Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7b0ec7-9848-4163-ac1b-7b04d3597378/1/ZXQg9LITYilZdM1Chp0NfbiH6sk.roa
File: ZXQg9LITYilZdM1Chp0NfbiH6sk.roa (raw, json)
Hash identifier: SscGhGY5zsmy3ylVUN36uzwzEdM4MrIUh43VTU0pYwE=
Subject key identifier: 65:74:20:F4:B2:13:62:29:59:74:CD:42:86:9D:0D:7D:B8:87:EA:C9
Certificate issuer: /CN=612423536e51f94fabfc50acf944d798aacf403f
Certificate serial: 0A22508A
Authority key identifier: 61:24:23:53:6E:51:F9:4F:AB:FC:50:AC:F9:44:D7:98:AA:CF:40:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSQjU25R-U-r_FCs-UTXmKrPQD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7b0ec7-9848-4163-ac1b-7b04d3597378/1/ZXQg9LITYilZdM1Chp0NfbiH6sk.roa
Signing time: Sat 01 Jan 2022 07:03:18 +0000
ROA not before: Sat 01 Jan 2022 07:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41766
IP address blocks: 193.37.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170021002 (0xa22508a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612423536e51f94fabfc50acf944d798aacf403f
Validity
Not Before: Jan 1 07:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=657420f4b21362295974cd42869d0d7db887eac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:3e:d3:bc:d1:07:30:ff:52:60:d9:54:e0:
8a:e3:79:c8:97:d3:15:a5:3e:01:3a:f6:40:db:ec:
c7:39:c5:7e:77:26:13:d2:0c:e1:ae:7e:14:36:fb:
11:1a:5d:91:8d:5c:0c:90:ca:7e:96:f0:4f:36:49:
0c:27:09:7f:cc:9c:9c:a3:75:8a:13:d9:19:e5:96:
97:21:4f:66:d4:25:65:00:43:93:bb:4f:a9:03:76:
9d:8c:3f:c9:28:e3:b6:24:e0:55:9a:4b:a2:21:fb:
f1:dc:61:d2:ff:60:e2:6d:32:55:04:fe:25:8a:b9:
7d:cb:6d:94:20:48:24:ff:3b:64:3a:6a:0a:c8:66:
5a:92:e4:20:06:37:79:0f:0d:ee:72:f7:f7:c7:0b:
a1:08:97:a7:a4:05:1e:cf:86:b3:3a:17:e6:8c:51:
14:6b:d9:fa:5f:23:69:22:c6:99:bc:19:d3:65:79:
0c:4d:a8:f5:d0:4b:66:3f:41:14:eb:48:36:c8:ef:
62:e7:f2:ee:4d:6a:c9:5e:e7:a3:de:0f:8e:93:2f:
e8:1b:d0:ec:5e:65:8f:1b:3a:ed:2f:bc:8b:dc:59:
7c:ac:63:f9:f8:55:d1:12:a7:6c:54:1f:e9:9d:23:
a6:c0:85:a3:b5:0c:66:08:53:af:a3:02:11:27:7d:
9d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:74:20:F4:B2:13:62:29:59:74:CD:42:86:9D:0D:7D:B8:87:EA:C9
X509v3 Authority Key Identifier:
keyid:61:24:23:53:6E:51:F9:4F:AB:FC:50:AC:F9:44:D7:98:AA:CF:40:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSQjU25R-U-r_FCs-UTXmKrPQD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7b0ec7-9848-4163-ac1b-7b04d3597378/1/ZXQg9LITYilZdM1Chp0NfbiH6sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7b0ec7-9848-4163-ac1b-7b04d3597378/1/YSQjU25R-U-r_FCs-UTXmKrPQD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.147.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:19:2a:02:2b:dd:d3:fa:6e:8e:79:60:42:4f:2a:10:15:29:
c6:4f:9a:43:8d:ff:30:b8:5d:cf:f8:71:e9:b4:57:2c:16:46:
28:97:5d:6b:32:ab:eb:8c:36:da:46:b6:f5:51:b3:90:e0:38:
d6:2e:59:3e:57:77:84:5d:6c:a4:7b:b2:11:f4:e4:77:61:e7:
1d:23:b0:29:86:0e:98:fb:86:37:c6:81:80:2c:77:37:0a:ab:
0c:e1:27:93:aa:90:97:61:c3:c1:13:48:f4:de:3c:9e:e8:22:
59:f3:42:98:6c:30:3f:13:bf:9d:b1:d5:82:81:db:23:bb:36:
7e:28:16:73:d8:ad:75:c2:7d:75:40:75:1b:0b:30:ed:72:48:
98:c5:ad:59:e3:f1:07:6e:84:21:16:8a:aa:26:1d:26:d3:21:
59:be:5e:f5:01:17:3b:9a:76:04:a1:81:f1:61:ca:5e:36:43:
51:8c:f9:ab:b5:cf:10:5b:22:ca:c5:aa:e1:77:ea:65:7c:c8:
91:e6:c0:0d:32:90:4c:45:b9:9a:b4:a1:b4:57:c5:16:0b:84:
3c:df:c6:1e:93:05:cb:ed:69:a8:7f:4d:db:ec:8b:a6:13:b0:
25:a2:b0:7e:b4:68:de:78:71:54:07:c2:42:fb:ac:21:8b:ab:
dd:02:e3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org