Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/zktot5Nepv34a1cbH2-5RUgz-kE.roa
File: zktot5Nepv34a1cbH2-5RUgz-kE.roa (raw, json)
Hash identifier: ieaSEvS4A2k5Xa0SkTon48ZfPzAu2qmTIvejH2rC9H0=
Subject key identifier: CE:4B:68:B7:93:5E:A6:FD:F8:6B:57:1B:1F:6F:B9:45:48:33:FA:41
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 03E835FD
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/zktot5Nepv34a1cbH2-5RUgz-kE.roa
Signing time: Sat 01 Jan 2022 03:55:57 +0000
ROA not before: Sat 01 Jan 2022 03:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203477
IP address blocks: 212.1.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65549821 (0x3e835fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 1 03:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce4b68b7935ea6fdf86b571b1f6fb9454833fa41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a5:43:8c:93:4c:92:77:56:79:01:2a:cd:69:
0f:14:c1:17:a4:0c:cc:e7:48:0d:1b:d4:9b:54:f6:
d5:0a:3e:fe:72:5c:c8:e5:d5:7b:b3:5b:35:92:90:
a0:72:2d:3f:3a:07:aa:cc:3c:98:bd:b2:f3:06:6a:
42:0b:18:1a:f1:36:2b:f4:27:3b:df:79:da:93:33:
92:15:1b:5d:62:78:75:c1:52:b9:c9:1e:f9:dc:8b:
d3:2d:3c:99:dd:de:e9:0a:a8:ce:e1:e6:38:f7:46:
a4:a4:1e:70:bf:c9:14:a7:2e:10:35:eb:94:87:2c:
e4:dc:30:00:91:25:17:81:d2:6a:38:a4:ba:a3:72:
91:cb:7a:2e:61:5b:9d:61:1a:c6:c9:b5:aa:fb:66:
e4:45:6e:80:25:97:18:d2:3f:3b:e3:86:b3:b6:00:
ea:5c:f9:82:25:66:90:1a:c8:dd:92:3a:36:a0:47:
e9:1d:4a:fc:ff:21:00:eb:91:a4:b5:e7:d9:68:5b:
18:90:d6:a0:75:7b:af:eb:0e:11:a4:ec:6c:75:c8:
43:98:a6:03:7e:f0:cd:c9:4b:da:93:14:c9:9f:53:
cd:16:96:52:f4:04:39:ce:16:49:04:e2:c2:c3:34:
55:34:6b:34:ce:3d:a6:43:73:68:fa:ff:07:35:ec:
65:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4B:68:B7:93:5E:A6:FD:F8:6B:57:1B:1F:6F:B9:45:48:33:FA:41
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/zktot5Nepv34a1cbH2-5RUgz-kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.1.65.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:6a:77:0c:b4:ba:be:64:47:37:90:ad:7d:88:a3:25:9a:93:
25:29:02:c2:5e:09:4f:0c:79:a0:7f:da:cf:74:05:6b:3c:64:
c7:fd:1d:cc:92:84:3e:a3:b7:c0:7c:42:98:ee:84:03:f7:38:
0b:db:dd:5d:e3:41:16:b6:4b:ab:70:2d:0f:bd:71:1e:76:8b:
1b:68:10:2a:92:c7:7a:9b:5f:e9:be:70:79:90:84:e2:a2:36:
9e:d7:fc:95:70:0d:ca:4c:e8:45:0f:13:02:28:cb:84:d3:59:
0e:ea:78:31:00:4e:ef:59:c7:8a:fb:4b:03:04:23:41:7b:04:
39:9f:e2:32:3e:66:3a:3e:4e:9c:ee:df:40:ea:89:0c:0c:dc:
d8:08:4e:00:63:cc:8c:4c:0d:ab:26:2c:cd:4d:df:79:3f:73:
a5:2a:52:01:6c:32:41:c5:43:d2:03:7a:ea:97:16:97:09:fa:
88:cb:1d:0f:cd:c4:82:6e:00:c4:f5:b7:24:de:7d:93:ab:7e:
b1:04:75:ec:c6:7d:32:ba:ae:49:32:53:5d:52:06:7b:65:ee:
48:10:3b:04:37:a4:5c:fc:bc:9e:09:0f:ce:68:37:21:fd:01:
f8:c2:2d:db:39:d9:bc:27:9d:b2:45:48:bb:1e:c1:33:c1:0f:
ae:02:b8:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:12 2024 by rpki-client on console-ams.rpki-client.org