Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/zzJ1HLjONbTYukPnQzG4Ny8t7zs.roa
File: zzJ1HLjONbTYukPnQzG4Ny8t7zs.roa (raw, json)
Hash identifier: ltmPO56NZbTgylTzVGoVnH0+oWynfJxpzKQXdNi0HHY=
Subject key identifier: CF:32:75:1C:B8:CE:35:B4:D8:BA:43:E7:43:31:B8:37:2F:2D:EF:3B
Certificate issuer: /CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Certificate serial: 66EAD0
Authority key identifier: A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/zzJ1HLjONbTYukPnQzG4Ny8t7zs.roa
Signing time: Sat 01 Jan 2022 00:52:54 +0000
ROA not before: Sat 01 Jan 2022 00:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44189
IP address blocks: 195.5.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6744784 (0x66ead0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Validity
Not Before: Jan 1 00:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf32751cb8ce35b4d8ba43e74331b8372f2def3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:76:70:cb:06:02:4e:c1:e5:b0:85:95:54:27:
43:ea:22:38:33:11:14:9b:c0:9a:f4:b3:f2:5c:1f:
1c:a3:e5:6e:ac:7e:58:7b:1d:31:0c:49:c4:3a:9f:
06:40:94:d6:f9:a1:09:7b:34:32:12:29:c7:08:cc:
a3:1b:ef:e5:53:7c:66:7a:0b:b2:67:f4:12:2b:e3:
0b:f4:2e:48:51:09:b3:b3:95:31:a9:14:c9:bb:ff:
17:24:8c:7a:35:e9:8b:9f:2a:37:26:3e:b2:eb:e9:
8f:67:65:6e:7f:ed:02:b6:e8:f5:1d:0d:d8:a4:5f:
66:e4:84:69:4b:19:38:e2:3c:a9:cb:e9:f2:9d:9c:
12:37:0a:f0:f3:8e:52:4e:e6:23:59:41:48:61:14:
c3:d6:46:08:f2:97:83:2a:11:a1:99:85:9a:1d:db:
8c:0f:a7:a5:c8:3d:c1:b3:68:53:93:84:27:1a:83:
9d:d7:74:55:a9:a3:56:6c:68:41:a5:3b:6a:1c:60:
e4:3d:bd:f5:f5:2a:c9:37:ff:a1:07:fe:23:88:a8:
f5:1a:87:34:aa:b9:c7:39:42:2d:17:76:08:4c:a8:
13:48:a8:4b:00:88:26:0a:ba:0c:62:9f:c2:6b:53:
4c:62:27:2e:6f:11:c8:c1:e6:cc:b2:ad:40:de:1a:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:32:75:1C:B8:CE:35:B4:D8:BA:43:E7:43:31:B8:37:2F:2D:EF:3B
X509v3 Authority Key Identifier:
keyid:A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/zzJ1HLjONbTYukPnQzG4Ny8t7zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.173.0/24
Signature Algorithm: sha256WithRSAEncryption
04:56:aa:78:d7:c3:49:b3:31:c9:b8:6c:57:88:87:83:f7:9c:
d4:72:22:5a:e3:6d:1a:fc:c7:39:28:0d:07:64:59:c1:80:20:
cc:72:9f:5d:09:51:05:8a:63:aa:ab:de:d1:6f:5f:5a:32:79:
eb:48:40:15:c6:37:00:52:31:df:b2:30:1f:61:bb:c5:f2:fe:
3c:c2:09:15:96:be:69:c6:61:65:28:00:2c:33:29:2d:af:56:
00:a9:3d:fd:1c:0a:79:b4:be:08:57:8e:90:61:a1:98:e8:32:
6e:77:2f:6c:74:bb:ff:d7:b8:97:6b:fd:33:5e:d2:31:86:a3:
a6:d6:b1:ee:b7:4d:f4:02:6a:16:c5:94:db:be:29:1c:6e:1a:
90:d4:ab:7c:1b:e5:cd:02:96:a4:3a:2a:16:52:91:d5:5b:4c:
4a:3c:df:34:9d:83:21:77:bf:54:7d:48:54:44:6c:a9:fa:ab:
47:95:85:73:15:e8:f2:f6:cd:fc:07:52:28:4a:71:55:9b:3a:
d8:dc:c2:40:6a:af:de:a9:da:e9:22:b7:d9:6a:e2:b9:97:77:
41:10:e6:21:18:1e:10:e7:d1:26:2a:77:49:ff:c4:1b:e2:c5:
90:7d:a5:c7:1b:50:88:f0:6c:70:8f:57:4a:7d:b3:c2:14:72:
e1:4f:c7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org