0:f2:5e:2e:2a:
ab:54:2b:18:66:56:81:33:24:1c:b0:7b:1b:ef:74:34:7e:33:
3c:3d:a9:02:de:9e:af:5a:59:5b:a6:c6:a7:95:ff:9b:78:ec:
05:85:f6:99:f2:fa:71:12:9d:1b:7f:53:27:f7:b4:e2:5f:d6:
0f:81:8b:31:3e:e6:70:f1:6e:6f:ba:fb:34:ca:fd:be:b4:75:
fb:18:8d:51:7c:77:2a:12:61:ad:28:32:52:c8:1f:fd:07:7f:
9c:d8:2a:f4:a0:53:ad:1a:ad:02:86:30:89:aa:07:d2:12:c2:
d3:d4:0d:72:61:c8:fe:3a:87:64:00:40:48:2b:06:66:49:70:
de:67:49:c1:71:1b:6f:96:e9:51:98:c2:f9:8c:e6:db:12:30:
64:1e:27:3f:a6:a0:7c:ef:2c:9b:63:35:2c:24:4d:3d:12:a0:
2d:ed:b9:dd:5a:f4:b9:88:4c:e1:34:85:74:51:24:6a:38:a8:
18:a4:ad:14:9c:85:ea:c2:2c:44:67:91:76:78:fa:54:0e:88:
e1:e3:90:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:13 2023 by rpki-client on console-fra.rpki-client.org