Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Zb6vUvN2kz3gbu9eRaGUK6NrWt0.roa
File: Zb6vUvN2kz3gbu9eRaGUK6NrWt0.roa (raw, json)
Hash identifier: tCVcJD+eIzzyb7RudumKciv5QLVZ/ECSjPBzCQJqlTA=
Subject key identifier: 65:BE:AF:52:F3:76:93:3D:E0:6E:EF:5E:45:A1:94:2B:A3:6B:5A:DD
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0183B29FC1B158030C444462A137CC6334CD
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Zb6vUvN2kz3gbu9eRaGUK6NrWt0.roa
Signing time: Fri 07 Oct 2022 13:25:57 +0000
ROA not before: Fri 07 Oct 2022 13:25:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149440
IP address blocks: 198.105.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:9f:c1:b1:58:03:0c:44:44:62:a1:37:cc:63:34:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Oct 7 13:25:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65beaf52f376933de06eef5e45a1942ba36b5add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:70:76:cf:7c:95:f1:e3:54:15:25:7c:ba:5f:
65:f1:04:d6:5b:cf:37:51:a3:55:17:1c:ca:1a:11:
98:15:14:9b:e8:77:2a:06:31:79:10:46:f2:69:6e:
a9:5f:a4:24:de:ff:f4:c4:8e:6c:b3:be:62:1d:52:
48:21:b9:ce:cb:8a:22:8c:fe:e0:44:3a:da:2e:30:
f6:88:30:0c:01:74:e9:9f:af:ad:3c:74:6a:33:44:
75:24:79:0e:3b:1d:39:38:95:57:af:0b:f9:b2:bd:
f9:74:fc:b4:8f:1f:fa:26:50:95:e2:0d:94:93:c2:
e3:05:68:40:38:c1:76:74:fd:10:0a:83:6d:b4:59:
b1:3e:34:a3:42:3c:a7:33:22:c9:ab:6b:8f:8b:96:
e0:29:f0:a5:d6:9a:ee:fe:04:39:96:15:df:d6:8e:
25:eb:bf:49:c4:1b:34:29:9f:0b:52:d0:da:22:69:
05:93:7e:7b:39:4b:8c:d7:0c:63:76:87:e0:f1:d0:
e3:75:52:cd:2e:58:cf:b2:af:6a:05:31:d4:4d:50:
9b:27:fd:5d:a7:10:8b:78:90:3a:a5:0e:c2:bd:ef:
5f:c3:ff:28:d8:dc:94:ca:55:06:84:9f:53:5f:b0:
04:e9:7b:9d:82:42:dc:4b:c2:b0:6d:5a:4d:9f:2f:
c9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BE:AF:52:F3:76:93:3D:E0:6E:EF:5E:45:A1:94:2B:A3:6B:5A:DD
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Zb6vUvN2kz3gbu9eRaGUK6NrWt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.105.126.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:61:ec:0f:67:41:97:12:ed:67:54:b0:88:d2:c1:a6:db:cb:
44:bd:5d:bd:2e:de:4b:0e:e2:5e:cc:09:e2:45:90:36:83:da:
e9:a2:a4:71:11:c6:0e:48:4a:46:ef:06:f7:56:d8:37:b1:7b:
3f:64:f7:92:d0:54:7c:80:2d:0a:10:55:37:37:4a:bd:38:6f:
c3:0f:5e:99:f5:b9:25:9d:20:34:c5:b7:43:33:95:a8:00:23:
c2:21:30:49:47:6f:db:fb:d4:40:74:ea:b4:5f:90:c8:dc:3e:
c7:aa:5d:6e:e0:cb:7f:77:6e:43:93:7c:29:a4:33:37:34:ad:
c0:a9:8c:e8:db:3c:b1:81:6f:07:5a:11:b5:8a:10:97:55:ba:
1c:d1:dd:22:a5:1d:b2:11:b5:ce:e4:2f:c3:af:03:cb:37:15:
1d:ac:cc:b1:c5:7f:1f:61:08:1b:0e:3b:c8:fe:1d:60:c0:ee:
c6:af:9c:8f:62:56:ab:86:b4:b2:e0:9b:d0:99:db:40:7c:29:
80:4b:be:1d:78:68:36:be:e3:4f:ab:9d:bb:f5:23:d8:f7:aa:
90:0a:1f:b9:4b:1b:9c:65:a3:4c:3a:27:52:fc:05:0c:48:dc:
41:d3:07:60:b9:c4:b7:31:40:2a:13:f3:be:b3:f7:0a:03:c8:
f4:67:89:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org