Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/zK93bGeHhygZdi47DAJ37QofoCc.roa
File: zK93bGeHhygZdi47DAJ37QofoCc.roa (raw, json)
Hash identifier: iSJgiv70RCMCiPKiSvSoA02M3KpTcyW4Qffx+2RBriY=
Subject key identifier: CC:AF:77:6C:67:87:87:28:19:76:2E:3B:0C:02:77:ED:0A:1F:A0:27
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 09085186
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/zK93bGeHhygZdi47DAJ37QofoCc.roa
Signing time: Sat 01 Jan 2022 12:59:56 +0000
ROA not before: Sat 01 Jan 2022 12:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49463
IP address blocks: 213.215.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151540102 (0x9085186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 12:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccaf776c6787872819762e3b0c0277ed0a1fa027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:35:90:ea:c8:e1:72:5c:3e:1e:c2:d5:5e:d7:
21:83:e5:0f:da:bc:85:ac:4c:05:a6:57:22:e5:51:
6f:cd:df:e7:6d:2e:d7:17:0a:a9:0a:da:3b:5d:8b:
8c:89:b4:44:a6:ea:05:d9:06:2e:2f:94:d6:c8:87:
d0:f8:77:2b:01:12:71:fd:5f:4e:18:bc:32:21:f7:
11:ad:7c:6f:ac:ee:76:89:01:05:a9:14:4d:e2:e3:
08:d8:e2:b5:84:ab:cd:83:88:98:e2:92:c8:5a:1a:
60:37:41:82:79:de:10:46:6d:7b:16:85:38:d4:76:
8a:f9:95:ab:3e:b0:c5:7b:77:5e:67:ed:f0:38:79:
bc:5d:fd:a3:36:fb:2a:2f:14:cf:86:8e:b6:85:75:
eb:24:56:d9:ea:1b:c4:81:7d:9f:c6:8f:eb:d5:6d:
d4:a4:c9:45:6b:3e:57:fb:73:d5:02:c0:a4:dc:5d:
c3:38:18:21:3a:a6:ce:58:7f:de:03:9b:9f:4a:94:
6b:62:b7:23:6f:7a:d6:ee:db:06:47:c5:7c:bd:d6:
bf:02:5b:6b:ef:fe:48:6c:3c:67:34:cc:5e:5c:48:
a1:ad:fb:78:88:a1:34:0d:b0:7a:b8:6a:e1:1c:29:
0a:8e:e1:fe:77:35:9e:df:9d:da:fa:36:e2:a2:80:
21:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AF:77:6C:67:87:87:28:19:76:2E:3B:0C:02:77:ED:0A:1F:A0:27
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/zK93bGeHhygZdi47DAJ37QofoCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.28.0/23
Signature Algorithm: sha256WithRSAEncryption
72:2f:1b:b5:08:43:63:4c:f2:38:0a:07:d1:35:94:d8:93:73:
56:8e:83:ac:80:b0:08:94:e3:fb:b3:de:ef:44:f8:7e:67:e2:
fc:db:b9:64:bc:5d:39:68:f0:53:f1:71:48:88:23:68:15:0e:
f0:61:0f:15:b3:30:62:65:48:c9:ab:c9:9f:ca:2a:90:58:7d:
ad:63:ad:66:41:6f:73:a6:06:41:67:4b:08:5c:f7:29:05:54:
1a:dc:17:1b:ca:8a:87:64:ce:57:09:06:30:61:f0:ac:5b:09:
a8:a3:5b:eb:3c:08:13:52:36:99:b1:83:77:5b:7a:6a:39:17:
86:6e:55:3c:4c:70:fb:3f:3f:28:7a:67:cd:16:42:3b:52:75:
73:88:79:74:30:04:9e:4c:88:95:0f:c6:4c:4e:bd:5d:a7:c0:
e9:f4:82:53:10:d9:79:79:05:86:dc:eb:c3:d8:0a:0a:9f:2a:
88:b3:26:64:6a:c8:ec:9c:42:6e:e7:1a:de:39:1a:98:f5:00:
ea:3d:ab:ee:42:fb:84:e3:c9:68:fe:84:bc:c6:d2:1d:af:ed:
12:78:82:e5:d3:d4:b1:f6:5f:cb:44:26:b8:50:2c:eb:6c:80:
e9:7d:51:62:fc:c2:f1:b1:41:bb:61:d2:e7:40:f0:2f:f0:06:
43:41:0f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:31 2025 by rpki-client