Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/dZBv-8W0jK692zTweInafmTiju0.roa
File: dZBv-8W0jK692zTweInafmTiju0.roa (raw, json)
Hash identifier: FsR8h+PiLoJB8b/iufgxGlZOCYtfHh0WGo9sK+kRMXc=
Subject key identifier: 75:90:6F:FB:C5:B4:8C:AE:BD:DB:34:F0:78:89:DA:7E:64:E2:8E:ED
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0183E5BF6B9F3657338B3017363D49D2DD44
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/dZBv-8W0jK692zTweInafmTiju0.roa
Signing time: Mon 17 Oct 2022 11:41:10 +0000
ROA not before: Mon 17 Oct 2022 11:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211090
IP address blocks: 194.127.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e5:bf:6b:9f:36:57:33:8b:30:17:36:3d:49:d2:dd:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Oct 17 11:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75906ffbc5b48caebddb34f07889da7e64e28eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1a:e9:06:54:9f:9f:7f:36:76:b4:af:0d:fd:
75:9b:58:e4:1a:e2:0d:5d:0f:1d:ac:81:7e:fa:25:
b8:b4:df:13:3f:64:8b:2c:91:d4:db:de:f3:95:87:
f7:4f:fa:b6:2b:f6:82:6b:a1:63:54:7d:a3:d9:c3:
89:99:26:93:73:f1:26:5c:fb:c8:da:77:e5:7b:d8:
7a:82:6f:f3:31:3f:73:24:0e:21:f5:b9:2e:6e:55:
f5:01:3e:1a:73:4c:d5:bf:1c:a3:d2:a5:d9:07:ec:
f7:4a:0d:ce:eb:eb:44:ea:53:90:ee:7a:25:2f:34:
e8:72:bd:ed:a2:84:1e:9c:d3:99:73:44:74:39:3b:
e4:11:e0:2c:c9:a6:53:df:24:b4:a4:60:0c:c2:c6:
05:12:89:a0:17:9b:f2:06:63:a1:1f:07:28:c9:39:
32:19:cd:19:a6:d8:f3:ac:e1:b6:72:ca:5c:e1:ed:
d6:c4:55:d0:aa:0d:be:14:52:59:47:23:39:17:31:
b1:61:05:a0:38:8a:37:6c:1c:02:56:08:32:54:3f:
b2:0e:91:48:9e:67:52:54:a4:5d:c7:8c:f4:14:e8:
04:20:d1:44:44:56:39:32:59:79:49:9d:bb:75:c6:
a7:f0:7a:c9:d2:2d:20:3a:ac:39:2a:45:a8:f5:e8:
31:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:90:6F:FB:C5:B4:8C:AE:BD:DB:34:F0:78:89:DA:7E:64:E2:8E:ED
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/dZBv-8W0jK692zTweInafmTiju0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:09:cf:81:bb:c6:a7:bf:e1:07:a1:73:7e:0b:6d:12:a7:0d:
41:77:99:6f:bc:da:de:ab:c4:62:8b:1f:7b:ea:50:1f:8d:9a:
ea:d9:2b:97:0a:df:a9:b3:49:2d:fb:34:b8:2a:2d:52:25:d9:
26:d2:85:f7:68:6e:4d:8e:10:2d:38:e5:ac:8d:83:cd:11:f5:
1a:38:f1:9a:a5:0e:07:f8:21:97:23:64:d6:90:11:09:3e:77:
71:d8:48:55:8a:8d:a8:df:e8:2d:97:23:79:3e:f9:07:de:31:
65:28:0e:c8:d4:e0:f9:87:87:ff:0a:ed:d0:77:f9:e5:df:f2:
d5:c4:11:7b:11:75:99:ec:d7:e2:0a:b5:8b:cb:72:55:39:da:
8e:f9:65:c4:9f:7f:0d:10:f1:ed:09:aa:b2:40:77:fc:8a:2e:
00:39:2c:29:eb:15:28:05:26:4b:16:a4:f6:a3:bc:38:a3:18:
9a:4e:0d:25:37:83:b5:8e:02:58:87:cb:af:88:33:6f:8b:44:
cd:3a:c7:95:8f:3b:bc:bc:aa:2e:c0:ca:aa:3c:f3:c0:2a:b4:
7f:47:29:11:a0:c8:fc:12:df:98:21:33:b3:74:b6:23:61:90:
72:79:3a:47:9e:93:b1:00:ac:cc:d7:9d:08:fa:79:d6:64:1f:
7f:1e:da:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org