Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/rz-myntUZ24r6dqHDuk27MoDxzc.roa
File: rz-myntUZ24r6dqHDuk27MoDxzc.roa (raw, json)
Hash identifier: 0+GqbT5w/D2JEPLdSA8WFVicbkntj23AvnNX2DEUnL4=
Subject key identifier: AF:3F:A6:CA:7B:54:67:6E:2B:E9:DA:87:0E:E9:36:EC:CA:03:C7:37
Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Certificate serial: 0D8F59B3
Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/rz-myntUZ24r6dqHDuk27MoDxzc.roa
Signing time: Sat 01 Jan 2022 15:01:08 +0000
ROA not before: Sat 01 Jan 2022 15:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205833
IP address blocks: 188.0.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227498419 (0xd8f59b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Validity
Not Before: Jan 1 15:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af3fa6ca7b54676e2be9da870ee936ecca03c737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b8:97:5d:e8:46:34:a8:50:06:80:c9:86:57:
99:5d:35:2a:cb:f1:6b:7d:f3:a3:d6:ba:04:3c:f7:
1c:31:a5:84:f4:28:b0:b6:92:44:30:cf:f6:3c:9e:
1f:5f:28:28:57:bc:bd:07:58:01:af:87:c5:c4:30:
18:91:32:23:60:9c:f8:ac:4c:b4:7e:af:f1:0d:7d:
4f:7e:ac:1f:cb:29:14:cd:07:76:cb:7c:e8:f3:af:
55:9b:61:27:03:8c:54:10:f0:ef:6d:76:a9:fa:3d:
1b:16:88:b8:37:82:83:cc:0b:99:a1:66:c8:21:a2:
60:83:ae:4c:92:9f:e0:16:32:b0:8a:56:40:c3:f6:
fb:bf:00:30:ee:91:b7:79:79:77:42:dc:c0:b9:f2:
2e:82:63:a9:18:b8:9c:b1:9c:af:8f:2b:f9:8e:83:
33:e7:c1:cf:76:60:16:e3:a4:b1:e3:77:98:75:7d:
6b:e6:1f:c3:72:03:a6:74:f5:9d:01:07:02:18:51:
dd:1f:95:f8:89:c3:7d:13:0c:ab:d0:7a:55:48:be:
e9:59:19:46:e3:84:9a:5c:95:1d:e0:ed:18:42:cc:
c6:80:13:21:77:90:67:c4:c9:25:07:4b:8f:d1:5b:
fd:c4:ba:05:f8:28:da:bd:a6:d2:0a:52:f2:0f:1f:
46:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3F:A6:CA:7B:54:67:6E:2B:E9:DA:87:0E:E9:36:EC:CA:03:C7:37
X509v3 Authority Key Identifier:
keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/rz-myntUZ24r6dqHDuk27MoDxzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.0.245.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:02:5f:6e:0d:07:28:27:f9:3a:1f:9e:a7:d2:c4:06:c0:51:
48:28:03:80:75:fc:c3:03:c6:1a:e4:76:da:30:49:d7:22:4a:
b6:83:92:a0:ba:a1:f3:1a:8f:9b:a2:c4:3f:f6:24:32:bd:d4:
11:3b:42:4e:71:4a:61:a9:5c:9f:52:ba:3f:92:4a:ae:e7:4f:
27:a4:12:b1:21:68:10:0d:f4:88:15:2c:30:10:ce:3a:56:cc:
83:fc:7b:37:72:ac:ce:0a:e9:72:fa:e6:8b:7e:9c:93:46:c0:
fc:f4:61:44:4c:64:bb:4e:85:0c:4f:b3:9e:9e:6b:c7:af:77:
1a:80:2f:a4:b9:a5:fa:82:49:dc:37:ee:94:ca:33:37:af:0b:
d8:89:82:17:d5:16:86:31:e6:2c:60:10:c6:e2:71:e7:85:b0:
91:53:28:3f:2e:a4:1f:92:38:19:e4:15:05:29:de:6c:7e:93:
d9:0f:d8:17:42:55:d3:10:e0:60:93:9c:10:40:13:6f:a6:85:
07:f4:cd:76:37:14:e8:02:dc:cf:55:2c:a9:41:0e:ad:ad:69:
43:54:57:9c:9b:1b:9c:5c:8a:c2:f1:4e:a1:ed:18:20:3f:49:
d7:98:7f:df:6d:0c:7b:0c:3b:75:f0:f5:d2:61:b4:a0:bc:8c:
55:63:ad:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:57 2024 by rpki-client on console-ams.rpki-client.org