Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/zOFJ845iz2WT2hwOJi_h2GOW0AM.roa
File: zOFJ845iz2WT2hwOJi_h2GOW0AM.roa (raw, json)
Hash identifier: 903TaaCRxpYKDBipJSoPClje1xGIFAj6iElQKj8ew/0=
Subject key identifier: CC:E1:49:F3:8E:62:CF:65:93:DA:1C:0E:26:2F:E1:D8:63:96:D0:03
Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Certificate serial: 11564DA9
Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/zOFJ845iz2WT2hwOJi_h2GOW0AM.roa
Signing time: Sat 01 Jan 2022 00:53:01 +0000
ROA not before: Sat 01 Jan 2022 00:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42417
IP address blocks: 193.239.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290868649 (0x11564da9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Validity
Not Before: Jan 1 00:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cce149f38e62cf6593da1c0e262fe1d86396d003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:68:6a:ec:ed:17:9d:b7:31:f5:dc:01:f6:0d:
84:7a:66:0f:81:b2:d7:fc:7a:e7:a3:a1:0f:48:02:
50:5f:72:c1:1e:10:1e:1a:a3:a8:68:41:7d:c6:d8:
c1:e0:50:1f:a1:7b:2f:d6:7d:ea:0c:dc:7b:c8:62:
a1:b8:1d:d7:90:8a:47:61:92:0c:15:28:4f:17:22:
6c:40:25:58:a2:fd:94:cb:fb:dd:0b:b9:5e:d2:a9:
93:26:76:bf:f7:c7:4d:e7:f3:d6:a6:7c:7d:53:32:
b3:15:ae:0c:ba:b2:19:11:9d:fb:a2:31:b2:7a:b7:
a0:d6:38:5f:35:ce:ab:08:44:ca:e2:6f:ef:06:25:
10:9b:41:93:e9:de:9a:c8:68:61:54:01:82:df:70:
2a:68:3c:93:bb:1c:08:17:99:2d:b2:32:8f:be:b4:
65:f2:87:92:de:25:a4:7f:cf:86:de:4b:ed:35:57:
85:5c:47:e8:b3:c9:f3:21:1f:b9:1d:34:58:67:4a:
a6:a1:9f:f8:79:73:27:00:69:fb:91:2c:0e:14:b1:
68:76:ab:8d:b3:17:c3:0c:53:1d:fe:3a:36:03:19:
01:76:59:c3:5f:db:57:9e:89:78:b3:cf:4f:aa:ba:
9d:4f:07:3c:e5:ff:ee:d5:d4:83:ff:20:89:d2:3e:
aa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E1:49:F3:8E:62:CF:65:93:DA:1C:0E:26:2F:E1:D8:63:96:D0:03
X509v3 Authority Key Identifier:
keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/zOFJ845iz2WT2hwOJi_h2GOW0AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.218.0/23
Signature Algorithm: sha256WithRSAEncryption
76:25:03:11:af:03:8f:53:7a:53:75:ab:38:4d:7e:9a:34:16:
d2:d8:e0:32:1a:e7:38:c6:c5:14:c5:b9:6d:02:d5:df:58:2e:
31:40:15:55:ad:83:56:81:68:62:f0:1f:d1:b9:8b:71:93:8a:
7c:b0:cd:5e:63:3a:ec:e4:68:c7:98:2b:34:8f:4f:1e:ba:6e:
e6:14:8d:b4:49:6d:f6:c8:ee:2c:84:e4:88:5c:42:63:1f:5e:
43:b3:a9:b3:9a:a0:bf:79:cf:80:31:32:de:6e:3a:ea:26:79:
a1:46:51:c1:20:4b:fb:34:7c:10:b9:6f:57:c5:fa:19:c0:a2:
99:06:d7:9d:f8:fe:f5:be:6b:8c:eb:f3:e9:04:10:7f:90:fb:
e9:c3:63:ba:1f:29:8a:65:74:3b:12:62:fd:f1:18:c7:d0:9a:
4f:6a:ed:75:0c:d1:11:9d:f7:80:01:04:10:a3:4a:09:6e:7d:
fa:42:36:41:87:32:65:0f:9b:32:be:08:52:e1:c6:7d:80:2a:
cf:9c:64:a9:76:ee:13:81:cc:d8:77:e6:f2:7c:52:64:75:01:
71:a6:fd:87:02:68:b9:80:2d:22:b0:57:37:ff:b1:16:b2:44:
31:12:82:c2:40:c3:c6:e5:b4:23:0b:a4:c8:72:14:27:5b:76:
f8:2a:3b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:50 2024 by rpki-client on console-ams.rpki-client.org