Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/zIR8jSsbQbKhfBztpIjYLQo05Z4.roa
File: zIR8jSsbQbKhfBztpIjYLQo05Z4.roa (raw, json)
Hash identifier: CfHZJMbABuy17xGtNWGsWssrp0yQp5CYGxKAitBL+DA=
Subject key identifier: CC:84:7C:8D:2B:1B:41:B2:A1:7C:1C:ED:A4:88:D8:2D:0A:34:E5:9E
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0339390B
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/zIR8jSsbQbKhfBztpIjYLQo05Z4.roa
Signing time: Fri 13 May 2022 14:55:41 +0000
ROA not before: Fri 13 May 2022 14:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 87.254.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54081803 (0x339390b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: May 13 14:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc847c8d2b1b41b2a17c1ceda488d82d0a34e59e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5c:83:81:ae:b3:03:c5:20:ac:58:1c:73:a1:
20:c6:04:da:31:ba:77:2f:7f:12:ba:4d:f5:0d:03:
e3:0f:e1:6b:c4:2d:2b:e1:5f:77:b7:7a:4c:fd:c9:
05:b4:75:b8:40:34:e6:b4:8f:bb:a6:ed:60:26:4e:
04:d7:e8:d4:c4:d4:6d:fe:24:3d:a9:96:95:e3:4a:
8e:67:50:72:e9:1d:fe:5a:e8:2e:c4:47:d8:b5:94:
6f:5f:98:92:f7:39:0d:a5:ac:25:67:50:03:73:5d:
89:e5:c6:14:39:d3:ab:b7:57:f3:02:ea:a4:86:9f:
47:83:b0:a2:d8:36:af:90:ce:5e:b2:00:f0:3f:96:
0a:17:2d:e3:79:cc:c2:81:0f:8c:d5:02:bd:43:67:
47:36:e5:03:87:6f:59:df:ad:da:fd:73:49:88:80:
16:81:e7:f7:12:49:28:64:45:f1:6f:b7:d2:65:76:
25:35:46:00:79:d5:44:20:56:f9:55:27:48:7d:88:
c5:11:ba:01:f0:94:66:2d:b5:8d:e2:89:f6:c3:6b:
ba:f9:d9:92:ba:63:f2:0b:de:04:a4:10:e8:5f:50:
58:7e:e5:32:3e:3c:20:16:35:e3:b7:af:74:bc:f1:
8d:f2:bf:94:86:52:e7:44:ff:a7:95:67:c7:ca:57:
37:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:84:7C:8D:2B:1B:41:B2:A1:7C:1C:ED:A4:88:D8:2D:0A:34:E5:9E
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/zIR8jSsbQbKhfBztpIjYLQo05Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.3.0/24
Signature Algorithm: sha256WithRSAEncryption
22:0a:ce:11:75:8b:30:3a:53:1c:fe:cc:15:96:04:07:a5:86:
66:90:e2:13:6b:d1:65:0d:ac:cd:77:60:bf:15:a2:65:d0:60:
f7:37:09:4e:a3:c0:41:1b:d8:81:aa:44:ed:40:5d:13:39:ba:
03:d5:64:ea:8c:c7:51:79:14:12:86:22:5b:88:71:fc:7f:62:
04:11:76:09:16:1e:25:b0:52:24:62:4c:8b:34:27:8c:9a:3d:
6a:a1:b8:52:f8:fb:e1:f2:18:33:41:2f:6a:6d:9b:aa:68:13:
e6:34:5f:a5:13:f8:26:10:7c:b2:65:4f:ed:d8:7d:d8:b1:38:
66:20:4c:15:e6:fa:5d:5c:1c:a7:eb:51:5b:31:a4:e9:1f:f2:
6e:57:9e:e2:5c:28:49:13:09:33:31:8e:b8:95:0d:1a:1e:f3:
e8:94:71:b5:21:91:07:b3:de:26:8f:8a:a1:ad:6e:fa:3e:90:
b1:0e:1c:72:89:11:f2:cd:12:5c:de:8f:76:61:79:79:8a:5f:
14:f0:b4:d1:6f:ec:ad:be:1b:99:23:8b:20:a7:81:db:65:e9:
6e:fe:f0:34:80:85:a7:8f:52:96:a7:6f:dc:fb:36:30:e9:b6:
94:27:bf:75:07:1b:f6:6a:b9:48:ee:7a:29:e9:a7:80:75:e9:
7b:63:fe:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org