Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/ZGlGs_ZTxJm64sSgmIl430b571E.roa
File: ZGlGs_ZTxJm64sSgmIl430b571E.roa (raw, json)
Hash identifier: 1w7GhujZA8IJpSyQxArj18nH641hBK8M39TX6EC6PCM=
Subject key identifier: 64:69:46:B3:F6:53:C4:99:BA:E2:C4:A0:98:89:78:DF:46:F9:EF:51
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 0191802C
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/ZGlGs_ZTxJm64sSgmIl430b571E.roa
Signing time: Sat 01 Jan 2022 08:57:18 +0000
ROA not before: Sat 01 Jan 2022 08:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211597
IP address blocks: 188.74.96.0/19 maxlen: 19
2a10:bcc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26312748 (0x191802c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Jan 1 08:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=646946b3f653c499bae2c4a0988978df46f9ef51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a9:0c:80:b3:28:5b:8e:92:cf:00:a5:b7:03:
95:2b:e9:97:63:80:52:55:f3:aa:0a:0f:9b:c9:9d:
da:3e:7d:39:e9:33:b9:57:ec:18:05:b0:f6:87:78:
bf:83:e9:aa:da:cc:dd:73:55:bc:bb:fc:a8:52:12:
69:09:ff:fe:58:c6:c9:40:b1:21:7f:72:90:e6:be:
3a:92:2b:63:7b:b2:35:e9:fc:cb:ee:ed:ef:44:ac:
a5:a2:3e:98:57:44:11:a7:c9:7a:3a:4d:81:c0:5e:
76:1b:ed:4a:72:14:e7:15:c9:03:3a:76:83:a9:40:
23:d7:ac:d8:8f:3c:34:b4:fa:96:b9:8c:c5:29:7f:
ab:4a:ce:ea:50:07:88:2c:68:f9:b0:f6:84:f7:5c:
8b:ba:8c:44:ef:c4:89:7c:ca:6c:42:ee:81:0c:66:
5f:0a:80:7e:20:e4:3d:6a:94:7d:3e:ec:58:fd:0c:
7c:54:65:03:78:37:62:52:94:88:18:a1:76:28:b6:
5c:9f:f6:1f:73:09:27:38:f6:7b:a7:bd:1d:6f:00:
c9:8e:92:b5:c8:b0:45:dc:84:13:95:bc:07:03:82:
83:32:ee:37:65:28:57:80:a4:1a:37:1b:68:91:93:
4c:2d:3c:b8:84:74:7e:5b:cc:62:92:d5:69:94:6d:
0e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:69:46:B3:F6:53:C4:99:BA:E2:C4:A0:98:89:78:DF:46:F9:EF:51
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/ZGlGs_ZTxJm64sSgmIl430b571E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.74.96.0/19
IPv6:
2a10:bcc0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:c1:f6:3c:06:9b:ca:8f:2a:06:02:be:8c:dc:dd:b6:c0:f0:
1e:8b:d2:02:bd:03:94:c6:77:0c:fb:0a:38:27:b7:be:2d:b1:
dd:86:79:4c:67:33:59:14:4d:86:c2:82:2d:5d:57:0e:d1:f6:
84:fc:72:50:f8:37:0b:12:0c:84:68:f2:e2:16:4a:c5:14:13:
9a:d6:6f:22:48:32:a4:85:7b:41:bc:fb:69:49:fa:37:17:04:
e2:7b:9f:4c:9e:06:59:d6:ae:2e:ed:86:17:8e:4d:72:90:5b:
ae:a6:0b:1e:f3:c6:43:2c:56:f8:72:1b:4c:93:2f:b7:42:5a:
32:9f:7c:7f:eb:d0:b1:40:ad:a2:00:88:2b:19:ee:77:01:13:
33:68:09:39:0c:0f:d6:2d:65:c8:a4:05:5e:c7:be:bc:96:80:
61:67:4d:1e:30:c8:cb:0a:c0:14:6a:f9:e2:03:a7:5d:58:ff:
62:33:aa:b3:ef:02:8a:58:b7:06:90:bf:88:d6:db:3e:a8:97:
9f:2a:25:38:01:eb:32:aa:7b:59:7e:61:25:62:3c:07:f2:c4:
65:f9:17:e4:e6:cc:0e:d8:bc:21:c6:a7:4a:c5:54:05:22:a4:
2d:86:ed:7c:76:a6:9b:b4:6f:16:06:f8:2d:a9:d4:29:cd:46:
cc:19:67:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org