Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ZXnSl3FB1Y6jjCGQEOOeZ1lhB0Q.roa
File: ZXnSl3FB1Y6jjCGQEOOeZ1lhB0Q.roa (raw, json)
Hash identifier: 3gA69XhXQfpR13Bn4lZWNH+3pIZsRtftooQtD3B+MIM=
Subject key identifier: 65:79:D2:97:71:41:D5:8E:A3:8C:21:90:10:E3:9E:67:59:61:07:44
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0182DBB5AAAB2FAF9C706E324AC27E8F225B
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ZXnSl3FB1Y6jjCGQEOOeZ1lhB0Q.roa
Signing time: Fri 26 Aug 2022 19:51:32 +0000
ROA not before: Fri 26 Aug 2022 19:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 107.161.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:db:b5:aa:ab:2f:af:9c:70:6e:32:4a:c2:7e:8f:22:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Aug 26 19:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6579d2977141d58ea38c219010e39e6759610744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c6:2d:2a:bc:78:e3:36:bc:b3:59:63:a8:5c:
1b:86:9b:55:52:8a:ea:75:b8:43:e9:3f:74:49:67:
a5:c2:93:7d:7b:4e:5a:2b:23:f4:4c:91:b8:3c:ab:
c9:59:2f:16:75:db:27:88:60:0b:fd:1d:5d:98:0a:
bc:6a:a2:e0:ae:00:75:20:d0:8d:f7:a2:12:d7:1f:
33:20:ee:d5:5b:70:60:27:c9:63:ed:e5:55:28:b3:
81:6e:f9:87:5a:b0:7d:b0:6c:2c:6b:53:82:3b:42:
73:df:28:4f:30:40:d3:46:70:5c:15:2d:20:ed:a0:
6f:f2:8f:62:54:83:8c:ff:90:82:73:23:4a:80:93:
70:19:7f:f5:3d:fe:b6:76:68:ac:44:26:d9:37:b8:
e9:e4:16:62:24:7b:6a:47:64:5a:94:18:82:42:ea:
d0:6e:c5:15:c6:fa:cf:51:d0:71:20:77:82:e0:9a:
d8:15:c7:68:b3:6b:de:61:0c:f4:6d:00:fe:47:f8:
0e:2a:76:58:26:7c:d5:62:63:b0:0d:a3:0d:a8:e7:
1a:0b:5f:9b:b0:bd:2d:fe:a9:62:be:1d:0a:6c:27:
3e:e2:be:29:a6:a7:7b:21:37:4d:e7:2a:4a:93:17:
16:27:a0:f5:0d:93:10:e3:d0:5b:9b:b3:86:3d:42:
05:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:79:D2:97:71:41:D5:8E:A3:8C:21:90:10:E3:9E:67:59:61:07:44
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ZXnSl3FB1Y6jjCGQEOOeZ1lhB0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.161.167.0/24
Signature Algorithm: sha256WithRSAEncryption
11:fa:a0:30:5d:14:12:e5:f0:3b:79:c1:94:ed:19:83:9c:0b:
e3:78:9a:26:c6:51:cf:d1:cf:90:5f:c7:0c:c7:cc:81:76:1a:
41:78:2e:9f:9e:c4:7a:26:da:38:f9:85:08:92:5d:a9:1f:3c:
ef:5d:31:4e:63:4a:94:50:ad:79:e1:c9:63:d2:7f:c1:1f:36:
b6:ea:98:70:50:c7:3c:77:21:66:0d:9c:96:c4:e8:f1:9c:1e:
a4:e9:d2:9c:d8:8e:82:10:a4:69:e5:9e:17:87:b2:db:3b:d9:
f5:13:6e:bd:1e:fc:b2:ec:13:e3:b7:71:b9:61:10:40:b5:da:
31:ec:9a:31:28:55:37:e4:53:63:c3:c8:4c:cd:c6:0a:fb:da:
ab:5a:68:47:ce:77:79:77:94:7d:98:d6:c2:67:9f:94:97:04:
51:d9:f4:69:59:10:0f:92:29:1e:68:0c:98:29:04:bb:3d:2f:
a9:f8:33:93:49:fc:f9:69:46:93:47:c1:f9:3c:2e:82:2b:be:
6a:cc:83:27:da:ca:7f:70:86:22:76:8b:2d:0c:fa:4d:d9:42:
88:f2:21:18:37:78:b8:85:6f:6d:95:ab:99:92:9b:fd:d6:f3:
8d:fc:15:2a:16:02:10:9c:ab:09:0b:e5:cb:3d:d7:c3:55:ff:
11:f6:45:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org