Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2Ze0vqFlJWsLev5ALdELpvxnADk.roa
File: 2Ze0vqFlJWsLev5ALdELpvxnADk.roa (raw, json)
Hash identifier: wBE1Xe7jzsa8utu17gBM1dqA2sdgkd1VRPiTVqrzSko=
Subject key identifier: D9:97:B4:BE:A1:65:25:6B:0B:7A:FE:40:2D:D1:0B:A6:FC:67:00:39
Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892
Certificate serial: 3809BB7A
Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2Ze0vqFlJWsLev5ALdELpvxnADk.roa
Signing time: Sat 01 Jan 2022 05:53:24 +0000
ROA not before: Sat 01 Jan 2022 05:53:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34948
IP address blocks: 78.109.80.0/20 maxlen: 20
193.189.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940161914 (0x3809bb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892
Validity
Not Before: Jan 1 05:53:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d997b4bea165256b0b7afe402dd10ba6fc670039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:84:05:87:6f:a5:81:aa:b9:37:b5:b0:ea:
6d:62:5e:25:12:dd:1e:1d:b2:88:58:38:e1:f6:57:
e9:db:dd:eb:6c:db:1b:5c:5d:fd:f1:fb:2c:d1:4f:
94:6a:be:01:42:5c:15:5b:9e:f1:31:bb:4b:3a:a2:
af:a3:77:9d:1c:d1:4d:8a:1b:4c:ca:6d:8e:44:ce:
6e:2d:5d:d2:7b:b5:9c:f3:36:28:62:55:9f:f2:a6:
14:d6:2b:4a:22:24:50:bf:51:09:0a:e3:e0:3c:de:
45:b8:03:ed:1a:9f:e1:1b:6f:da:ba:2b:cc:d4:8c:
ca:ee:41:3d:9a:a6:95:7b:9e:64:9d:4a:4a:08:01:
43:18:b0:19:47:f7:5a:56:08:2e:e7:1d:b0:ef:a1:
4a:1c:4a:44:fc:88:f7:de:dc:ac:e1:18:eb:96:11:
17:a6:c1:84:02:96:25:67:a2:20:41:5d:2b:5a:51:
8e:7b:c9:92:b7:3f:46:7e:a9:14:84:64:6b:cf:32:
63:0c:da:ee:e1:e7:62:be:96:31:6a:a2:85:09:cd:
0f:dd:dc:24:56:56:c8:0d:f3:82:c4:eb:af:74:55:
41:5f:7e:d7:a5:82:9b:1e:39:df:49:9e:89:c8:ae:
16:51:87:17:ac:c2:c1:9a:e4:2b:e5:64:47:93:3a:
56:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:97:B4:BE:A1:65:25:6B:0B:7A:FE:40:2D:D1:0B:A6:FC:67:00:39
X509v3 Authority Key Identifier:
keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2Ze0vqFlJWsLev5ALdELpvxnADk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.80.0/20
193.189.143.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:81:07:ac:0d:57:ea:5f:c0:94:88:41:1c:f6:7c:1c:92:72:
13:56:27:3b:82:5f:d6:2f:67:63:16:2f:79:4e:92:15:95:11:
00:30:d7:a9:81:b3:3c:23:d7:4b:38:bf:57:1a:e7:9e:26:fd:
80:2b:20:08:7f:1f:c7:d2:a9:32:ea:c0:f0:00:e8:9d:87:4a:
71:94:d8:9f:0f:67:75:10:b8:af:aa:1a:48:f1:f2:49:10:8f:
0b:a4:87:b8:19:a7:0b:81:0c:63:ce:0b:21:a4:c1:0e:8e:55:
8c:34:27:72:2b:93:98:3a:bd:88:67:de:9f:e3:36:21:70:d9:
80:3e:40:0f:2d:cd:5f:63:6e:b8:d6:d9:f1:6b:88:ac:4c:70:
4f:7a:10:5c:8b:65:53:dc:d2:10:a8:ce:a5:09:09:bd:03:73:
8c:54:57:2f:1a:82:c5:c6:aa:78:1b:53:f3:f1:dd:42:52:0c:
d6:81:f3:e2:f0:b6:79:09:b2:b6:67:6f:fe:fe:4d:90:2f:20:
e4:a7:b3:a2:77:35:38:fe:e7:03:a3:25:3a:79:22:ef:62:60:
ed:ff:2c:58:23:f1:d5:f8:6f:97:61:8e:bc:81:5d:cb:7d:0f:
f0:2d:39:85:30:65:ae:d0:44:a8:34:11:93:a1:07:6c:84:69:
23:c5:b8:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:11 2023 by rpki-client on console-fra.rpki-client.org