Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ZgwwaKY-a8nZ-uePQnZfd5_hE70.roa
File: ZgwwaKY-a8nZ-uePQnZfd5_hE70.roa (raw, json)
Hash identifier: LRzmNvXXse5vU46RJi4Ww9AdzDWuTMShnxDjivpmdng=
Subject key identifier: 66:0C:30:68:A6:3E:6B:C9:D9:FA:E7:8F:42:76:5F:77:9F:E1:13:BD
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B70D583
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ZgwwaKY-a8nZ-uePQnZfd5_hE70.roa
Signing time: Sat 01 Jan 2022 10:02:45 +0000
ROA not before: Sat 01 Jan 2022 10:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200940
IP address blocks: 195.228.73.0/24 maxlen: 24
195.228.95.0/24 maxlen: 24
195.228.94.0/24 maxlen: 24
195.228.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460379523 (0x1b70d583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=660c3068a63e6bc9d9fae78f42765f779fe113bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:54:18:24:8d:12:69:90:dd:f4:32:ac:74:51:
bf:8e:49:88:b5:3d:ae:99:0f:7b:b6:fe:f8:7a:87:
72:35:b1:b6:7a:8b:b0:87:89:6f:6e:92:ec:1d:2f:
45:a1:69:ff:eb:0a:40:09:73:3f:f4:00:5e:db:38:
2e:0c:fb:b4:aa:91:d9:8c:6d:b8:d3:14:c4:cc:73:
e1:28:e4:b1:0d:88:e7:7e:74:fd:e8:e4:dd:85:de:
b7:8a:7f:f7:f3:de:43:69:61:e4:bc:4f:7d:5e:53:
57:c8:04:81:43:88:8a:13:a7:a8:1f:ad:99:e8:36:
14:12:54:e2:0a:bb:75:49:cc:2f:e9:01:31:78:fb:
21:bc:e3:9f:ce:90:0c:c9:75:15:03:26:af:22:35:
47:ff:3b:e2:0c:0a:21:e9:9d:d3:e0:6c:8d:20:d7:
73:01:75:73:bb:fb:43:40:66:f3:a9:01:f9:c2:af:
fb:f6:ef:15:e8:85:ba:4c:48:ab:68:28:35:eb:97:
cf:5f:14:e4:20:38:a3:cb:eb:f5:2c:8c:8b:8b:0b:
ed:6d:9e:e4:23:ce:17:f9:48:b9:90:de:a0:73:4b:
eb:16:54:a2:aa:c7:bd:d3:4b:e8:93:57:f7:03:b6:
31:3f:33:ed:1a:57:82:34:b5:d9:2d:5f:fc:5f:91:
bc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0C:30:68:A6:3E:6B:C9:D9:FA:E7:8F:42:76:5F:77:9F:E1:13:BD
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ZgwwaKY-a8nZ-uePQnZfd5_hE70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.73.0/24
195.228.94.0/23
195.228.103.0/24
Signature Algorithm: sha256WithRSAEncryption
45:44:3b:bb:3b:04:de:15:58:0a:b6:5b:ea:2a:99:f6:3f:fc:
b8:00:3a:65:a8:ee:0a:c7:b1:d3:c5:58:60:3d:91:18:04:2c:
85:16:39:75:9b:87:51:ef:e2:cc:fe:a0:a4:51:08:fe:80:7d:
73:ce:bc:60:a5:18:4c:f4:51:60:53:50:e1:b5:2d:4b:08:e2:
c0:34:75:48:f2:7a:4d:d3:73:91:6f:fd:ed:f5:ee:7b:5a:08:
a7:53:5b:da:62:ed:08:91:6c:b9:23:de:0a:bc:76:57:24:14:
8f:33:f3:16:89:0e:26:f5:c8:43:50:9d:37:16:96:89:10:0b:
67:41:88:57:83:68:68:40:62:1a:e2:43:a5:df:e6:e0:db:4c:
7f:20:d3:b5:c0:a5:10:3c:ca:86:14:9f:38:fa:38:a2:c6:a5:
b2:f9:b9:c2:f5:2e:ba:5c:f2:0b:49:1b:c9:25:2b:42:ac:ce:
d0:e8:77:72:06:cb:a2:12:68:e7:88:67:cc:40:1d:6c:26:fc:
09:c8:81:f6:b5:93:12:99:05:dd:67:08:cd:42:ad:cc:f0:38:
06:26:56:5a:c4:88:a1:8a:e0:1a:9f:2d:bc:2d:3e:a4:f1:d4:
d3:f7:c3:e2:ec:d8:db:d0:57:8f:6b:ff:56:2b:d4:67:f0:a3:
03:0a:a6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org