Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/df97ef-3435-4657-a1a2-6066d89f05b8/1/zk_OFSf6-HoDkcdC_ACeBV_lxP8.roa
File: zk_OFSf6-HoDkcdC_ACeBV_lxP8.roa (raw, json)
Hash identifier: bYYU+ODXvRaxSFVIaY+JEU6gCNjrjOfzv2sT1DmKo9A=
Subject key identifier: CE:4F:CE:15:27:FA:F8:7A:03:91:C7:42:FC:00:9E:05:5F:E5:C4:FF
Certificate issuer: /CN=559349644323315f806dc64ca4d9ed9557762757
Certificate serial: 0184DC95647118EDDF1C62DFDB0494B75C38
Authority key identifier: 55:93:49:64:43:23:31:5F:80:6D:C6:4C:A4:D9:ED:95:57:76:27:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZNJZEMjMV-AbcZMpNntlVd2J1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/df97ef-3435-4657-a1a2-6066d89f05b8/1/zk_OFSf6-HoDkcdC_ACeBV_lxP8.roa
Signing time: Sun 04 Dec 2022 10:01:28 +0000
ROA not before: Sun 04 Dec 2022 10:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206892
IP address blocks: 91.206.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:dc:95:64:71:18:ed:df:1c:62:df:db:04:94:b7:5c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559349644323315f806dc64ca4d9ed9557762757
Validity
Not Before: Dec 4 10:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce4fce1527faf87a0391c742fc009e055fe5c4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0b:86:28:00:26:96:ba:37:e6:fc:b1:c3:f8:
33:df:30:82:87:bb:ba:dc:d9:00:44:ba:9b:f2:36:
38:db:0f:21:67:1d:65:14:8b:e2:3a:78:4a:0f:3c:
28:c4:c4:ca:e5:d6:af:74:23:98:46:01:76:ab:df:
25:d9:e6:e2:c2:f0:90:d7:88:32:4e:98:ee:d4:2e:
11:f5:6a:f1:34:64:f1:6a:1f:62:7c:df:6a:9b:24:
aa:f1:56:17:d7:70:15:66:fb:a7:a0:b2:66:48:7d:
aa:92:ff:22:9d:9d:58:4d:d2:74:ef:fe:7a:dc:59:
f9:bc:65:7c:63:94:fa:65:84:ff:40:49:e8:c7:f9:
dc:25:d5:04:f1:de:77:ff:ea:e7:62:9c:15:74:02:
17:bb:04:77:07:5d:9c:10:3e:1a:70:8d:ab:e8:c8:
ee:89:1c:34:52:32:c6:fd:c1:a8:dc:f6:9c:2d:39:
e3:67:27:38:7b:50:52:7e:18:62:c4:14:65:cd:51:
aa:a3:80:e7:df:d0:d3:f9:ab:5c:e8:80:c2:91:55:
47:a9:5d:c5:98:40:9a:f4:36:30:b8:2f:8b:99:d0:
c1:34:97:30:c8:93:a8:2f:77:c4:01:73:91:25:7e:
f1:ea:75:19:a5:c3:ba:a5:ac:da:7e:6b:03:3b:5e:
63:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4F:CE:15:27:FA:F8:7A:03:91:C7:42:FC:00:9E:05:5F:E5:C4:FF
X509v3 Authority Key Identifier:
keyid:55:93:49:64:43:23:31:5F:80:6D:C6:4C:A4:D9:ED:95:57:76:27:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZNJZEMjMV-AbcZMpNntlVd2J1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/df97ef-3435-4657-a1a2-6066d89f05b8/1/zk_OFSf6-HoDkcdC_ACeBV_lxP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/df97ef-3435-4657-a1a2-6066d89f05b8/1/VZNJZEMjMV-AbcZMpNntlVd2J1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.112.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c5:80:d6:3f:ab:43:00:86:fd:72:e9:d3:92:48:68:7e:7f:
e5:36:f6:8c:85:4a:34:2c:a2:7f:1c:da:ca:aa:cd:21:7f:01:
c5:cf:24:d0:5a:37:a9:9c:2b:2e:d3:80:47:7d:5d:0d:b0:cf:
3b:8a:09:0f:70:0f:36:96:02:13:71:73:e0:3d:1d:4d:30:cf:
28:6c:aa:14:89:d5:cb:de:72:bf:cc:e7:65:28:0c:f3:e4:32:
89:75:cc:64:53:ba:56:e6:a1:d2:98:19:33:43:59:19:4e:ca:
8f:63:eb:bc:04:1e:0a:0e:35:a4:c0:ae:59:a9:a5:6b:0a:e4:
41:7d:f1:53:ad:84:c9:9b:25:3b:65:96:ab:69:96:64:8a:fb:
a6:26:a2:c8:3f:32:01:a0:e4:f7:36:26:1e:ae:be:a5:e6:00:
0a:15:87:9c:9b:3c:2c:52:c2:73:a3:95:da:cd:24:dc:e0:40:
0b:50:bf:36:51:cb:45:53:b2:36:75:53:38:fa:2b:06:73:7c:
4e:82:e1:57:97:1d:7a:e3:f7:91:9a:dc:e1:c2:fc:0a:c6:ec:
94:e3:3e:2f:40:9a:c0:49:37:bc:c8:eb:e6:da:28:f9:2d:d3:
c9:a6:fb:63:e4:39:0d:f8:4c:41:48:2b:b7:ef:43:0b:a1:63:
e7:2c:05:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:54 2024 by rpki-client on console-ams.rpki-client.org