Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/ZD-lCPd697VEIIidgEVVw87Q-U0.roa
File: ZD-lCPd697VEIIidgEVVw87Q-U0.roa (raw, json)
Hash identifier: llEi2EO41F0KTp0n9RaoYKiRPj8/AfGdLLwRia5Jh0Q=
Subject key identifier: 64:3F:A5:08:F7:7A:F7:B5:44:20:88:9D:80:45:55:C3:CE:D0:F9:4D
Certificate issuer: /CN=3f296fe945a23180753f67f7748e6f299d2e672a
Certificate serial: 018484EB9AA5175C1F392DC4BDF3A3F75CD0
Authority key identifier: 3F:29:6F:E9:45:A2:31:80:75:3F:67:F7:74:8E:6F:29:9D:2E:67:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/ZD-lCPd697VEIIidgEVVw87Q-U0.roa
Signing time: Thu 17 Nov 2022 09:29:03 +0000
ROA not before: Thu 17 Nov 2022 09:29:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205826
IP address blocks: 193.19.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:eb:9a:a5:17:5c:1f:39:2d:c4:bd:f3:a3:f7:5c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f296fe945a23180753f67f7748e6f299d2e672a
Validity
Not Before: Nov 17 09:29:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=643fa508f77af7b54420889d804555c3ced0f94d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:40:1f:7c:f7:c7:a0:d1:6b:c5:2c:b6:26:84:
1f:a4:12:bf:1d:0f:34:03:f7:ed:41:b9:3d:b9:2f:
8b:52:e0:ac:f8:a5:e6:08:51:f7:1a:e2:1f:5d:e7:
35:03:d1:b6:ad:a0:41:9c:83:11:28:5c:79:75:5e:
30:82:09:ca:bc:4e:cd:7e:6e:39:c0:54:5e:8d:5d:
ef:bd:91:96:fa:2f:30:b4:0e:f5:31:23:9f:70:b9:
11:b7:b3:9e:fc:e7:15:c2:31:de:07:f0:7a:18:73:
e6:ce:41:01:78:36:ef:09:d8:f6:34:24:81:ff:aa:
e0:9c:d0:0c:d5:1e:6f:7d:f4:94:1b:d8:a1:7c:59:
1e:e3:82:2f:55:2f:0b:32:1c:a4:09:f7:54:ef:bd:
7f:4e:e4:b6:19:87:fc:e3:2d:6d:dc:5e:24:4d:ca:
30:a8:27:d4:27:14:67:48:49:e2:0e:17:91:cc:39:
2a:1c:18:98:98:02:d6:a7:6e:93:c5:57:e2:64:22:
51:e9:4a:dd:41:d7:90:04:59:ad:6e:82:bf:ad:b0:
95:a4:20:d4:02:af:ef:38:7d:91:b1:6e:bf:df:e4:
71:c4:ff:71:b3:c4:4c:f7:e0:40:c9:cb:77:21:38:
f6:dc:51:cb:c9:64:27:a0:20:51:b9:a8:72:0b:0c:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3F:A5:08:F7:7A:F7:B5:44:20:88:9D:80:45:55:C3:CE:D0:F9:4D
X509v3 Authority Key Identifier:
keyid:3F:29:6F:E9:45:A2:31:80:75:3F:67:F7:74:8E:6F:29:9D:2E:67:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/ZD-lCPd697VEIIidgEVVw87Q-U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.188.0/24
Signature Algorithm: sha256WithRSAEncryption
76:75:2e:a3:d2:4d:e0:c4:08:87:ca:24:9c:66:f9:a8:b4:df:
1c:93:06:fb:c2:9a:9f:32:c2:2d:6c:dd:54:83:0c:94:8f:79:
37:81:48:4c:1a:25:7a:ca:32:98:54:e4:1b:eb:bc:61:ae:36:
5a:1b:89:d3:54:63:e2:c0:81:83:c2:fa:86:ed:b9:6f:a7:88:
d0:3b:09:74:0b:ff:c7:b1:18:54:09:bb:12:3a:0f:57:b1:e9:
dd:40:d5:8e:47:c7:21:26:22:e7:51:2d:77:bb:69:81:1d:b2:
0c:cd:59:9f:a6:4a:b2:6f:99:0b:9e:0b:98:46:13:f4:c2:d4:
6c:9e:aa:a0:89:c1:8e:9f:c2:d5:8b:55:ef:57:74:44:76:44:
02:b7:03:21:4a:18:41:e1:3b:d1:a4:ff:2e:a1:0c:ac:21:ec:
a7:10:49:26:11:01:7f:0b:5d:26:bf:8d:8e:42:9a:1a:c4:ea:
94:23:ba:22:46:9c:88:0e:c1:c6:b2:2c:bc:a9:8c:a6:ef:09:
6d:ef:5b:9c:80:76:36:cc:2c:77:13:a3:ed:cc:b6:1b:8e:29:
04:f5:32:45:f0:e5:68:f5:95:fe:b3:0f:43:af:6a:04:bf:42:
62:e9:9b:6c:39:2e:76:93:01:59:df:f3:19:b1:21:f3:f5:9d:
a2:ae:8a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org