Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/ZL_VqrygDGx9y9Fz6ibJluqbwgQ.roa
File: ZL_VqrygDGx9y9Fz6ibJluqbwgQ.roa (raw, json)
Hash identifier: M03D/H9amP9tw+FMcslwsIIeXMoUFacV2CqE7p/1rOY=
Subject key identifier: 64:BF:D5:AA:BC:A0:0C:6C:7D:CB:D1:73:EA:26:C9:96:EA:9B:C2:04
Certificate issuer: /CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Certificate serial: 018572A8036F165FF5A95B456BCDDD2CCE62
Authority key identifier: 99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/ZL_VqrygDGx9y9Fz6ibJluqbwgQ.roa
Signing time: Mon 02 Jan 2023 13:24:51 +0000
ROA not before: Mon 02 Jan 2023 13:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209638
IP address blocks: 185.178.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:03:6f:16:5f:f5:a9:5b:45:6b:cd:dd:2c:ce:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Validity
Not Before: Jan 2 13:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64bfd5aabca00c6c7dcbd173ea26c996ea9bc204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:96:5c:00:89:7c:a3:d2:25:5e:d6:d0:17:13:
17:1b:a4:a2:53:ab:ab:45:32:9d:e0:d6:54:35:dd:
aa:88:fe:b4:b7:65:46:82:46:e7:c9:b8:1c:98:88:
69:4c:69:40:b2:2f:a6:24:2b:4f:f9:30:58:d1:9b:
a8:4d:bb:59:64:13:58:8d:7a:64:3f:ee:5b:c9:aa:
22:be:d0:e1:83:7f:e5:0f:96:0f:e1:e1:50:98:25:
a5:4d:41:50:3b:fa:ab:ea:66:14:09:7d:da:45:f3:
db:0c:f4:a8:fc:f6:30:ae:21:ed:77:8b:16:b6:23:
a3:19:62:72:25:4a:75:5e:c6:0b:15:90:bf:f7:f6:
9e:6b:34:fa:5e:27:68:f6:54:a1:7e:f7:e9:9f:15:
26:1b:25:cc:5f:c9:43:f4:53:7d:8e:9d:d2:a5:4f:
a2:65:f1:eb:ec:a1:9c:92:65:09:38:32:61:dd:c4:
65:f6:07:d7:b9:92:30:cc:4b:22:05:32:2b:b9:06:
85:45:48:4f:85:2d:69:bd:80:25:36:47:c1:ca:9f:
3b:47:da:7d:2b:d3:43:04:4f:c6:de:7b:07:6e:3b:
3c:82:c0:e2:a9:99:50:08:59:24:b9:2f:e2:35:ba:
24:dd:f7:ee:87:60:70:68:d7:df:3a:6d:ca:54:57:
7a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BF:D5:AA:BC:A0:0C:6C:7D:CB:D1:73:EA:26:C9:96:EA:9B:C2:04
X509v3 Authority Key Identifier:
keyid:99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/ZL_VqrygDGx9y9Fz6ibJluqbwgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/mRf3d-caw0Ei7bNe3WDPFNdbnvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
66:08:78:e0:29:77:0a:c7:eb:93:39:a6:d3:35:aa:72:45:17:
bd:aa:76:aa:b4:fb:da:11:9d:a0:87:ef:a3:ae:93:6c:57:f9:
78:cb:b7:0f:61:5c:6a:65:1e:bc:97:ef:05:d3:1e:5e:57:8d:
97:73:29:b1:bf:57:40:8c:65:61:4d:07:a9:bc:6e:94:c5:67:
bb:74:85:9e:61:e4:15:72:32:5b:e2:8a:02:17:ff:68:05:28:
e3:f0:b7:6d:f9:d3:3d:10:98:f2:80:ac:c6:cc:71:d9:e2:25:
8e:df:84:c9:58:4f:ff:84:a4:87:e0:4f:13:ef:62:01:57:96:
4a:c6:bb:63:a2:89:b7:f2:01:41:09:72:fb:3d:62:a9:8b:81:
14:08:68:9d:12:3a:98:da:00:97:62:85:cc:1c:5d:a3:36:7e:
ba:44:47:e5:10:f1:52:34:b1:15:1e:97:63:86:28:e6:9d:6d:
71:f1:95:24:65:0c:8c:2e:5a:82:a5:b0:e3:59:16:33:a2:f7:
64:cc:40:63:e6:65:f5:7f:69:2d:f4:8d:22:d2:f2:bf:37:59:
cb:9c:c1:77:bf:1d:25:5f:23:06:57:11:e7:54:36:36:0d:4c:
43:8b:b5:e0:03:53:13:54:92:d8:b2:a5:68:dd:79:09:bd:0e:
73:73:dc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:02:34 2025 by rpki-client