Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/ZcN_vnq0AcUrjFErAbse_I7E_Fw.roa
File: ZcN_vnq0AcUrjFErAbse_I7E_Fw.roa (raw, json)
Hash identifier: 7BSd2NphM6f4TX0lH+15psLr1tq2qcTIACmZe3rR5GE=
Subject key identifier: 65:C3:7F:BE:7A:B4:01:C5:2B:8C:51:2B:01:BB:1E:FC:8E:C4:FC:5C
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 0183EFF8A0092DF8BF0E9B0E2E77D5955344
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/ZcN_vnq0AcUrjFErAbse_I7E_Fw.roa
Signing time: Wed 19 Oct 2022 11:19:51 +0000
ROA not before: Wed 19 Oct 2022 11:19:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45047
IP address blocks: 93.188.217.0/24 maxlen: 24
93.188.216.0/21 maxlen: 21
2a12:9dc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ef:f8:a0:09:2d:f8:bf:0e:9b:0e:2e:77:d5:95:53:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Oct 19 11:19:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65c37fbe7ab401c52b8c512b01bb1efc8ec4fc5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c7:20:35:68:bf:fc:e5:73:a5:6f:83:08:f5:
84:a8:ed:76:b2:1f:89:5c:00:35:e0:b9:20:fd:c7:
20:a5:fe:cf:ce:dd:db:e3:64:5b:9e:cf:46:83:d1:
28:0d:35:34:eb:df:43:71:6c:0c:90:6c:18:fd:d8:
5f:58:15:be:11:94:03:9d:10:e4:47:8d:7c:bf:7d:
f2:60:d7:cb:48:8e:01:40:a9:c0:75:92:ac:e5:c7:
f7:e3:73:60:2b:48:40:2a:0f:50:1c:64:c7:df:ae:
34:20:92:bf:84:9d:df:45:02:34:0e:a9:5b:a8:c8:
fb:d0:bb:4c:a1:a9:dd:15:7d:52:19:8c:f8:2d:24:
0a:5b:19:f0:fb:e8:21:3f:bc:e6:51:99:59:f7:39:
31:d7:ed:04:d0:d8:95:77:df:15:77:2c:a5:53:61:
06:c5:28:46:a9:f2:ae:d3:46:01:8a:b3:76:d0:53:
93:3a:04:af:f0:be:22:2d:5c:31:f4:d1:24:31:f1:
10:ca:85:6e:0c:2e:17:75:8b:9b:ad:ac:7d:29:4f:
05:8f:11:84:8e:da:bf:84:e1:b7:f0:91:c9:7d:91:
f7:a3:4f:51:39:fa:33:ee:1e:f7:a8:cd:dc:61:78:
83:6c:aa:22:2e:66:07:52:62:90:f6:ed:0b:3d:77:
81:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C3:7F:BE:7A:B4:01:C5:2B:8C:51:2B:01:BB:1E:FC:8E:C4:FC:5C
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/ZcN_vnq0AcUrjFErAbse_I7E_Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.216.0/21
IPv6:
2a12:9dc0::/29
Signature Algorithm: sha256WithRSAEncryption
09:09:07:43:31:84:84:c1:a1:07:5d:5b:cd:77:20:3d:a9:6d:
bb:8a:97:b1:c9:e1:ce:4c:e7:15:30:a2:1b:bc:02:ef:18:2a:
1c:52:56:f0:b9:f8:90:4c:8a:2e:60:cf:fe:97:48:ae:8f:ec:
0f:b9:1d:1e:75:7d:67:fd:c0:f3:b4:3c:6f:01:2d:cb:c0:38:
53:dc:2b:80:72:59:c2:e1:67:30:d6:85:8e:27:98:09:e7:c0:
7b:f9:6e:91:6d:ab:2b:d7:0c:f7:37:52:a9:31:9f:2a:45:50:
bb:0d:cd:0e:49:45:36:ad:3d:ab:1e:72:32:9e:29:c3:fa:a4:
b2:75:e9:53:65:a2:ba:f8:1a:a5:23:a1:ae:6c:d8:06:7c:f4:
7b:9c:a5:53:7e:db:f7:a5:7d:cd:c9:97:96:35:c9:02:31:6c:
0d:a8:5d:e6:e1:43:1a:0f:28:92:66:6c:ae:dd:b9:ca:b8:52:
8a:e2:9e:88:6e:32:4d:61:d1:bd:08:99:58:7a:21:b3:7d:ff:
d9:c1:c2:2c:e3:37:57:3a:e9:24:11:0a:d6:8a:2e:b5:95:49:
31:bb:b2:54:cc:82:5d:bf:f8:47:fe:38:64:52:00:c8:bc:7e:
8c:b2:33:7f:81:81:4a:a6:2e:9c:e2:8b:ac:e1:a3:b8:d8:11:
3f:75:13:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org