Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/db4d38-a514-427e-8d76-cc64d13a612c/1/zISg1sTZjd6rRvWIZVp2suEP82A.roa
File: zISg1sTZjd6rRvWIZVp2suEP82A.roa (raw, json)
Hash identifier: 6IH9d79CVBUOZsHvCpEl1i2ii5haOLwSYae2q7pUlqw=
Subject key identifier: CC:84:A0:D6:C4:D9:8D:DE:AB:46:F5:88:65:5A:76:B2:E1:0F:F3:60
Certificate issuer: /CN=ee8b27904d11bcf536774d541542082cfafe8eaa
Certificate serial: 0185629491009E4FFA63DDA4DB9DD6BDCB0C
Authority key identifier: EE:8B:27:90:4D:11:BC:F5:36:77:4D:54:15:42:08:2C:FA:FE:8E:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7osnkE0RvPU2d01UFUIILPr-jqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/db4d38-a514-427e-8d76-cc64d13a612c/1/zISg1sTZjd6rRvWIZVp2suEP82A.roa
Signing time: Fri 30 Dec 2022 10:29:41 +0000
ROA not before: Fri 30 Dec 2022 10:29:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16085
IP address blocks: 193.109.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:94:91:00:9e:4f:fa:63:dd:a4:db:9d:d6:bd:cb:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8b27904d11bcf536774d541542082cfafe8eaa
Validity
Not Before: Dec 30 10:29:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc84a0d6c4d98ddeab46f588655a76b2e10ff360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9b:17:40:1c:99:75:be:2d:b5:ab:a6:20:0b:
6c:4b:d6:c1:7c:7b:f6:29:0c:d2:65:a0:e1:af:26:
1a:40:39:64:a9:c4:3f:ee:2f:9f:92:b2:cf:30:6a:
8b:3c:f2:55:6c:4d:fe:a6:0b:e5:d1:6d:d7:41:9a:
1b:6f:4d:83:b9:10:1c:18:b6:7b:60:ed:ec:d7:20:
ea:03:e1:4f:94:44:f4:dd:76:a0:db:a8:c2:4f:f7:
23:cb:76:f5:61:53:fe:dc:f0:c7:76:d4:de:b6:be:
b7:d1:c9:72:b1:93:27:f5:18:d6:86:8b:f5:f7:38:
cb:12:3a:a5:3e:49:e8:1d:d3:18:29:d9:ac:56:0c:
e4:aa:93:c4:d8:e6:b0:76:79:8e:24:27:70:9e:8f:
cf:7a:93:b9:1e:86:c0:6f:92:be:71:30:16:19:3c:
2e:5e:fa:50:ce:b5:4a:8e:26:27:5a:d5:ef:18:84:
c4:1b:63:9c:72:72:83:6b:ab:76:29:56:21:84:7f:
0f:a8:c8:bb:42:b1:22:f7:2c:58:1b:99:d2:db:02:
a4:99:e5:5a:bd:73:a2:69:be:14:48:28:e1:a2:af:
cc:f8:0a:8f:a7:de:3f:dc:ef:db:1f:48:f2:e7:65:
56:62:43:93:d4:b2:a8:aa:97:ba:7f:8d:6c:8e:82:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:84:A0:D6:C4:D9:8D:DE:AB:46:F5:88:65:5A:76:B2:E1:0F:F3:60
X509v3 Authority Key Identifier:
keyid:EE:8B:27:90:4D:11:BC:F5:36:77:4D:54:15:42:08:2C:FA:FE:8E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7osnkE0RvPU2d01UFUIILPr-jqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/db4d38-a514-427e-8d76-cc64d13a612c/1/zISg1sTZjd6rRvWIZVp2suEP82A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/db4d38-a514-427e-8d76-cc64d13a612c/1/7osnkE0RvPU2d01UFUIILPr-jqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.229.0/24
Signature Algorithm: sha256WithRSAEncryption
22:97:86:ce:6c:b2:3c:91:93:e7:20:78:9a:00:0c:af:f0:a2:
26:b6:b8:25:24:84:05:42:e9:e1:ef:39:2f:7a:eb:68:72:69:
86:02:de:3a:33:36:5f:da:57:a2:91:11:89:24:f9:f6:5b:64:
d5:5e:35:fb:b2:7f:c3:3e:b1:fc:c7:aa:eb:64:92:40:51:55:
e3:62:e1:20:cf:aa:58:89:1f:eb:aa:21:8c:35:2d:ee:35:53:
75:ff:aa:f9:7d:3c:f9:5d:af:3c:29:85:96:9d:01:a9:8c:31:
cc:0f:22:4a:00:99:f9:3f:b1:31:dc:5a:29:39:06:17:af:23:
ae:3f:60:a1:48:5e:de:df:e8:ac:9f:40:c3:9f:78:11:22:9b:
04:2c:9e:cc:38:03:0d:a5:da:6c:d7:c0:16:12:8f:5e:7c:60:
ca:9b:cb:e7:e8:0e:95:9b:6c:df:79:f5:1b:38:6b:49:d1:54:
ba:33:b8:9f:7d:32:48:ad:11:a6:b0:f2:5e:cd:f4:62:ad:55:
25:23:8b:2d:d2:47:f0:6f:ac:a2:48:df:c8:6e:27:ab:ed:7c:
52:13:81:37:4b:f2:dd:27:31:0b:29:7c:b8:2b:61:02:a3:fa:
0c:6b:b5:dd:72:00:5c:bb:97:f9:2b:64:2b:57:14:4a:03:6f:
b0:78:08:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:11 2024 by rpki-client on console-fra.rpki-client.org