Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/zGfUYNifkXzhQDlLT8T8fAXc5Yk.roa
File: zGfUYNifkXzhQDlLT8T8fAXc5Yk.roa (raw, json)
Hash identifier: 6YgA77G0XJ2w4z+EHn15FDCEoIqlhKYFngrFz2Hb85A=
Subject key identifier: CC:67:D4:60:D8:9F:91:7C:E1:40:39:4B:4F:C4:FC:7C:05:DC:E5:89
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F0D9EF5
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/zGfUYNifkXzhQDlLT8T8fAXc5Yk.roa
Signing time: Thu 24 Feb 2022 17:07:55 +0000
ROA not before: Thu 24 Feb 2022 17:07:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12525
IP address blocks: 195.13.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252550901 (0xf0d9ef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 17:07:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc67d460d89f917ce140394b4fc4fc7c05dce589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f2:e4:9a:26:ab:55:01:52:f8:1c:74:4c:51:
1b:b8:4b:52:3e:96:a7:01:34:6f:be:f7:79:85:85:
67:44:dd:6f:d8:44:53:ca:5b:31:2a:c4:55:90:bd:
75:03:0c:6c:ec:82:74:ba:cb:6a:f8:0b:80:f7:df:
87:0b:33:7a:80:a3:c9:3b:2b:13:a6:a3:03:ee:b0:
f3:a8:e0:42:dc:4d:de:d4:c2:4f:77:20:b7:5f:a3:
a7:20:e8:aa:53:84:55:56:d0:36:9d:81:50:7a:3a:
cf:2a:a2:72:0c:e4:84:5e:d1:05:9d:56:01:a6:08:
f1:2d:42:06:72:55:74:af:a8:37:e6:93:13:70:ae:
5b:50:5a:bc:e3:ae:5b:ac:53:03:50:6f:91:06:68:
18:1e:3d:9e:1e:7e:76:f0:c2:98:90:53:cd:8f:3b:
fe:a9:c3:ee:a8:6e:76:b9:0d:f9:b6:6b:a3:54:09:
8d:7d:e4:9e:46:b5:be:4d:fd:1e:ab:7b:1f:4d:71:
18:7c:ca:f9:58:13:85:8b:e9:1b:34:02:ad:26:51:
02:11:93:39:f1:cf:02:3e:5a:f9:6d:29:6c:37:33:
d6:45:29:f2:75:91:49:0e:09:29:2f:6b:70:20:56:
9b:8d:a2:c1:b7:18:1f:d3:53:d8:be:ec:41:99:74:
4e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:67:D4:60:D8:9F:91:7C:E1:40:39:4B:4F:C4:FC:7C:05:DC:E5:89
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/zGfUYNifkXzhQDlLT8T8fAXc5Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.13.223.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:9f:0d:f0:9b:39:96:f0:a3:b4:1e:cf:12:dd:21:b3:f7:36:
f7:91:9a:17:74:10:30:12:e5:a4:fd:e2:a4:71:a3:2b:8e:b9:
6d:a6:8e:24:c0:b0:15:28:ef:22:0f:f0:b7:26:b8:7a:94:ef:
6f:b1:41:6f:40:a6:c7:3f:63:5f:1a:52:78:92:3e:b5:27:04:
fe:8d:ac:6a:7e:3d:92:8a:0b:b9:ea:41:88:c5:fe:1d:f0:41:
98:67:9e:d3:0b:e2:9f:d4:08:05:99:f6:aa:60:48:aa:e6:2e:
1f:58:93:d0:cf:a4:b6:ae:c1:28:db:ca:5b:a5:38:e7:cd:2c:
4a:a1:4b:00:3c:ea:a3:8c:9c:c3:b6:d9:53:82:fa:02:71:6d:
df:51:c8:a5:43:e9:9a:25:5a:25:30:4c:a7:e5:24:7d:b6:06:
04:25:66:d1:34:39:ce:a2:2f:b2:d2:35:8e:f8:83:81:50:d8:
70:dd:05:ed:52:63:73:cd:83:ec:76:58:65:33:b9:d3:57:50:
e0:d0:26:c5:c3:4d:fc:fc:ad:e4:97:5e:a2:b5:11:63:fb:c3:
6e:2a:22:c9:1b:e7:38:35:14:39:6b:16:e0:bc:a7:16:41:4f:
7c:34:40:32:1e:f3:34:0e:6c:11:21:c7:36:9a:8b:33:67:39:
25:21:6b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:47 2024 by rpki-client on console-ams.rpki-client.org