Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/30764e-799f-4736-9686-92d5d3970a59/1/zcBkMy23mtgig3YAs7hkZc32Q_s.roa
File: zcBkMy23mtgig3YAs7hkZc32Q_s.roa (raw, json)
Hash identifier: nfn7q3noGoJFk37pGOIsBToGyF9HoqL6D/nETEnTOWM=
Subject key identifier: CD:C0:64:33:2D:B7:9A:D8:22:83:76:00:B3:B8:64:65:CD:F6:43:FB
Certificate issuer: /CN=9e2e88f507cd2eadbb232c864f71edba6ecb5da0
Certificate serial: 1BCB05
Authority key identifier: 9E:2E:88:F5:07:CD:2E:AD:BB:23:2C:86:4F:71:ED:BA:6E:CB:5D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ni6I9QfNLq27IyyGT3Htum7LXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/30764e-799f-4736-9686-92d5d3970a59/1/zcBkMy23mtgig3YAs7hkZc32Q_s.roa
Signing time: Sat 01 Jan 2022 00:52:18 +0000
ROA not before: Sat 01 Jan 2022 00:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44056
IP address blocks: 195.88.58.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1821445 (0x1bcb05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e2e88f507cd2eadbb232c864f71edba6ecb5da0
Validity
Not Before: Jan 1 00:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdc064332db79ad822837600b3b86465cdf643fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:65:2f:e7:67:50:2c:22:00:fc:32:d9:79:
1f:03:11:fc:0d:87:8b:20:8c:72:31:b6:3b:b1:25:
c5:8f:2f:15:4d:33:75:59:ae:87:7a:95:c6:28:68:
39:b1:a6:22:08:ed:96:01:b3:36:73:cb:32:86:08:
b9:f7:72:d7:f3:a1:40:11:40:9f:ca:15:f5:40:9e:
3e:42:92:a0:76:fb:d6:55:09:7e:2b:43:8e:d6:c1:
ee:ff:f8:6f:e0:f2:2b:b4:74:6d:c2:cb:ca:fc:cf:
62:88:4f:16:90:f9:35:d3:fe:15:18:ed:72:4a:be:
01:1b:19:96:dc:cc:8c:5b:bf:b2:d7:a9:fb:7f:97:
14:cd:4a:34:d5:dc:0e:ab:9b:b7:bf:5c:45:c8:9b:
6f:1b:37:8a:ca:f3:37:dd:58:d7:74:54:67:05:d3:
5d:18:bd:d7:31:aa:4b:07:80:af:2b:83:61:09:67:
9a:a2:f5:7e:43:bb:57:23:4b:38:75:0b:69:f6:05:
58:f3:2d:8f:53:d7:70:91:87:f5:88:f4:74:66:c9:
eb:25:23:32:f8:4d:a8:29:d8:de:41:dc:4a:40:5e:
d8:f9:e7:53:4d:50:7c:8b:6c:4e:56:ba:3a:d1:c3:
03:1b:89:ec:5f:c2:57:f9:eb:10:b2:0f:1c:9f:5f:
d5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C0:64:33:2D:B7:9A:D8:22:83:76:00:B3:B8:64:65:CD:F6:43:FB
X509v3 Authority Key Identifier:
keyid:9E:2E:88:F5:07:CD:2E:AD:BB:23:2C:86:4F:71:ED:BA:6E:CB:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ni6I9QfNLq27IyyGT3Htum7LXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/30764e-799f-4736-9686-92d5d3970a59/1/zcBkMy23mtgig3YAs7hkZc32Q_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/30764e-799f-4736-9686-92d5d3970a59/1/ni6I9QfNLq27IyyGT3Htum7LXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.58.0/23
Signature Algorithm: sha256WithRSAEncryption
92:70:ca:41:4c:50:8f:10:6c:69:72:51:d9:56:14:05:f5:d6:
9c:a9:a4:d1:d4:12:82:26:c5:fd:48:a7:39:b0:9d:ca:72:a0:
9e:ff:6a:59:ad:40:67:b9:39:99:01:7b:0b:e0:1a:ab:f6:b6:
9d:46:6e:70:76:d8:b0:e9:a6:c9:8e:37:e9:9f:bd:d8:f8:87:
85:76:b9:07:8e:68:b6:6f:4e:87:ce:9b:90:ec:89:e7:2c:36:
59:6a:24:21:15:27:95:96:a4:e6:3a:e3:23:36:f1:e0:20:c2:
39:41:31:1b:1b:85:15:b4:6e:a8:38:a6:c2:cb:5e:68:da:09:
a5:c6:75:08:82:9d:29:70:72:e9:21:e4:ca:1e:82:8e:47:87:
72:5c:10:c1:66:35:25:22:90:50:0d:e9:bf:09:ed:2e:9b:40:
60:c2:7b:79:54:7b:30:40:d8:74:ef:e6:fa:80:76:13:fc:88:
66:ae:75:35:61:84:15:e9:32:92:aa:b7:ca:97:5a:41:29:7d:
f7:0a:3a:74:72:4e:ed:7f:29:92:7b:c5:10:71:28:bd:38:ee:
05:ce:72:ef:1b:37:d8:ed:48:51:43:2c:11:ba:41:d7:13:5b:
64:08:18:b7:7f:b1:e3:f7:60:5a:25:14:48:51:44:14:d7:1b:
7c:58:8e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:48 2024 by rpki-client on console-fra.rpki-client.org