Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Zt4ZnYxCeVjZe2IKxTgV0wJ1Zc0.roa
File: Zt4ZnYxCeVjZe2IKxTgV0wJ1Zc0.roa (raw, json)
Hash identifier: bEDv0WG/1eLhMAvA6pK88khxBAMtmNJpgX3TyjZRegg=
Subject key identifier: 66:DE:19:9D:8C:42:79:58:D9:7B:62:0A:C5:38:15:D3:02:75:65:CD
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 01891B73F233AFD0B99838F53872F7980E1E
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Zt4ZnYxCeVjZe2IKxTgV0wJ1Zc0.roa
Signing time: Mon 03 Jul 2023 11:12:10 +0000
ROA not before: Mon 03 Jul 2023 11:12:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 185.177.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:73:f2:33:af:d0:b9:98:38:f5:38:72:f7:98:0e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jul 3 11:12:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66de199d8c427958d97b620ac53815d3027565cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:62:66:d7:c4:36:c3:44:56:e6:73:09:d9:84:
42:73:4a:5d:f0:93:5b:7d:96:1a:b5:c1:f6:ee:ff:
e2:b3:0e:59:ef:c4:71:f7:33:40:86:87:e4:0e:c9:
ef:47:a6:90:37:22:7f:9f:23:64:9e:ff:b6:ed:5b:
6d:f5:2b:52:08:64:a0:0c:4a:75:e5:7e:87:79:42:
e7:b5:fc:cf:64:db:03:88:23:0e:f2:cf:f5:a3:93:
4a:7b:b4:60:40:c3:e5:55:02:d1:2b:be:f9:5d:85:
9a:8c:ca:43:f6:96:82:73:37:3a:25:e0:19:16:7d:
09:a6:5f:5b:5b:c0:30:8b:83:34:b5:f4:71:ce:00:
ea:ca:d2:74:23:3e:de:07:b0:74:76:93:7c:08:7a:
10:dd:a3:73:e8:b9:1c:c9:e1:90:f6:55:3e:a5:de:
09:4b:ae:fa:ea:14:4d:66:ce:49:08:50:1f:d7:ef:
e0:31:5d:a0:6f:9b:27:57:de:f2:f2:f4:4b:b1:e7:
cd:f8:c0:17:d1:bc:99:a9:13:f6:74:4c:7f:82:b0:
76:4c:bc:75:2a:23:48:09:da:67:4e:e7:e5:1a:4a:
cf:3d:e4:54:0e:b7:45:f6:14:a0:fb:f5:75:3f:dd:
d3:fe:5a:50:2c:63:90:c1:6a:8c:8a:72:32:75:7c:
99:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DE:19:9D:8C:42:79:58:D9:7B:62:0A:C5:38:15:D3:02:75:65:CD
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Zt4ZnYxCeVjZe2IKxTgV0wJ1Zc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.230.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:3c:f1:29:90:e9:32:09:1a:80:70:fa:d6:89:31:33:a0:68:
2d:14:56:f6:26:09:58:5a:08:3b:5e:fc:59:ae:76:05:de:b6:
c3:56:2d:c1:cb:7d:72:ac:c0:29:3f:49:54:04:3a:72:fd:a1:
f0:d6:2d:3e:c9:df:55:aa:c5:8d:77:8b:a9:ef:90:b5:2a:39:
04:79:eb:54:0c:69:5e:8b:3f:f5:70:f1:b5:67:cd:09:13:0d:
70:d0:20:1e:2a:81:55:e2:2f:f5:c1:a6:43:8b:e6:ab:b8:90:
20:2b:e1:40:33:03:74:87:42:82:d6:ae:a9:bc:81:6e:5c:c0:
e8:bf:ae:54:02:88:9c:f7:c1:7a:f6:e4:0a:26:26:89:c0:fb:
40:be:19:b3:83:52:58:59:d1:5d:ba:37:6a:97:e0:f0:dc:e0:
f6:8a:32:a0:cd:f5:b1:2e:dd:83:51:24:b3:2f:43:d6:89:d8:
84:2f:13:25:8c:40:e4:4f:8f:8a:4e:c0:e4:3a:3d:4a:ae:39:
27:45:dc:75:40:61:51:ed:41:a0:ec:56:88:4c:59:a2:19:6d:
0c:f8:86:e5:20:34:6d:3f:4e:c7:a9:7f:97:c6:34:f1:5a:8a:
af:84:ae:d7:88:36:56:f0:e3:82:48:9c:ff:a9:4a:e0:13:e0:
0d:be:e9:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:33 2025 by rpki-client