Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ZjAhJiG-WNLZdNatgeZp8-0B5mE.roa
File: ZjAhJiG-WNLZdNatgeZp8-0B5mE.roa (raw, json)
Hash identifier: usCvk2YyXWGWMv5vWdxCz8y7mPBOW6dzE/Jgw/ys+FA=
Subject key identifier: 66:30:21:26:21:BE:58:D2:D9:74:D6:AD:81:E6:69:F3:ED:01:E6:61
Certificate issuer: /CN=01335442514d5249b5143cfdf821216bb5c52940
Certificate serial: 03E59E99
Authority key identifier: 01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ZjAhJiG-WNLZdNatgeZp8-0B5mE.roa
Signing time: Sat 01 Jan 2022 06:57:06 +0000
ROA not before: Sat 01 Jan 2022 06:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203153
IP address blocks: 88.212.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65379993 (0x3e59e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01335442514d5249b5143cfdf821216bb5c52940
Validity
Not Before: Jan 1 06:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6630212621be58d2d974d6ad81e669f3ed01e661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:00:66:bd:9a:ba:8a:d0:6f:1c:e2:1c:4e:06:
e2:3d:f1:26:38:f2:dd:ff:4e:63:49:00:61:7c:bd:
c0:49:a3:6a:e6:06:c0:9e:c7:b0:9f:ca:a1:f7:70:
81:3f:46:47:da:cc:d3:77:ac:3d:e3:78:b8:4a:7b:
bd:ba:08:61:12:4a:20:98:41:5d:ce:7d:b5:61:80:
91:f6:1a:27:59:09:f8:03:4e:96:5b:85:c2:89:d5:
e9:93:64:62:f3:2d:d3:fe:25:7d:b4:0c:a3:64:a5:
f3:6d:d4:4d:28:0a:33:47:fd:28:4d:e1:c7:36:53:
7c:6f:c1:45:e0:2a:8a:af:a5:82:c3:66:2a:04:cb:
a6:98:68:26:5b:9e:ed:53:50:4d:22:30:32:7e:e7:
f2:f3:dd:2b:21:6c:dd:18:8d:83:74:58:75:0c:40:
c3:16:6a:0b:cb:ec:49:da:ff:0b:ec:72:82:7a:b7:
c1:48:89:08:2f:fd:65:f2:08:e9:6b:45:b3:1c:b7:
16:ce:4b:43:b3:2d:1a:df:c9:a5:6e:4b:f5:fc:7d:
00:8c:89:70:3f:65:97:7b:54:f8:92:91:78:2e:1a:
3d:dc:dd:b0:c0:76:19:03:8d:20:4d:84:8e:79:cd:
ee:40:01:b5:2f:0f:4d:6f:e7:4c:bf:5c:c3:d0:63:
d5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:30:21:26:21:BE:58:D2:D9:74:D6:AD:81:E6:69:F3:ED:01:E6:61
X509v3 Authority Key Identifier:
keyid:01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ZjAhJiG-WNLZdNatgeZp8-0B5mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ATNUQlFNUkm1FDz9-CEha7XFKUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.212.228.0/24
Signature Algorithm: sha256WithRSAEncryption
65:42:6d:9a:97:51:05:2d:39:62:bf:58:60:b6:64:18:40:ab:
18:3c:2f:ac:57:37:57:91:c8:7b:fe:26:d0:d0:bd:b8:36:b1:
8a:fc:58:a9:11:ea:b7:ee:b8:75:10:5f:e5:2d:a8:b5:77:7b:
d4:62:4b:c5:fe:23:5d:24:a9:91:63:c0:24:11:f1:fd:58:1a:
be:97:6d:9c:5c:54:9d:2b:15:d2:f9:95:d5:e5:1d:b1:93:71:
f4:bb:9e:b5:95:74:5c:a1:e9:55:1a:e3:28:2b:b9:4e:a4:af:
13:71:44:0d:49:48:26:06:92:07:15:65:b9:e5:8f:7e:98:99:
a0:b0:2a:19:95:74:cd:8a:90:b6:fd:f0:01:a0:54:89:06:db:
e5:7e:56:72:f5:5c:1c:26:b0:b4:e9:da:16:79:d3:79:46:69:
78:4c:42:33:e0:3f:ae:eb:2f:60:06:ef:fe:54:69:59:ea:19:
d3:c0:7d:4a:ec:f8:54:e2:44:99:b9:8a:66:0d:eb:3e:c3:8f:
2e:bb:a2:98:a6:af:00:27:d0:8e:f6:a8:3a:1f:f7:c3:44:0f:
68:da:6f:16:0b:ea:57:4c:79:d1:13:50:7c:d0:95:de:ec:51:
8e:59:6c:02:91:57:d7:4d:75:c9:fc:7f:d6:4b:c7:e8:03:ad:
45:84:80:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:16 2023 by rpki-client on console-ams.rpki-client.org