Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/3103a1-bc58-444c-8231-43d8a6fd1f45/1/ZBtJDaIhn-DTVGtWNuGjKfaCkLI.roa
File: ZBtJDaIhn-DTVGtWNuGjKfaCkLI.roa (raw, json)
Hash identifier: 1oDrvoavskqtg3uu4fOxy8BvQ4s0XjYK7/jokabD2jE=
Subject key identifier: 64:1B:49:0D:A2:21:9F:E0:D3:54:6B:56:36:E1:A3:29:F6:82:90:B2
Certificate issuer: /CN=f41ffe7d297ee4e1d4d23335a9ab4a0088c025d7
Certificate serial: 018248B870CFF05EB3A32254C898EE4BE101
Authority key identifier: F4:1F:FE:7D:29:7E:E4:E1:D4:D2:33:35:A9:AB:4A:00:88:C0:25:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9B_-fSl-5OHU0jM1qatKAIjAJdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/3103a1-bc58-444c-8231-43d8a6fd1f45/1/ZBtJDaIhn-DTVGtWNuGjKfaCkLI.roa
Signing time: Fri 29 Jul 2022 06:50:23 +0000
ROA not before: Fri 29 Jul 2022 06:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41150
IP address blocks: 195.64.191.0/24 maxlen: 24
195.64.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:48:b8:70:cf:f0:5e:b3:a3:22:54:c8:98:ee:4b:e1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f41ffe7d297ee4e1d4d23335a9ab4a0088c025d7
Validity
Not Before: Jul 29 06:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=641b490da2219fe0d3546b5636e1a329f68290b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4d:8b:25:d6:d0:c7:a8:6e:80:af:d2:e2:b7:
7b:b7:07:c5:e9:76:e8:85:4c:36:c4:60:20:83:8e:
5f:86:74:cf:41:53:23:f6:0c:97:65:88:fb:45:ec:
f7:4c:be:f1:38:f1:d2:31:a1:ad:26:ea:f4:d8:47:
83:54:7a:9b:e3:55:e2:96:6c:ae:51:94:91:93:69:
38:1b:12:e8:eb:4e:09:08:0a:c0:f5:3f:54:d0:0b:
2a:e2:1a:7f:d9:39:57:0f:8f:87:03:ad:fe:c5:da:
8e:99:1c:1f:f8:2f:9b:d3:54:4e:2b:b4:72:04:b0:
1d:c7:4f:c1:c8:79:03:d8:0d:4b:18:92:c4:7f:70:
46:fe:b0:85:e1:74:e1:a3:d9:49:47:38:f9:1f:33:
ea:14:44:64:91:18:c4:e9:3d:c7:e1:40:ec:61:0d:
09:06:9b:b3:55:10:57:fd:a2:f2:92:ea:51:b2:96:
24:e1:b2:73:e0:ba:88:db:ca:23:73:70:1f:3f:b8:
9f:89:32:89:e7:be:54:77:9b:ae:0f:ab:67:34:d7:
8e:bc:21:95:6b:28:8b:bc:2f:af:b1:05:04:4a:e3:
3f:2c:bd:5f:73:05:ec:f9:4a:38:e1:9a:64:0e:2e:
40:a0:07:51:23:f8:1e:91:c4:7f:b6:f0:e8:cf:95:
d1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:1B:49:0D:A2:21:9F:E0:D3:54:6B:56:36:E1:A3:29:F6:82:90:B2
X509v3 Authority Key Identifier:
keyid:F4:1F:FE:7D:29:7E:E4:E1:D4:D2:33:35:A9:AB:4A:00:88:C0:25:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9B_-fSl-5OHU0jM1qatKAIjAJdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3103a1-bc58-444c-8231-43d8a6fd1f45/1/ZBtJDaIhn-DTVGtWNuGjKfaCkLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3103a1-bc58-444c-8231-43d8a6fd1f45/1/9B_-fSl-5OHU0jM1qatKAIjAJdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.190.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:83:6e:c7:f9:4f:5c:35:e8:f6:06:20:f5:bd:60:a2:c5:5d:
59:05:d9:b4:d4:21:25:fa:ce:0c:1e:d9:2d:36:44:81:49:c9:
d0:f5:10:73:2e:cd:a5:77:f6:bf:ac:eb:53:9b:bd:25:f6:2c:
fc:56:73:74:95:71:d9:be:76:43:8d:a7:38:2d:35:ca:b7:a7:
8f:ac:d4:e2:1c:90:cb:af:c9:2a:f0:47:cc:69:11:f5:d3:2a:
37:88:ca:54:5c:8c:1b:da:ca:fd:50:10:17:f6:af:9d:9d:f8:
ff:de:c4:ff:8a:e2:98:4a:d4:48:ae:d6:d2:d4:c5:45:2b:a8:
a6:59:cb:0e:7d:38:03:86:6e:c0:2b:63:c6:86:a8:f5:67:1c:
c7:07:99:e8:bf:02:e0:e5:51:fc:c2:41:7d:cd:5c:e6:f5:0a:
36:84:97:c8:37:24:ed:f6:f6:41:8a:12:a6:d4:0b:c3:8f:02:
db:1b:b6:f2:89:65:67:e5:5b:e4:41:0b:00:f9:50:69:07:89:
0d:8a:b5:d6:b9:fd:64:13:67:3c:bf:67:33:1f:42:4d:2a:13:
71:5b:68:b4:02:1f:d9:92:15:ec:7e:79:e2:ff:54:b0:4b:ea:
ae:2c:20:e4:fe:14:a6:a3:11:40:fd:cb:cc:50:2b:98:fa:7d:
d2:78:4b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org