Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ZWCqxxtXC8HtiKA3CKNbKPj94TM.roa
File: ZWCqxxtXC8HtiKA3CKNbKPj94TM.roa (raw, json)
Hash identifier: PZXO/9xMQfS1jj/SaGA901tw30lgiyNgrPUaIxNb7uA=
Subject key identifier: 65:60:AA:C7:1B:57:0B:C1:ED:88:A0:37:08:A3:5B:28:F8:FD:E1:33
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 0A254395
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ZWCqxxtXC8HtiKA3CKNbKPj94TM.roa
Signing time: Fri 20 May 2022 14:58:29 +0000
ROA not before: Fri 20 May 2022 14:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42962
IP address blocks: 5.181.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170214293 (0xa254395)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: May 20 14:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6560aac71b570bc1ed88a03708a35b28f8fde133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:01:1c:7f:6b:56:33:7b:b6:6e:d9:e6:3a:
bf:be:93:ef:3a:5a:96:08:ba:f4:9c:70:85:08:f7:
fb:d3:79:46:05:13:1b:5a:57:c5:3b:2a:10:4f:e2:
08:28:0e:26:11:2a:1e:99:c0:72:e3:1a:75:d9:93:
38:90:d6:e5:b5:c5:a8:bd:eb:15:cb:1f:3a:90:f6:
66:a1:41:3d:0a:bd:6f:74:6b:52:16:27:6d:59:89:
bc:72:9f:b9:a0:ac:d1:b3:43:87:81:de:99:f1:53:
f2:15:4e:67:72:ff:67:ba:1a:b8:6d:cf:87:ed:ca:
2c:cf:d0:9f:02:95:ab:cf:f1:d7:b7:c5:40:c0:dd:
a3:9f:17:47:c7:9c:63:21:62:7a:ce:cb:e9:9d:42:
8f:c9:37:dc:7d:8a:93:ac:ad:c4:ab:ff:97:1b:1b:
5e:13:15:75:1d:4d:b8:a8:90:52:17:3d:b7:02:c0:
5b:e4:7d:4a:51:81:9a:96:06:2d:54:22:b2:1f:5b:
63:3e:de:67:7d:bb:de:b0:c2:d3:8d:ce:36:52:e9:
d4:ab:49:5c:41:85:65:d8:82:f9:35:0a:2d:f5:76:
68:ac:14:d2:e7:fd:0c:aa:f7:a9:78:8e:f4:99:23:
27:4a:2a:54:f7:28:aa:51:d3:4b:53:52:67:06:cd:
09:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:60:AA:C7:1B:57:0B:C1:ED:88:A0:37:08:A3:5B:28:F8:FD:E1:33
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ZWCqxxtXC8HtiKA3CKNbKPj94TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.224.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d1:93:86:8a:20:a0:ea:e0:05:c5:d4:04:8b:e4:34:60:3b:
1c:ff:00:fb:15:05:ef:96:78:c8:32:15:0b:75:ee:81:65:76:
44:ed:f2:b5:77:3a:43:5d:70:6e:ef:93:4c:26:aa:1e:e6:d0:
fd:4b:b1:10:ce:4e:9d:59:18:29:f9:29:df:06:1d:4b:20:3e:
a8:ca:5a:c6:2f:f1:4e:7c:ce:db:f8:07:a9:fd:9a:17:35:3c:
df:34:17:c9:d1:c1:ba:4f:31:6d:99:08:b9:b7:91:57:59:a9:
f1:71:91:58:41:77:d2:9a:aa:7a:e7:e6:ed:a7:57:91:4b:12:
d2:17:dc:22:1f:5d:94:1a:85:70:2e:f2:b3:88:cb:66:c2:9e:
99:ef:c5:37:d1:70:99:0b:cb:db:b7:0d:aa:5c:d6:ff:d8:4e:
fc:fb:93:b7:5d:a7:9e:ff:3e:5e:1b:e5:57:9e:ab:29:40:81:
58:ec:6f:b5:6f:94:d3:4d:b7:1e:03:bc:56:b1:24:a8:f6:a4:
9e:81:09:51:47:74:21:67:9e:91:d8:85:9e:94:95:17:6e:33:
03:61:99:51:3d:6a:a2:64:df:a1:e1:22:ff:2b:7d:c8:b4:9c:
31:a9:d7:3b:99:02:22:4a:f1:5d:19:a4:6b:4c:e3:87:4a:63:
2c:c1:a9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org