Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/z4ZAaCJJ6jhdu4tSKf71nTwVaOg.roa
File: z4ZAaCJJ6jhdu4tSKf71nTwVaOg.roa (raw, json)
Hash identifier: EK9uzwSYc+vpF2Vk1Dnz3esO1Css9DKCMfyZGj2V3UA=
Subject key identifier: CF:86:40:68:22:49:EA:38:5D:BB:8B:52:29:FE:F5:9D:3C:15:68:E8
Certificate issuer: /CN=021b3ea35edfdd138c15506d74a76022dd37694b
Certificate serial: 15A09A19
Authority key identifier: 02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/z4ZAaCJJ6jhdu4tSKf71nTwVaOg.roa
Signing time: Sat 01 Jan 2022 12:58:37 +0000
ROA not before: Sat 01 Jan 2022 12:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34878
IP address blocks: 193.196.32.0/20 maxlen: 20
2001:7c0:2310::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362846745 (0x15a09a19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021b3ea35edfdd138c15506d74a76022dd37694b
Validity
Not Before: Jan 1 12:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf8640682249ea385dbb8b5229fef59d3c1568e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:88:dd:2e:b2:c1:17:a0:ec:54:76:f9:8c:
91:7c:cc:b5:3d:6b:fa:d0:55:75:4b:04:32:54:8d:
fc:0b:21:dc:83:86:2a:d0:6f:20:01:9f:df:56:b4:
48:41:6c:49:7b:a5:99:76:a4:c1:ed:39:7f:eb:c5:
a8:ec:93:6a:ad:10:ff:6f:fd:79:1b:dd:a7:76:42:
22:22:2f:6c:ad:57:87:76:b5:33:6e:23:93:b1:9b:
5f:26:e8:41:f1:1b:e8:b5:e3:4c:bd:06:59:0a:78:
ba:b0:28:2a:fd:e9:26:03:81:33:6b:a2:ed:da:dc:
88:0a:1e:c1:68:4c:8c:8b:f9:b4:c1:ed:55:81:31:
39:89:c4:44:a0:00:0b:11:d9:0f:77:42:2b:fe:25:
3f:45:d7:00:86:be:5f:55:f5:81:48:15:ca:a1:a8:
44:41:ae:f2:ec:6d:ae:dc:e9:40:5f:04:1e:71:dc:
e2:8e:90:ea:c0:8d:e9:2f:53:08:22:bb:89:8a:e8:
c9:4d:62:b5:1e:66:03:e8:ab:b1:6b:5f:3e:66:fa:
7d:f2:7f:d6:a8:aa:a1:c5:97:c0:5a:19:07:6a:cd:
ce:76:ab:6d:dd:9b:2f:8c:5a:53:a0:d4:ff:35:7b:
2f:75:e5:b7:9c:1f:d9:95:0d:91:db:25:e3:66:2e:
94:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:86:40:68:22:49:EA:38:5D:BB:8B:52:29:FE:F5:9D:3C:15:68:E8
X509v3 Authority Key Identifier:
keyid:02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/z4ZAaCJJ6jhdu4tSKf71nTwVaOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.196.32.0/20
IPv6:
2001:7c0:2310::/44
Signature Algorithm: sha256WithRSAEncryption
0b:b3:c8:02:e1:f3:9b:b9:1a:85:fd:55:f9:67:02:d0:4d:59:
44:ca:a3:80:79:da:c3:51:b4:6d:d7:ed:ce:f6:4f:5d:06:39:
15:cb:46:a1:09:4f:bc:cc:3b:ef:cd:1f:b2:0c:e5:34:31:29:
97:7b:a4:94:47:84:be:fe:77:78:e9:d7:45:46:cd:a3:1b:72:
88:f0:8b:95:35:fa:87:0e:88:9f:38:f6:78:61:12:05:25:cf:
53:60:9d:b1:00:07:91:c1:ac:4b:9a:53:b4:e3:ac:7a:7b:48:
a2:1e:23:f1:d5:06:9a:46:9b:8e:f4:80:e1:95:d6:ae:0d:4e:
55:8a:b2:4e:fc:7c:11:33:0d:66:e8:c2:6b:da:2e:d7:f8:e6:
e6:48:82:42:68:54:4f:d1:3a:fc:9d:3a:41:ca:a8:f3:ce:75:
54:11:56:23:b9:40:df:62:ef:11:a0:a8:50:ed:4e:cf:a1:1c:
e8:e2:51:c9:72:e3:1f:aa:59:a5:94:64:79:fb:ac:04:e3:d6:
39:66:d2:96:c2:41:57:be:e0:de:78:89:9b:a3:93:74:15:3f:
50:46:f2:f4:cc:d9:8c:1f:00:62:22:1b:17:df:03:c6:30:20:
d7:b7:e2:6b:d4:c6:74:b4:0d:7b:d1:00:77:b6:81:04:c6:8f:
5a:d6:40:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org