Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/ZqfTNlg29IWck1CYdvyfh_03sUI.roa
File: ZqfTNlg29IWck1CYdvyfh_03sUI.roa (raw, json)
Hash identifier: oTYBmp0bi1KE0JXV5iIBU2E9mhHQLXfUzLDV9rsZ9hQ=
Subject key identifier: 66:A7:D3:36:58:36:F4:85:9C:93:50:98:76:FC:9F:87:FD:37:B1:42
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 0182D447427BE1E7CEA50A2A8CEBD51C0B0F
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/ZqfTNlg29IWck1CYdvyfh_03sUI.roa
Signing time: Thu 25 Aug 2022 09:13:36 +0000
ROA not before: Thu 25 Aug 2022 09:13:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3215
IP address blocks: 193.163.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:47:42:7b:e1:e7:ce:a5:0a:2a:8c:eb:d5:1c:0b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Aug 25 09:13:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66a7d3365836f4859c93509876fc9f87fd37b142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:aa:58:b9:44:50:86:00:e6:ab:89:66:05:b0:
b4:92:00:ca:f4:5f:0d:6d:12:c0:fe:86:80:21:46:
51:fa:14:0d:5e:e3:37:09:84:2a:34:b2:57:b5:c2:
87:2e:f5:4d:5c:6f:3a:9a:1c:cc:44:d6:2a:a2:7c:
47:0a:bd:8c:87:c8:51:a6:09:3e:2b:b9:64:9f:fe:
a5:64:02:9e:74:bd:40:1a:97:ad:40:72:b1:2f:e8:
cc:1a:09:ff:c8:7d:87:19:52:61:e5:65:90:0f:c5:
dd:42:b0:7f:70:f5:1d:26:03:dc:62:18:63:3c:91:
ed:34:a9:f2:d8:fa:a0:8f:69:47:2b:0d:9e:b4:d2:
55:ee:c1:cd:95:d9:08:8d:d4:56:ef:78:b7:51:9e:
43:b9:ad:4d:9f:67:05:68:3f:43:f9:50:57:50:4d:
37:b5:9b:21:f5:0c:90:d5:67:1e:3e:3c:8f:7d:47:
bc:eb:06:79:21:d4:c2:84:17:e9:76:66:d0:44:fc:
a4:60:55:6e:79:ef:82:b4:4c:21:b5:bb:33:91:9b:
c6:1c:38:74:61:c2:49:26:db:c1:c3:41:3d:97:ce:
ea:c9:f2:30:f4:9d:d5:86:47:cc:e4:b0:80:54:3d:
ea:7e:9e:18:88:7b:fd:b3:74:0b:06:58:60:68:f9:
a3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A7:D3:36:58:36:F4:85:9C:93:50:98:76:FC:9F:87:FD:37:B1:42
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/ZqfTNlg29IWck1CYdvyfh_03sUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.99.0/24
Signature Algorithm: sha256WithRSAEncryption
86:aa:6f:0e:3d:fd:2d:c4:c1:30:89:96:69:31:7f:4e:a6:d5:
31:74:0a:b1:30:07:e0:ee:eb:bc:c1:78:98:11:a1:c8:c3:66:
5e:70:73:aa:32:3d:38:31:0e:01:6c:6e:8c:74:c6:af:1a:03:
f5:14:cb:2c:b4:df:c3:d8:07:e5:cf:18:f6:de:b1:69:13:c7:
a9:a7:19:ac:e1:6a:33:74:91:db:a2:a7:8e:ab:a6:3f:04:69:
48:51:02:1e:dc:96:de:67:04:72:17:e2:a7:1f:dc:a1:5d:4d:
c0:c4:e0:20:8a:e5:cb:2e:54:e7:d3:61:a0:e0:34:1b:2b:e9:
ad:b0:54:0e:f0:06:af:29:57:4f:6b:76:02:72:2c:84:db:77:
73:95:d6:92:5e:cc:9e:e9:aa:59:dd:5d:c8:b5:47:aa:e7:82:
08:7b:ee:81:79:f8:88:1c:cb:8d:45:a9:29:7d:b4:4a:d3:76:
bc:0a:ad:6a:3d:e4:20:dd:c8:d8:cd:37:af:6c:61:b6:ad:99:
74:89:e3:1e:6f:6f:ec:64:fb:3f:05:4e:66:8e:e8:55:b3:8e:
3d:d3:aa:b8:35:33:7b:6b:c5:98:f0:39:0b:e7:96:35:15:c6:
80:79:21:09:35:25:23:89:44:b4:1f:49:49:7f:e3:f1:84:7b:
b6:51:a0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:17 2024 by rpki-client on console-fra.rpki-client.org