Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a52b04-efb0-415b-9b1a-409ea1208926/1/zmWSRHMw0IiIWEMBtm3iZV9snek.roa
File: zmWSRHMw0IiIWEMBtm3iZV9snek.roa (raw, json)
Hash identifier: EQ4OV0GxgqNPkq4KiglPiTgIj5nVZb7jDHCdNygJ1BU=
Subject key identifier: CE:65:92:44:73:30:D0:88:88:58:43:01:B6:6D:E2:65:5F:6C:9D:E9
Certificate issuer: /CN=65cf99962f989f7b733da7aa70eaf9e41052ae19
Certificate serial: 05F86808
Authority key identifier: 65:CF:99:96:2F:98:9F:7B:73:3D:A7:AA:70:EA:F9:E4:10:52:AE:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zc-Zli-Yn3tzPaeqcOr55BBSrhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a52b04-efb0-415b-9b1a-409ea1208926/1/zmWSRHMw0IiIWEMBtm3iZV9snek.roa
Signing time: Sat 01 Jan 2022 02:54:24 +0000
ROA not before: Sat 01 Jan 2022 02:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202717
IP address blocks: 193.33.124.0/24 maxlen: 24
2a10:a80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100165640 (0x5f86808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65cf99962f989f7b733da7aa70eaf9e41052ae19
Validity
Not Before: Jan 1 02:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce6592447330d08888584301b66de2655f6c9de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:2c:d9:2f:99:6d:0c:6f:23:29:2c:53:fb:
f1:84:72:0f:52:d7:6e:4e:fd:54:07:7b:ff:bb:d9:
91:df:31:4c:e9:aa:92:c2:5c:93:64:df:d9:2b:78:
db:d6:3d:9d:40:8a:38:5a:1c:11:93:09:a2:d2:7e:
f9:85:8a:71:fb:ed:f2:59:28:36:4b:c5:3c:55:23:
85:aa:4b:99:50:96:59:e7:44:3a:70:9c:12:0e:f0:
ff:65:dc:dc:a3:3d:f9:69:23:6d:15:75:43:d6:cf:
97:26:11:cb:36:d3:2d:a8:f5:b6:60:20:47:27:2e:
b0:0e:00:a9:aa:33:58:60:21:32:b9:81:a9:de:b9:
65:1c:43:83:bd:17:89:31:ee:0a:78:b1:36:fb:af:
73:a2:7c:17:89:9b:54:5c:ea:b5:70:2a:eb:27:30:
5e:4a:83:0d:77:7d:31:b1:5e:fb:42:fa:44:34:82:
be:17:a3:ad:5d:58:59:3d:da:f9:f6:90:47:a0:f1:
c4:f9:73:4f:4a:2a:c1:64:8e:e2:5b:c5:0f:72:e9:
22:9c:3d:60:b6:28:10:50:60:68:51:8a:cb:ca:ca:
e9:18:6d:ea:51:ed:fb:e5:39:84:d6:69:52:e7:75:
cd:c7:e2:d2:02:59:de:36:e9:47:5a:14:3a:8e:77:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:65:92:44:73:30:D0:88:88:58:43:01:B6:6D:E2:65:5F:6C:9D:E9
X509v3 Authority Key Identifier:
keyid:65:CF:99:96:2F:98:9F:7B:73:3D:A7:AA:70:EA:F9:E4:10:52:AE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zc-Zli-Yn3tzPaeqcOr55BBSrhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a52b04-efb0-415b-9b1a-409ea1208926/1/zmWSRHMw0IiIWEMBtm3iZV9snek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a52b04-efb0-415b-9b1a-409ea1208926/1/Zc-Zli-Yn3tzPaeqcOr55BBSrhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.124.0/24
IPv6:
2a10:a80::/32
Signature Algorithm: sha256WithRSAEncryption
2a:f2:14:5b:0d:97:a2:ed:0c:51:80:81:0c:7c:87:7b:51:d7:
aa:5f:29:b7:a4:ae:66:21:65:89:5d:85:f2:a2:6b:87:b4:74:
16:38:4c:95:41:56:c9:6f:49:20:aa:5f:1d:8c:35:9b:14:75:
a3:83:dd:23:48:b1:43:d5:08:b6:b0:1d:9e:95:0f:7d:d6:f3:
2e:7e:8a:b0:66:89:c5:ce:67:51:b5:c6:1a:39:d5:02:d9:be:
9c:8f:d6:53:cb:a8:60:bb:e6:85:89:68:54:c5:d4:4f:2e:f1:
da:4c:2d:96:3e:91:4b:86:a4:85:68:e3:5b:dc:b9:9f:69:ae:
44:1c:11:32:76:cc:d6:29:b1:06:17:2e:be:65:18:5c:fe:2d:
d6:04:ac:29:b7:cc:f1:4e:3c:5f:04:75:ed:9b:07:22:86:39:
e8:28:cf:9f:d3:fb:9c:5d:22:27:d5:86:60:94:bb:a4:48:80:
9f:01:27:ba:eb:ac:bd:4a:db:84:49:bb:5f:cb:29:78:99:0a:
c6:7a:65:20:2d:38:7d:38:ca:e2:50:af:68:a5:6b:41:45:4e:
72:34:b7:61:ad:d2:9e:7c:2b:2a:d5:b7:11:1a:84:1c:47:de:
fe:6c:bc:59:54:f5:1b:5f:45:43:38:1d:6d:3b:8a:79:39:2b:
fd:d4:4b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:01:03 2025 by rpki-client