Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/ZCM_LSgUJgVbbDfKwTRTruFlRNs.roa
File: ZCM_LSgUJgVbbDfKwTRTruFlRNs.roa (raw, json)
Hash identifier: l3BQOWUAmVnMpTaU/jnz0/LQDAsBjqIWhL1YpCvmizE=
Subject key identifier: 64:23:3F:2D:28:14:26:05:5B:6C:37:CA:C1:34:53:AE:E1:65:44:DB
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018475C1C7A9A4B05FDE819B1B974AA8B628
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/ZCM_LSgUJgVbbDfKwTRTruFlRNs.roa
Signing time: Mon 14 Nov 2022 10:49:04 +0000
ROA not before: Mon 14 Nov 2022 10:49:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 194.246.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:c1:c7:a9:a4:b0:5f:de:81:9b:1b:97:4a:a8:b6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Nov 14 10:49:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64233f2d281426055b6c37cac13453aee16544db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ba:58:32:e8:5e:91:d1:48:11:30:31:d5:06:
d6:2b:35:c3:ff:05:ce:57:9a:07:3e:67:84:e2:e9:
f7:ad:d6:ac:bc:49:31:d4:d4:ad:bf:33:9a:0e:e7:
08:49:a6:0d:d9:28:9f:fb:6e:fa:9b:73:02:69:96:
60:5e:05:ea:be:cb:4b:bb:d9:c2:56:d0:c2:f5:aa:
49:a9:f1:f9:87:8b:14:26:af:7d:f2:36:18:09:33:
8f:09:ad:54:4d:68:3f:40:b2:4d:85:46:eb:04:c9:
32:e8:ff:b5:e8:9d:df:ce:15:09:9d:44:5a:75:27:
6e:d6:74:ef:74:fd:87:ab:81:b1:13:b3:cb:d5:0f:
3e:ac:39:55:72:7a:50:40:2a:d9:7f:6f:27:c2:bd:
f1:fe:51:d6:09:58:1d:a4:c8:1b:6c:7e:d5:11:6c:
6a:a7:d8:21:12:ca:fe:b2:17:57:87:ee:4b:b2:6b:
a5:ec:44:e3:fb:d7:ce:93:9d:05:e2:69:a1:82:36:
45:91:1f:3d:98:4c:e4:f2:63:ad:83:fe:39:4e:bc:
ed:1e:0e:d8:4b:2d:5d:e8:25:44:95:b5:0d:c8:d7:
f9:f5:10:35:2b:ad:11:c2:db:7e:d8:bd:99:e0:61:
30:08:45:75:c6:a1:f2:fa:2e:60:ed:18:f1:5b:c9:
3e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:23:3F:2D:28:14:26:05:5B:6C:37:CA:C1:34:53:AE:E1:65:44:DB
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/ZCM_LSgUJgVbbDfKwTRTruFlRNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:c3:ad:cc:1f:4a:14:1d:b6:68:f3:4e:b6:2d:d7:b5:40:b3:
22:12:ab:09:b1:76:0a:28:5c:d4:3a:71:7a:9a:57:fd:fa:28:
48:ea:99:19:19:a5:98:83:35:a2:82:7e:5f:de:7e:7b:72:d2:
b1:50:92:8b:ac:00:d0:43:f4:45:68:b0:7a:cf:67:91:db:26:
79:7d:c5:8a:90:21:f8:77:e0:8d:f8:d7:83:73:82:ee:62:6f:
3a:bd:2f:38:de:43:09:47:ad:b3:4d:38:3f:0c:b4:de:2b:38:
56:e7:4e:a1:cf:05:19:6d:df:e5:20:c3:ea:64:81:3c:1c:54:
74:d9:54:a6:ca:5a:29:7d:65:84:14:7c:9b:38:7a:45:ba:45:
d6:ec:c8:70:be:d3:0f:91:a8:7d:43:09:c7:4c:2d:9e:3e:df:
55:7b:e5:ac:52:c2:f3:72:18:40:54:d2:1f:28:40:ef:34:c6:
27:38:90:bd:11:ee:f7:d5:ef:af:d6:1d:e4:f3:81:0b:1f:fc:
43:6e:18:83:18:59:6d:3f:83:8b:a3:b5:40:30:e7:e4:c3:65:
13:f7:ec:2b:ab:95:79:0d:e5:32:df:fb:c3:9a:94:7f:3e:59:
c4:21:a2:af:bd:ce:f4:38:50:94:03:88:1b:9e:58:3d:bd:79:
36:12:6f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org