Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/ZsQBXj_1Yl106SzTtnRKHHx1x04.roa
File: ZsQBXj_1Yl106SzTtnRKHHx1x04.roa (raw, json)
Hash identifier: 5EU+Chu4tHYjd1VtbfQxtGfFPXhofCbq5EgX8Ravteg=
Subject key identifier: 66:C4:01:5E:3F:F5:62:5D:74:E9:2C:D3:B6:74:4A:1C:7C:75:C7:4E
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: EBB8F9
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/ZsQBXj_1Yl106SzTtnRKHHx1x04.roa
Signing time: Sat 01 Jan 2022 06:03:01 +0000
ROA not before: Sat 01 Jan 2022 06:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212559
IP address blocks: 5.1.42.0/24 maxlen: 24
2a11:2900::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15448313 (0xebb8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Jan 1 06:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66c4015e3ff5625d74e92cd3b6744a1c7c75c74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:08:a7:b0:04:29:58:1c:cb:5e:01:28:71:93:
6b:5d:98:06:98:ff:6b:33:fc:74:f9:d1:44:c8:78:
fc:19:1d:c9:3c:76:f5:b7:43:77:40:e4:c4:1e:fb:
f5:56:16:33:c3:32:f6:40:2f:18:40:6a:25:50:ae:
c6:18:e4:13:b6:d9:21:37:90:72:24:e7:34:dd:2d:
a1:72:51:7e:d6:d1:53:e2:0c:59:3d:c7:82:e9:03:
fe:a4:5b:3d:4a:f0:9d:58:af:99:ae:19:32:d1:d6:
3c:eb:dc:ac:94:81:58:e1:d4:27:38:33:03:a6:30:
81:6f:04:cf:ed:13:1c:2d:f4:86:ce:78:09:43:4f:
91:50:63:5b:2d:29:02:f4:0a:d6:55:f7:22:9a:6f:
c7:8a:41:c3:24:29:e2:83:bf:55:fe:28:95:63:c2:
d2:9c:89:4b:a0:74:37:47:bd:2e:e2:57:88:c9:34:
3b:f3:8a:eb:29:9e:30:21:42:10:93:a3:62:a9:05:
2c:cf:f2:9f:29:f3:f0:10:a4:f6:51:2f:7a:81:5d:
ea:da:38:13:90:b6:22:01:ee:ff:23:ca:4e:a1:d5:
ea:8e:43:77:f9:93:4d:cd:9c:c9:8d:1d:29:68:6e:
71:67:cd:6b:91:09:87:92:4d:60:75:9d:4c:23:94:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C4:01:5E:3F:F5:62:5D:74:E9:2C:D3:B6:74:4A:1C:7C:75:C7:4E
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/ZsQBXj_1Yl106SzTtnRKHHx1x04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.42.0/24
IPv6:
2a11:2900::/29
Signature Algorithm: sha256WithRSAEncryption
18:71:e7:8d:30:23:6e:ec:d7:b7:e0:98:7b:89:25:b2:a5:83:
3d:7a:f4:ea:67:07:c2:1b:fc:b7:cc:6c:12:f6:30:5c:05:4e:
84:73:5d:b1:da:49:d9:34:37:37:b5:f1:b8:e0:9a:2c:38:41:
3d:01:a7:a2:4b:80:a5:f1:8f:26:56:16:4d:3e:03:3d:dd:16:
5b:ce:bb:bd:8c:c8:29:06:65:2f:34:4d:08:e8:7b:66:98:f0:
c5:5d:2a:bb:dd:de:0e:88:5f:7c:07:13:49:ca:c9:b9:de:81:
5c:ae:cc:58:4f:09:d0:56:05:30:e9:f2:65:db:be:89:08:ec:
4a:72:23:f6:da:65:01:72:fa:2e:af:0f:ec:82:c9:6a:99:8d:
42:7f:d2:2a:c7:49:7f:92:87:86:51:44:73:f8:76:b6:8e:d2:
84:03:17:42:5e:fc:1c:f3:b2:3c:1d:c6:fe:36:12:b9:4b:41:
ea:48:2c:41:31:52:6c:bd:5b:70:b6:07:8b:7e:25:75:3e:2c:
7f:07:eb:bb:36:92:df:ae:24:71:40:7b:8b:89:fb:d4:a1:c3:
e6:4e:e4:4f:f0:6c:55:06:25:a7:d2:66:6e:89:4c:62:fd:2d:
78:7c:88:61:67:a7:51:e5:aa:cb:cf:14:29:b2:02:78:df:54:
88:28:16:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:42 2025 by rpki-client