Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/zjvf49CYrgxxz_cVtpLabIQPXOY.roa
File: zjvf49CYrgxxz_cVtpLabIQPXOY.roa (raw, json)
Hash identifier: 4XGEydaWc4yRetczoMHPfQ2dhHehezShYXhp/Durvbo=
Subject key identifier: CE:3B:DF:E3:D0:98:AE:0C:71:CF:F7:15:B6:92:DA:6C:84:0F:5C:E6
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 01843FA2E1B000BF1C95CA90B2ACBFBA6D57
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/zjvf49CYrgxxz_cVtpLabIQPXOY.roa
Signing time: Thu 03 Nov 2022 22:35:49 +0000
ROA not before: Thu 03 Nov 2022 22:35:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 193.148.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3f:a2:e1:b0:00:bf:1c:95:ca:90:b2:ac:bf:ba:6d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Nov 3 22:35:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce3bdfe3d098ae0c71cff715b692da6c840f5ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:89:1f:e9:a6:8c:fd:5f:e6:86:03:cb:54:0f:
2f:66:71:35:68:af:20:db:b9:08:cd:98:b5:fc:ef:
06:f2:9a:a4:37:07:40:ff:f0:68:53:b1:70:79:e5:
25:f3:c7:d7:85:2b:47:ba:fd:a8:84:02:c1:ea:48:
6f:49:48:dc:7f:2a:f9:db:b0:d0:e1:36:7d:86:cf:
87:e3:1d:7e:5c:ba:73:04:16:4f:27:04:93:fc:a1:
fc:f4:4e:95:f5:6e:7e:54:bf:65:20:2d:69:33:0b:
22:fe:18:94:ef:7e:cb:b2:3f:13:dc:d9:1b:04:67:
97:5e:63:a3:a6:9b:36:74:c3:56:1c:2a:fe:da:e5:
9a:51:33:dd:fc:68:f5:9c:bd:21:23:0a:0e:7a:28:
c4:b9:2b:f4:95:60:10:ac:f5:23:3e:ef:48:4b:ae:
79:c8:fc:94:68:62:32:ab:5e:6f:bb:d5:68:5a:87:
44:36:0f:0e:64:27:22:f4:5a:ed:72:7a:32:97:4e:
e0:3a:d6:62:74:87:bb:4d:c2:df:54:bf:ca:56:c7:
e9:87:c7:5f:a3:fd:84:e4:c1:9c:3c:99:e6:c7:0e:
47:fd:b1:e7:43:33:c6:b4:5f:a4:fa:b5:7b:65:b3:
d1:e3:f8:a0:bd:d2:7a:7e:ec:6c:56:74:e7:9e:e2:
5a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3B:DF:E3:D0:98:AE:0C:71:CF:F7:15:B6:92:DA:6C:84:0F:5C:E6
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/zjvf49CYrgxxz_cVtpLabIQPXOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.95.0/24
Signature Algorithm: sha256WithRSAEncryption
57:49:8f:ea:e8:d8:b4:1f:02:20:6d:e1:33:d6:8d:28:e6:5a:
17:49:84:0b:02:ea:51:d6:79:10:7b:00:2d:e6:c7:69:1a:cf:
d4:ca:84:48:85:1a:87:0b:8b:07:8c:4f:c4:c1:52:a8:be:3d:
38:eb:46:e6:53:c9:3b:8f:00:f6:1f:3e:0b:30:9d:30:da:71:
6c:3a:54:cf:55:94:b1:c2:61:c8:88:2a:26:b7:54:80:99:c5:
1d:0d:aa:c4:32:66:8e:e3:71:bb:01:a6:0f:39:3c:d7:a4:ef:
0e:55:a4:78:f1:55:f8:f5:44:12:9a:a8:48:14:7e:3f:bd:77:
a3:e0:3d:29:98:0a:0e:b9:53:96:cb:e0:87:2c:0b:9c:66:54:
89:95:96:33:16:f2:24:1a:a3:b3:de:8f:69:6f:88:5f:84:19:
d4:c9:41:c8:81:8c:6e:db:f1:54:6d:89:3a:61:19:4f:ea:4b:
b6:03:dd:85:62:2d:0c:21:a8:08:a1:4f:ff:92:b3:f9:37:e2:
95:cd:95:78:cf:38:2b:4b:5a:36:44:d8:e0:d3:02:7c:72:67:
30:ca:48:b1:3e:f8:f4:e5:21:e9:53:a6:0b:1f:d5:c4:07:c7:
5a:f6:bc:6a:7f:27:60:c9:0d:38:65:2d:a5:bd:cc:9c:15:1a:
81:6a:33:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:58 2023 by rpki-client on console-fra.rpki-client.org