Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/46aabf-dad0-4d76-a5b5-88db0125a6b8/1/zNFt4LaVBHYcO2Vj4wh6dAk4_Rk.roa
File: zNFt4LaVBHYcO2Vj4wh6dAk4_Rk.roa (raw, json)
Hash identifier: nOFWB0FksovO8M/drQg4HObTl91iPzIpFOZxkRdVyrA=
Subject key identifier: CC:D1:6D:E0:B6:95:04:76:1C:3B:65:63:E3:08:7A:74:09:38:FD:19
Certificate issuer: /CN=e4b4c53af65f0b8396b95b4d07d4ec4e7be277e5
Certificate serial: 13A902B8
Authority key identifier: E4:B4:C5:3A:F6:5F:0B:83:96:B9:5B:4D:07:D4:EC:4E:7B:E2:77:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LTFOvZfC4OWuVtNB9TsTnvid-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/46aabf-dad0-4d76-a5b5-88db0125a6b8/1/zNFt4LaVBHYcO2Vj4wh6dAk4_Rk.roa
Signing time: Sat 01 Jan 2022 10:58:17 +0000
ROA not before: Sat 01 Jan 2022 10:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33823
IP address blocks: 195.12.52.0/22 maxlen: 24
195.28.184.0/23 maxlen: 24
193.25.110.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329843384 (0x13a902b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4b4c53af65f0b8396b95b4d07d4ec4e7be277e5
Validity
Not Before: Jan 1 10:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccd16de0b69504761c3b6563e3087a740938fd19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e7:b7:0f:f2:af:22:f6:72:c5:b3:29:07:0a:
98:52:ce:db:b3:cc:a5:ab:18:f9:33:9e:a3:b9:a1:
d6:3d:3b:d3:db:c9:8c:be:c8:f7:a6:7e:8e:f3:c6:
b6:3c:34:4e:dc:2a:e0:38:88:6e:77:ef:e0:fd:05:
e4:fa:17:15:ce:c9:62:08:7c:c4:e0:8f:30:73:86:
a5:bb:05:d7:72:54:3e:1e:dc:cc:13:e2:e1:1c:91:
f3:8a:47:5c:20:16:72:de:b7:35:01:66:d4:b9:ce:
14:62:13:ac:7a:79:13:18:00:c0:55:e2:43:ed:d9:
c2:5f:32:9c:4d:5d:17:e5:5c:3d:cf:5b:55:38:02:
94:9b:2e:20:14:a5:70:33:18:97:3b:23:6f:9d:5c:
4b:03:1f:e7:c7:b3:78:0e:61:e6:db:f4:eb:bb:5f:
73:e9:c5:d7:52:d1:69:26:f6:78:92:40:99:68:d8:
1c:c2:35:b8:51:74:d6:40:8f:39:39:8a:5c:14:69:
4b:ee:ae:f0:62:18:e8:d0:2d:85:c8:73:55:7a:7b:
c7:e5:5e:44:01:41:ee:19:33:4d:ef:bf:69:3d:45:
78:65:9c:b6:00:35:ad:c1:85:10:d5:08:df:a9:9b:
11:07:9c:5e:07:3d:5c:c9:0e:0d:7e:3d:ab:21:ab:
ec:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D1:6D:E0:B6:95:04:76:1C:3B:65:63:E3:08:7A:74:09:38:FD:19
X509v3 Authority Key Identifier:
keyid:E4:B4:C5:3A:F6:5F:0B:83:96:B9:5B:4D:07:D4:EC:4E:7B:E2:77:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LTFOvZfC4OWuVtNB9TsTnvid-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/46aabf-dad0-4d76-a5b5-88db0125a6b8/1/zNFt4LaVBHYcO2Vj4wh6dAk4_Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/46aabf-dad0-4d76-a5b5-88db0125a6b8/1/5LTFOvZfC4OWuVtNB9TsTnvid-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.110.0/23
195.12.52.0/22
195.28.184.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:82:64:4c:09:4e:e0:0f:3a:2e:ba:42:29:f8:eb:32:7b:11:
c9:32:8e:3d:2d:ef:fa:41:ca:9a:eb:e0:64:8c:84:69:cc:1e:
e1:e8:36:3a:d8:8d:2c:93:7f:9c:af:06:a1:21:6e:0f:e1:12:
89:0c:04:29:96:c0:5e:2c:5c:b4:66:e2:9d:7b:f5:b3:f5:e9:
c4:56:8e:44:18:e3:05:6f:57:97:7b:fd:a9:de:00:3f:99:3c:
99:c3:be:85:25:37:f7:88:d9:b1:9a:57:fe:59:28:58:2d:8b:
04:d3:e9:83:04:e4:6d:4b:ad:62:9d:30:de:8f:4d:1d:1b:36:
49:4f:a3:b4:d1:dc:e9:05:4f:e7:cd:8c:08:de:6a:66:36:e6:
5f:7b:cf:f5:a6:2b:dd:11:03:80:9f:65:50:3f:22:92:5f:7d:
ca:10:42:61:db:ce:bb:61:3b:fe:c6:b8:b8:cf:a8:2a:75:cc:
5c:99:d3:e7:f9:59:6c:69:7c:b9:53:85:0b:0d:95:b9:82:92:
fe:b1:e6:80:f0:b0:b8:46:76:36:29:23:f7:3a:96:1b:24:48:
0b:14:f4:4b:77:e2:90:20:38:6c:16:77:03:41:39:37:a9:23:
68:2a:92:b0:39:92:13:15:20:36:49:ea:bc:c0:f9:eb:4f:e9:
21:9d:d8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-fra.rpki-client.org