Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/zpSzbCzMB3a_EYIcp95rpNcCKPk.roa
File: zpSzbCzMB3a_EYIcp95rpNcCKPk.roa (raw, json)
Hash identifier: x88WDXvFTjKs2Cjc5JDneRNAgl6btLCnbKXs4MptvMY=
Subject key identifier: CE:94:B3:6C:2C:CC:07:76:BF:11:82:1C:A7:DE:6B:A4:D7:02:28:F9
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 076AFB51
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/zpSzbCzMB3a_EYIcp95rpNcCKPk.roa
Signing time: Thu 17 Feb 2022 10:31:45 +0000
ROA not before: Thu 17 Feb 2022 10:31:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 192.35.206.0/24 maxlen: 24
31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124451665 (0x76afb51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Feb 17 10:31:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce94b36c2ccc0776bf11821ca7de6ba4d70228f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:9e:77:46:67:87:92:bf:a1:7a:91:93:d9:da:
04:18:9f:d4:f3:f2:55:c6:7c:75:0a:34:41:ed:1c:
2a:5e:14:ab:03:c9:50:d3:00:52:69:06:e4:7f:07:
08:13:ee:5c:8d:a9:8a:ce:98:6f:e2:af:c4:61:b6:
eb:34:05:be:5d:47:a2:75:2e:c6:9e:1c:6d:96:ec:
5a:3f:d6:ac:94:78:c9:20:8d:03:ef:70:0c:ad:b8:
7b:78:6e:0e:a8:2c:57:f1:76:4f:52:42:8d:80:a9:
fb:63:55:03:5d:dd:f0:19:93:4b:29:eb:1e:11:95:
45:e7:fd:5c:b0:b2:6c:8d:04:6b:55:d4:9b:a1:ec:
6d:ba:96:4a:78:26:43:cf:6a:c3:4d:0f:04:41:ba:
bc:e0:19:71:80:ca:a8:4e:b0:4e:80:42:d3:5b:d7:
63:8e:ff:e9:d6:b2:55:f4:1f:2c:ab:41:74:21:bb:
64:a6:e4:14:12:18:6b:3b:f1:39:80:ee:74:a8:6e:
c1:d2:79:43:d0:7e:19:3e:a4:50:82:57:96:82:41:
ce:cc:42:a6:50:c9:11:4f:4e:b6:df:c7:51:cd:fe:
42:28:a3:dc:4c:6c:28:b5:b7:1c:5c:02:64:a3:cf:
cc:c2:75:e3:d1:f9:ba:67:23:9f:08:90:a3:c9:07:
69:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:94:B3:6C:2C:CC:07:76:BF:11:82:1C:A7:DE:6B:A4:D7:02:28:F9
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/zpSzbCzMB3a_EYIcp95rpNcCKPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
192.35.206.0/24
Signature Algorithm: sha256WithRSAEncryption
52:20:34:92:24:d7:c6:42:24:de:41:09:51:59:25:9f:48:de:
cd:9f:cf:50:81:69:06:c5:34:a8:48:b4:65:d1:27:5e:38:eb:
f4:06:fc:03:bf:11:34:0f:84:1a:94:02:4b:ef:fb:c5:d1:46:
a5:c1:52:54:ef:f1:7d:ab:d3:bf:8d:65:36:f0:0d:eb:cb:9d:
34:df:e3:42:be:dd:a3:7f:b8:be:a4:29:60:14:60:a0:ca:e6:
be:fe:f8:71:46:17:61:4f:29:d0:07:a6:5a:eb:37:54:89:80:
c2:08:7c:fa:55:7f:20:23:92:c4:4f:df:79:a6:a8:bf:f6:49:
8c:b1:0d:71:6b:5c:2e:3c:17:86:96:96:50:f4:71:61:19:f1:
5b:e4:fe:bd:d3:48:ad:69:5d:b4:41:6b:a2:08:16:3a:03:3b:
78:af:20:73:bc:ca:fc:b9:a7:f5:2f:d4:ad:f1:f1:bb:13:a0:
f6:a8:d2:80:f1:58:24:54:73:58:8f:2f:80:dd:86:66:58:e0:
db:9a:a8:1e:5a:8f:40:84:1a:cf:04:47:15:84:7c:3d:f5:2c:
49:db:1b:09:19:c5:e8:cf:70:4f:77:e8:27:44:2d:6c:6a:aa:
48:f6:63:ff:1a:19:6c:5c:0d:27:8f:50:21:28:bb:69:52:e8:
83:3d:f7:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org