Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Zol87pmdpwRxtNVg_aMGuHmjIYw.roa
File: Zol87pmdpwRxtNVg_aMGuHmjIYw.roa (raw, json)
Hash identifier: RZDqVPIMB5luLiSm/5fXQkASJYRmfyegBHMoL7Hib0U=
Subject key identifier: 66:89:7C:EE:99:9D:A7:04:71:B4:D5:60:FD:A3:06:B8:79:A3:21:8C
Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Certificate serial: 03EC127C
Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Zol87pmdpwRxtNVg_aMGuHmjIYw.roa
Signing time: Sat 01 Jan 2022 09:54:14 +0000
ROA not before: Sat 01 Jan 2022 09:54:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133865
IP address blocks: 193.118.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65802876 (0x3ec127c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Validity
Not Before: Jan 1 09:54:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66897cee999da70471b4d560fda306b879a3218c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:73:37:02:5e:58:a1:c7:e1:53:5e:29:57:9a:
dc:6e:07:2d:e7:e3:d8:97:94:d9:3b:5f:8b:0e:1a:
b3:9b:f4:93:0a:ce:b0:ec:5a:90:9f:32:3b:85:a1:
27:fb:75:9e:ed:16:e8:d4:2b:92:de:02:f5:3f:f7:
5f:2d:93:19:5b:28:a0:3b:a2:60:40:07:56:cd:de:
f8:eb:d6:ad:db:f3:a6:c7:4f:fe:f0:59:fa:72:32:
b7:58:35:8f:df:e9:d0:69:1e:88:28:7e:fa:74:ac:
cd:6b:bd:73:54:b5:5c:b0:cf:2c:7a:f9:f9:bd:9b:
a9:c6:c2:c7:0f:10:17:ad:0d:89:ee:0a:25:83:dd:
24:47:c0:2a:66:e1:3e:1a:b6:9e:ee:00:bc:cf:79:
2d:29:4c:de:8a:29:aa:28:da:5d:c3:7b:b4:05:c3:
1d:92:26:42:8c:c8:6b:5b:a5:d8:78:19:83:cb:31:
ef:d4:d4:ae:ac:8f:9d:8b:c7:46:50:16:40:f1:05:
d3:38:12:a0:81:9a:59:66:6d:7e:78:d1:40:dd:dc:
70:bb:a0:ca:0a:c0:0d:12:d6:06:53:0f:3e:26:5c:
e8:d9:37:1e:f3:1e:fa:b4:0b:ab:d8:0c:30:cb:78:
1a:dc:e2:05:b5:94:a4:50:5d:b7:e9:4f:95:07:3d:
8f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:89:7C:EE:99:9D:A7:04:71:B4:D5:60:FD:A3:06:B8:79:A3:21:8C
X509v3 Authority Key Identifier:
keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Zol87pmdpwRxtNVg_aMGuHmjIYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.33.0/24
Signature Algorithm: sha256WithRSAEncryption
89:56:28:aa:12:23:e1:5e:aa:31:79:a8:89:b2:8c:cf:f8:d7:
d8:6a:95:43:e7:2d:32:0f:09:38:ed:17:74:bc:c5:82:fe:5c:
51:31:53:cf:a9:41:c6:54:fa:b6:fa:5a:37:e5:42:7f:bd:7c:
43:5a:f8:2c:1b:2b:81:8f:2a:3b:f5:8c:b0:4c:5b:d3:a5:e8:
65:74:b9:3b:3c:2d:26:cb:0c:51:1d:30:51:bd:ed:0a:2e:7b:
7b:a9:e4:cd:fa:df:cf:a9:a5:88:f4:69:3a:e9:f0:d8:32:26:
4c:c4:9d:4d:47:4c:3f:9c:2c:08:34:37:95:db:86:bb:cb:ed:
d9:6b:f7:e9:93:d8:4a:61:7b:dd:ab:03:d8:71:2e:48:81:4c:
e1:b5:e8:87:05:09:bb:7a:30:0f:ba:50:ea:74:7f:77:3a:40:
58:ce:b8:55:3a:87:ca:a0:d5:a4:bc:f9:ac:ab:39:5f:f1:3e:
9e:b5:2a:a8:53:49:40:a0:d5:7f:49:ef:91:4c:e2:32:3a:ba:
f2:a9:24:a1:c7:25:e1:cf:82:d4:24:fe:61:b1:d4:6e:5b:6a:
c6:50:26:2e:bb:42:64:cc:23:de:28:f4:d1:25:3b:6c:c6:ed:
f9:01:84:cf:00:e1:eb:78:e6:6d:d9:aa:ae:de:d6:1b:38:e7:
5f:22:9a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:30 2024 by rpki-client on console-fra.rpki-client.org