Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ZSBPI4IEPefhgFMiLxDVnQIE7I8.roa
File: ZSBPI4IEPefhgFMiLxDVnQIE7I8.roa (raw, json)
Hash identifier: guok0rlLHhee/na5TjDZCQiPVDAHWXxbMH26RhAzz3s=
Subject key identifier: 65:20:4F:23:82:04:3D:E7:E1:80:53:22:2F:10:D5:9D:02:04:EC:8F
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01844279CF359BD1B5F0728B300CA7D63333
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ZSBPI4IEPefhgFMiLxDVnQIE7I8.roa
Signing time: Fri 04 Nov 2022 11:49:49 +0000
ROA not before: Fri 04 Nov 2022 11:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201634
IP address blocks: 87.107.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:79:cf:35:9b:d1:b5:f0:72:8b:30:0c:a7:d6:33:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 4 11:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65204f2382043de7e18053222f10d59d0204ec8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d4:d1:78:0e:19:86:f0:fe:42:49:1c:0a:75:
0b:bb:3d:c8:e9:79:18:99:4d:0b:df:76:77:2f:da:
7e:5a:d6:d3:a4:39:2b:34:9d:4b:5c:ee:e4:aa:78:
f3:1a:b1:7d:e0:4f:7c:2f:7d:ea:65:75:3c:75:36:
4d:6d:df:bc:64:4e:a1:3c:1c:6c:1f:45:b4:fe:f2:
0e:35:fd:ee:ce:67:db:63:cb:e5:21:92:96:fa:27:
04:2b:68:d4:33:98:ae:51:a8:b1:1a:ab:05:9c:2f:
08:64:02:89:45:54:58:72:8d:fb:cc:fb:19:e7:4b:
ef:19:fc:3e:29:3c:e2:27:45:a3:cf:4c:ac:f5:f8:
34:e9:1f:1b:31:08:04:d6:af:f7:67:76:e9:81:e3:
57:14:07:f9:cd:71:52:36:d0:ce:75:97:3e:a9:b3:
ae:20:14:03:be:46:15:57:87:1f:bd:d7:69:0d:f0:
39:0c:2c:ac:9e:a5:48:2d:54:bb:39:4b:b8:38:7a:
0e:ce:e1:9a:fd:af:44:bd:86:83:6c:c1:c7:a7:76:
f4:93:f2:ae:e8:94:56:c2:1a:b9:70:e3:a2:1a:e4:
71:45:7d:29:2c:20:07:ce:43:d2:b5:06:48:e8:60:
a2:6b:f5:08:45:a4:49:c0:d0:fd:96:96:a3:9a:95:
68:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:20:4F:23:82:04:3D:E7:E1:80:53:22:2F:10:D5:9D:02:04:EC:8F
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ZSBPI4IEPefhgFMiLxDVnQIE7I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.190.0/24
Signature Algorithm: sha256WithRSAEncryption
73:8e:6f:1c:f3:f5:27:0c:cc:05:4e:7c:2c:5e:16:7d:c7:57:
92:80:dd:9c:55:64:8e:05:e9:3f:d0:03:bd:0d:54:04:0e:4f:
39:bb:9c:2c:ff:10:a3:c1:f1:45:89:fe:6e:8c:75:76:6d:66:
be:4a:95:b7:44:c6:c3:13:e3:cb:a6:c8:aa:41:82:91:9b:01:
e1:3e:a7:35:e2:90:88:5b:b8:98:ab:04:7d:26:ca:79:d5:54:
29:cd:97:87:31:20:29:26:04:02:48:4d:f0:2d:2a:48:ba:b7:
6f:5a:2b:3d:95:17:c9:7a:44:20:2d:e4:d0:09:c8:4d:7a:f2:
bb:c4:f7:dc:c8:9f:92:f8:92:60:bd:29:7d:28:f9:52:90:c2:
8a:9e:e1:c2:88:54:6c:82:9a:06:4e:b4:83:0e:95:ef:b6:90:
0b:aa:47:66:de:ab:87:78:46:d8:bb:3c:ff:4a:2b:13:39:dd:
17:0f:b3:0e:39:a7:8b:30:e7:ce:c4:89:e5:77:35:76:ad:c8:
5c:53:02:1d:d0:8f:ac:c3:1f:5d:81:a2:59:0b:fe:91:a1:30:
f0:99:3b:ea:aa:93:81:c7:1d:1f:27:fb:0b:d1:cd:a7:3a:76:
6a:3f:42:23:d5:5b:65:64:0e:d8:eb:61:15:31:d7:d7:6a:62:
bb:64:67:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org