Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Z-eEzW7XPo_58IUgkCNO-Vo7GJI.roa
File: Z-eEzW7XPo_58IUgkCNO-Vo7GJI.roa (raw, json)
Hash identifier: SnX3Fc6J4ZPeSe0A2rkvio7VeIguNEbpYHxs4+0ggAg=
Subject key identifier: 67:E7:84:CD:6E:D7:3E:8F:F9:F0:85:20:90:23:4E:F9:5A:3B:18:92
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 424D54DD
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Z-eEzW7XPo_58IUgkCNO-Vo7GJI.roa
Signing time: Sat 01 Jan 2022 14:02:54 +0000
ROA not before: Sat 01 Jan 2022 14:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1257
IP address blocks: 193.180.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112364253 (0x424d54dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67e784cd6ed73e8ff9f0852090234ef95a3b1892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:36:b3:6d:33:a2:a2:39:d1:af:08:0c:ea:1d:
26:91:5c:ad:db:c8:f0:b0:8c:c3:94:1a:d0:b5:25:
48:46:51:82:08:c3:0c:8f:0f:c4:3d:33:e9:d8:6d:
34:93:65:2e:5a:e7:05:d8:9f:03:df:d2:68:11:05:
56:30:37:66:dd:3d:d8:a2:9c:91:0c:c5:2f:d5:31:
51:c5:51:e5:e0:95:7b:ec:76:f2:88:31:d0:cf:30:
22:70:3c:2d:26:c0:41:ea:4d:c8:5c:fd:30:2a:47:
5b:d1:df:68:98:cb:b8:02:8e:86:9d:2e:1e:36:a7:
00:3f:18:6a:62:96:57:e3:e8:89:d6:12:aa:66:ef:
a4:3d:72:34:eb:47:9e:a1:1f:00:6b:53:9e:e0:4a:
33:b8:04:94:27:8d:92:fa:4f:3d:8e:54:26:da:f9:
18:dd:af:54:4a:78:ff:b3:37:36:c7:25:53:3f:54:
8b:32:d8:f8:2c:6d:39:0e:71:18:1c:a8:f6:d4:76:
81:0c:26:f2:e1:b9:59:b9:5a:85:d8:ad:7f:f9:45:
3e:65:f7:a8:1a:a5:0b:b7:1e:7e:bd:85:0d:ac:c8:
42:cd:61:f6:61:ab:1f:61:33:0c:15:17:29:eb:bf:
fd:95:ab:c1:20:7a:05:5c:dd:60:74:ec:bb:ec:45:
61:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E7:84:CD:6E:D7:3E:8F:F9:F0:85:20:90:23:4E:F9:5A:3B:18:92
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Z-eEzW7XPo_58IUgkCNO-Vo7GJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.207.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:7e:82:00:31:0d:e8:76:26:39:b1:81:b6:ac:7d:f1:eb:8d:
b6:2a:0c:59:f7:a6:54:4f:ba:23:0d:3e:8e:7b:29:67:f8:ed:
91:8a:fe:06:fb:bb:fa:72:4d:f6:83:6f:b1:00:c5:60:2d:f6:
eb:b9:28:3f:2d:6c:4d:20:91:cc:68:41:b8:c8:27:c0:a6:7a:
72:64:d6:eb:d4:0f:b9:b5:8c:38:90:2d:50:9b:e1:4f:7d:1c:
e2:44:d1:d6:1c:dc:89:93:db:fb:1c:92:e1:73:fe:13:a1:59:
61:68:cc:77:96:ac:46:9c:ec:38:ed:67:9f:8d:86:1d:d0:7a:
04:7b:d7:e0:a6:0b:9f:ba:1f:44:14:a5:eb:93:e1:52:e5:83:
73:b8:84:83:10:2f:fe:45:26:29:af:d9:4d:e8:aa:31:3c:2e:
87:92:96:f8:5d:3d:21:5b:62:2f:34:a5:12:8e:18:06:46:df:
b9:81:e2:02:ba:f0:bd:39:b7:b6:8d:33:30:1d:f7:3e:82:07:
78:42:2a:54:88:5c:fc:9b:46:be:54:03:ca:fc:9f:e8:25:67:
31:1e:b1:7a:3a:ae:9e:5f:a9:62:25:ef:5f:05:02:56:1b:2d:
a5:da:70:ab:fb:b3:66:65:80:24:21:d7:5c:07:ee:c0:81:48:
91:01:a6:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org