Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/c82faf-5733-4d46-946f-79a121fcf6a8/1/zgLbUX6GzC37ezzvCbjKjhEL8KM.roa
File: zgLbUX6GzC37ezzvCbjKjhEL8KM.roa (raw, json)
Hash identifier: TuimSClYNEGEDiLNsuKjJl/dXIvvY/Ieo69Bf/VZUC8=
Subject key identifier: CE:02:DB:51:7E:86:CC:2D:FB:7B:3C:EF:09:B8:CA:8E:11:0B:F0:A3
Certificate issuer: /CN=1b731c9cd1efa389724aa266ff280f4c108c7bec
Certificate serial: 1F9AF8
Authority key identifier: 1B:73:1C:9C:D1:EF:A3:89:72:4A:A2:66:FF:28:0F:4C:10:8C:7B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G3McnNHvo4lySqJm_ygPTBCMe-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/c82faf-5733-4d46-946f-79a121fcf6a8/1/zgLbUX6GzC37ezzvCbjKjhEL8KM.roa
Signing time: Sat 01 Jan 2022 01:52:17 +0000
ROA not before: Sat 01 Jan 2022 01:52:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 188.93.139.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2071288 (0x1f9af8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b731c9cd1efa389724aa266ff280f4c108c7bec
Validity
Not Before: Jan 1 01:52:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce02db517e86cc2dfb7b3cef09b8ca8e110bf0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:19:03:91:3e:57:b4:64:6d:78:a0:97:c3:28:
cd:46:ad:38:d5:d1:59:50:99:42:52:ef:fd:2b:f4:
b5:66:e8:6c:3e:aa:e3:21:f4:92:7e:1e:71:6a:9a:
cd:c3:f0:6a:93:05:1a:ca:36:4f:cb:05:f4:92:d1:
39:02:97:b1:da:19:de:79:a8:5f:35:fa:27:69:92:
bc:3c:ab:be:4d:10:ca:9a:61:3d:c9:08:37:2f:ed:
93:7c:5d:32:74:1c:9e:f4:c9:85:1e:07:6b:7d:30:
c8:df:b0:e5:a2:60:9f:08:90:0c:a6:c1:71:4a:ce:
32:06:13:bd:d7:71:a8:e4:96:2e:a8:fb:f1:12:e2:
13:d1:da:3a:6e:90:2c:79:9d:1c:5e:32:f2:89:08:
3a:87:43:f5:e5:32:ab:dc:ed:54:40:d6:f5:ae:ba:
ad:9c:a9:01:6b:96:9b:97:e8:00:d9:34:c9:b6:ff:
b0:27:79:3c:79:ee:35:71:49:f2:ba:d5:62:dd:f1:
d5:e4:10:c9:fa:72:b3:11:20:cc:8f:20:2d:a0:90:
58:e4:ac:85:bc:33:c6:d5:49:1e:8a:de:89:30:cc:
0b:b8:e0:9e:0f:62:ba:62:30:69:9a:67:f6:c4:63:
58:90:f0:67:ad:7f:d5:68:3b:e4:bc:ff:b7:11:e2:
20:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:02:DB:51:7E:86:CC:2D:FB:7B:3C:EF:09:B8:CA:8E:11:0B:F0:A3
X509v3 Authority Key Identifier:
keyid:1B:73:1C:9C:D1:EF:A3:89:72:4A:A2:66:FF:28:0F:4C:10:8C:7B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G3McnNHvo4lySqJm_ygPTBCMe-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c82faf-5733-4d46-946f-79a121fcf6a8/1/zgLbUX6GzC37ezzvCbjKjhEL8KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c82faf-5733-4d46-946f-79a121fcf6a8/1/G3McnNHvo4lySqJm_ygPTBCMe-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.139.0/24
Signature Algorithm: sha256WithRSAEncryption
76:72:44:8e:62:31:bd:82:c0:b3:eb:ff:11:53:9c:00:d3:77:
16:43:18:43:48:45:f4:6f:9b:18:1f:00:18:a4:dc:e7:01:11:
20:fb:9a:25:87:b0:dd:b7:4f:57:63:c9:ee:f0:91:82:7e:d6:
f4:56:be:a3:d2:de:3e:62:42:72:9e:94:5e:8b:f1:fe:77:7f:
f7:02:ce:00:b1:a0:f9:93:c3:d3:ef:7c:d6:4f:05:2f:53:91:
48:5a:8c:88:c5:9e:5b:b0:a2:93:53:4b:2d:cd:e6:68:95:a8:
cc:d0:93:e8:69:d1:d6:ec:3e:9d:c0:a2:38:1e:44:9c:4f:15:
9c:17:8f:9b:4d:b1:e9:00:08:7d:12:aa:40:e1:48:bf:6e:4c:
a8:23:b0:58:82:8b:d4:2b:86:9e:f7:77:03:3d:cc:36:a8:19:
e5:00:af:74:ea:c4:f9:3f:1c:9e:a6:e6:92:22:75:13:de:7a:
b0:32:56:46:41:f5:0d:d5:57:d5:41:1a:d6:b9:1e:ec:58:50:
77:ce:12:db:f6:4c:8b:6f:51:64:e9:c4:1b:be:ac:8e:d5:28:
f5:27:fe:49:66:6b:c7:36:a7:26:f5:e7:55:60:f3:16:1f:55:
a0:8e:24:dd:d3:ef:af:e6:fc:1c:75:e2:2a:b9:79:07:cc:8f:
19:1f:f1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-ams.rpki-client.org