Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/vzCNMbQe4_yZ_kMMErGlcN2Z7y8.roa
File: vzCNMbQe4_yZ_kMMErGlcN2Z7y8.roa (raw, json)
Hash identifier: do0FKQMlr1W3jsvwD7VmtxY5zMSc00Ixm67Em32Nx08=
Subject key identifier: BF:30:8D:31:B4:1E:E3:FC:99:FE:43:0C:12:B1:A5:70:DD:99:EF:2F
Certificate issuer: /CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
Certificate serial: 0100E800
Authority key identifier: 12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/vzCNMbQe4_yZ_kMMErGlcN2Z7y8.roa
Signing time: Sat 01 Jan 2022 11:00:46 +0000
ROA not before: Sat 01 Jan 2022 11:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 188.93.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16836608 (0x100e800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
Validity
Not Before: Jan 1 11:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf308d31b41ee3fc99fe430c12b1a570dd99ef2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2c:3b:ae:14:57:c6:c8:10:41:65:5e:89:ff:
47:1d:73:5b:fe:d4:47:6c:76:13:41:08:df:02:17:
c5:4e:4f:7f:66:15:e5:22:e9:2a:e2:82:ec:c4:8b:
02:4b:14:f5:e2:7f:bc:2e:e2:e4:1e:50:92:96:7c:
c4:cc:5d:3b:25:43:88:a3:7c:48:5b:86:88:e9:f4:
bb:17:b1:c6:ae:15:e3:27:09:5b:82:f0:eb:3b:88:
b2:c8:bf:14:46:48:81:00:eb:ba:c2:d9:06:35:0c:
87:23:92:69:36:4b:9d:e8:39:35:2d:c0:a5:b4:a5:
d2:9b:86:a2:56:74:f4:56:dd:4e:30:43:8b:15:74:
5e:41:18:ad:3d:b3:7a:25:52:94:54:3e:35:cc:ae:
03:13:85:10:74:5b:ab:37:4b:79:a4:00:ee:1f:92:
52:82:0d:28:4e:1b:4f:15:cb:51:cb:39:4f:cb:42:
c3:00:ef:a2:9b:8f:08:b5:16:1c:cc:04:ac:55:d7:
6d:ae:d9:0a:fb:9b:26:9d:e1:db:eb:42:78:25:e6:
24:cd:1f:7f:9e:b3:d0:76:53:19:70:a5:2a:e3:65:
c9:03:00:19:8d:c8:17:b4:9a:41:f0:ac:f8:20:25:
78:eb:5e:fa:fe:b8:fa:94:1b:0f:fb:01:12:9e:89:
81:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:30:8D:31:B4:1E:E3:FC:99:FE:43:0C:12:B1:A5:70:DD:99:EF:2F
X509v3 Authority Key Identifier:
keyid:12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/vzCNMbQe4_yZ_kMMErGlcN2Z7y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/EhLz1gsgjP8J0F5Jxr5LFuis12g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.137.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c5:26:04:70:02:2b:b3:1e:ca:9a:a4:ed:1f:d5:ac:7f:76:
fd:a8:e6:1e:f9:b8:19:7b:c1:ff:6f:a3:0e:29:d4:63:a9:e5:
f4:a2:5a:b1:e4:f7:a6:0f:f6:5b:59:68:f5:d7:e5:d4:25:3e:
58:43:f1:e7:f3:47:01:72:8b:f1:f4:40:2b:2e:a0:5f:a6:9b:
37:a9:80:28:56:a4:ba:22:73:6f:b0:bf:7b:94:38:6a:2a:6e:
38:ac:34:87:b1:57:f7:de:07:55:9b:43:8a:98:78:a0:93:44:
c0:12:d6:b2:bc:8b:19:0a:6f:21:5d:05:e5:36:0b:56:b4:77:
24:ad:93:71:27:da:51:3e:fc:8c:c9:59:63:ed:47:a1:59:17:
6c:3e:15:ef:88:f9:84:63:4d:a9:9f:e0:7c:5a:e4:4e:dc:ac:
1a:60:3f:bd:52:46:1f:21:a6:bc:a4:79:6f:b8:4e:9f:3e:cc:
72:f2:64:29:d9:62:bf:a7:af:75:00:da:5a:8e:62:32:e8:f2:
0d:df:e6:e5:30:59:69:fe:3b:72:b0:96:06:66:73:30:b2:90:
36:aa:c2:f4:8b:fd:39:bd:2b:79:c6:18:56:e5:09:c9:3f:ed:
2a:64:bd:44:9a:6b:d9:95:f7:32:2e:e0:8c:06:9d:36:82:21:
f0:9a:67:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-fra.rpki-client.org