Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5bab79-afaa-4cdd-bc23-40314fc3d874/1/zQ08MAKfQEVH9yHOP6XHs6FIwu4.roa
File: zQ08MAKfQEVH9yHOP6XHs6FIwu4.roa (raw, json)
Hash identifier: LHQF1/lDFPJgUcNBiSkROHgaGVCl3D9WKJPFozqP+i8=
Subject key identifier: CD:0D:3C:30:02:9F:40:45:47:F7:21:CE:3F:A5:C7:B3:A1:48:C2:EE
Certificate issuer: /CN=8f0064c6f80e0967fbe4e4b8fb24a4143c4857c6
Certificate serial: 0184A3AC68DE7B63B21B6540844731D5CDC2
Authority key identifier: 8F:00:64:C6:F8:0E:09:67:FB:E4:E4:B8:FB:24:A4:14:3C:48:57:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwBkxvgOCWf75OS4-ySkFDxIV8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5bab79-afaa-4cdd-bc23-40314fc3d874/1/zQ08MAKfQEVH9yHOP6XHs6FIwu4.roa
Signing time: Wed 23 Nov 2022 08:48:16 +0000
ROA not before: Wed 23 Nov 2022 08:48:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31252
IP address blocks: 193.57.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:ac:68:de:7b:63:b2:1b:65:40:84:47:31:d5:cd:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f0064c6f80e0967fbe4e4b8fb24a4143c4857c6
Validity
Not Before: Nov 23 08:48:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd0d3c30029f404547f721ce3fa5c7b3a148c2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8d:d4:07:38:84:01:39:12:39:5a:0f:40:1e:
34:cc:3a:67:c1:22:e9:f8:54:c6:bb:a6:3f:f4:9b:
87:2f:73:22:d3:3a:98:8b:84:4b:16:d9:82:26:37:
23:18:e6:74:1c:1b:8d:02:b6:b2:b9:af:98:fa:5a:
1f:cb:98:62:30:5b:5f:e7:2f:2b:78:9a:fb:b3:98:
89:bf:e6:08:e9:d2:de:a7:8a:f6:aa:80:b3:87:fa:
36:83:5c:8a:84:9d:e1:41:5b:0d:30:ba:9b:40:b2:
1f:38:68:09:e5:8f:be:7b:b2:37:7b:4c:95:34:e1:
8b:6c:39:70:ad:33:c5:0d:e8:b6:4f:ac:df:62:bf:
9e:61:21:cf:64:9f:13:3e:12:34:89:10:1d:c9:80:
c2:dd:c1:7a:ec:71:ca:dd:f1:60:ab:c0:67:41:61:
f8:71:e6:bd:eb:1d:fb:d1:fe:8e:10:b9:2e:15:31:
f2:f9:04:f9:1d:10:02:73:52:25:9d:cd:7c:a8:21:
b7:5a:8e:1b:bb:3f:30:33:0c:11:fe:f6:9d:8a:37:
97:72:9c:c5:f4:9a:c7:5c:bf:af:42:c0:a5:bb:ed:
cc:63:cc:fb:f7:8e:c0:4b:5d:1a:2a:d1:6f:e4:03:
1d:15:5e:97:86:2a:47:33:43:cb:49:c1:21:57:fe:
cd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0D:3C:30:02:9F:40:45:47:F7:21:CE:3F:A5:C7:B3:A1:48:C2:EE
X509v3 Authority Key Identifier:
keyid:8F:00:64:C6:F8:0E:09:67:FB:E4:E4:B8:FB:24:A4:14:3C:48:57:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwBkxvgOCWf75OS4-ySkFDxIV8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5bab79-afaa-4cdd-bc23-40314fc3d874/1/zQ08MAKfQEVH9yHOP6XHs6FIwu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5bab79-afaa-4cdd-bc23-40314fc3d874/1/jwBkxvgOCWf75OS4-ySkFDxIV8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.52.0/22
Signature Algorithm: sha256WithRSAEncryption
16:1c:a2:10:e6:1a:cd:20:1b:cf:4f:d9:d8:70:c7:5f:55:15:
51:f3:e6:26:ee:cf:94:43:5d:9e:81:ae:81:d2:81:05:6e:fb:
81:d5:5c:e2:38:fc:7e:8a:5f:c5:7c:89:26:73:a9:fc:e9:66:
77:af:4a:40:6b:1f:e7:4f:a9:5a:66:ae:ce:b9:46:35:5c:af:
8e:48:01:41:25:6d:c0:9b:21:9b:dc:e9:9e:6b:06:d0:d4:87:
9f:00:4a:b7:5f:be:00:81:88:f8:78:f4:a6:9b:28:fc:0f:53:
01:13:36:5f:c5:75:3e:59:0a:de:17:52:5e:b4:75:9d:81:c2:
07:05:ea:0e:04:f8:b9:52:24:99:2b:ec:52:08:68:83:2e:de:
ed:4b:83:ac:07:70:3e:0c:43:bd:75:75:e2:cb:a0:1d:83:1c:
06:5f:96:2b:03:ba:ca:0a:1c:70:03:d7:ce:91:42:14:25:37:
11:9c:bd:db:16:fb:7c:27:ec:e1:de:1d:14:74:d5:f9:7d:82:
e4:43:c7:68:fb:c8:b0:b9:7b:be:46:82:cc:ef:03:0f:3d:0d:
ee:da:1f:96:cc:1a:b3:8a:aa:d1:7b:27:b1:3e:34:df:5f:ab:
54:23:b6:9a:ed:2f:1b:f1:53:e6:2f:c3:56:28:af:77:64:47:
62:77:e0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:11 2024 by rpki-client on console-ams.rpki-client.org