Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/ZkzbM2-P2J5GkozV2VVHKcsLqrE.roa
File: ZkzbM2-P2J5GkozV2VVHKcsLqrE.roa (raw, json)
Hash identifier: 8TI5fghYQCUJt2xFgHb6knkD7qNfYnlOBa4PRrPIK9w=
Subject key identifier: 66:4C:DB:33:6F:8F:D8:9E:46:92:8C:D5:D9:55:47:29:CB:0B:AA:B1
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018451FAA04F8A84DBA1526E70F917B72A87
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/ZkzbM2-P2J5GkozV2VVHKcsLqrE.roa
Signing time: Mon 07 Nov 2022 12:04:50 +0000
ROA not before: Mon 07 Nov 2022 12:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.37.196.0/22 maxlen: 24
45.67.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:fa:a0:4f:8a:84:db:a1:52:6e:70:f9:17:b7:2a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 7 12:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=664cdb336f8fd89e46928cd5d9554729cb0baab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f9:f5:25:ed:35:86:5d:73:19:21:b1:92:7f:
07:4d:59:3f:32:57:59:4f:44:db:70:e7:92:13:89:
2c:0e:f6:3c:c6:1d:59:0a:42:71:4a:d7:18:05:e9:
62:ba:15:ca:9a:73:7b:6b:2d:ac:70:29:5e:5d:e1:
cb:d6:80:5d:5f:56:f6:2a:ff:72:ff:50:35:a8:e0:
04:6f:1c:9b:0b:f6:8e:b6:8b:0b:5d:fa:1a:a3:f8:
b5:11:2b:d8:a3:cb:6d:33:7c:1d:12:c3:ad:21:b2:
ba:b0:f0:91:8a:14:bc:ed:7c:4a:57:37:fb:e3:84:
da:a2:13:62:ab:e6:f0:dd:0e:9e:6e:cf:0b:eb:76:
fd:8c:27:9f:79:3d:e3:9c:dd:b5:cb:c6:8c:10:74:
7d:44:35:5f:07:dd:bc:3d:5c:07:d4:6e:ed:fe:20:
18:61:ee:ce:63:fc:33:03:d5:36:fd:0b:4c:f4:27:
0a:35:72:ce:cf:45:42:6e:d7:32:51:c9:6c:5e:15:
7d:a3:3f:2a:19:0e:13:2e:9e:f3:cd:f1:28:34:6f:
2e:35:53:59:31:9c:0e:d5:50:62:8c:d7:20:0e:7c:
37:79:e4:a1:42:43:90:ab:9e:02:1a:ac:69:00:6c:
7f:1c:32:b1:b9:82:fd:34:c2:c6:26:ec:97:6a:27:
22:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4C:DB:33:6F:8F:D8:9E:46:92:8C:D5:D9:55:47:29:CB:0B:AA:B1
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/ZkzbM2-P2J5GkozV2VVHKcsLqrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.200.0/22
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
11:f3:ac:12:66:28:a9:6a:1e:bf:5d:41:9b:e0:90:04:9b:35:
d5:d9:f3:d5:30:66:ae:5c:a8:4c:e8:6f:7a:17:74:63:20:3e:
10:52:2c:ee:19:11:e5:98:d2:4b:0f:91:2c:bb:eb:64:42:a1:
c0:e2:66:0b:1d:85:03:80:c8:81:92:31:13:3b:97:bb:10:3d:
6f:51:9c:fa:c7:95:d7:e8:d7:36:a2:2f:6f:55:99:57:bc:b1:
56:dc:32:48:43:d7:29:22:81:71:35:5f:9c:a3:f4:17:47:14:
e7:f9:b9:f9:83:82:58:e8:6b:ce:27:97:e9:76:2c:1a:42:42:
6b:03:c3:30:9b:d5:25:b9:fb:21:5e:1f:99:c3:bb:43:b8:b1:
a9:96:27:e5:c0:e6:c4:78:2a:2e:bc:78:f5:75:bb:07:98:8c:
b1:90:34:3e:db:38:be:40:4d:1b:95:d8:ea:54:03:d0:cd:aa:
65:2b:8e:60:f4:19:0f:98:cb:69:fb:38:5a:a2:05:82:3e:92:
7d:ec:20:95:43:39:b6:b1:bb:88:ce:a5:1a:2b:17:c8:49:10:
7e:48:7a:3c:54:37:04:80:fa:00:48:64:93:7c:c3:37:e5:96:
bb:f0:b5:00:5c:ea:67:82:ca:9d:e9:ee:ae:ad:a5:0a:78:4e:
8a:83:10:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org