Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZZvVlCiXMeviD-X7ytpTycE_SbE.roa
File: ZZvVlCiXMeviD-X7ytpTycE_SbE.roa (raw, json)
Hash identifier: wduOdVSubgw2UxuvvhDXFm/4WEYG7t2S8zjGZJV3/Z0=
Subject key identifier: 65:9B:D5:94:28:97:31:EB:E2:0F:E5:FB:CA:DA:53:C9:C1:3F:49:B1
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A4B5327
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZZvVlCiXMeviD-X7ytpTycE_SbE.roa
Signing time: Sat 01 Jan 2022 14:56:22 +0000
ROA not before: Sat 01 Jan 2022 14:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50692
IP address blocks: 5.160.220.0/23 maxlen: 23
5.160.221.0/24 maxlen: 24
5.160.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978015015 (0x3a4b5327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=659bd594289731ebe20fe5fbcada53c9c13f49b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1f:1e:d8:05:70:69:9a:24:49:2b:f9:e3:d8:
c6:3c:38:9d:ca:b7:96:5e:12:f3:a1:e1:53:4d:49:
51:40:9d:3f:94:af:99:1d:f8:8f:dd:1a:6f:e9:5f:
83:86:dd:4e:1c:33:7f:b1:49:7e:7f:41:49:ae:5a:
fb:2f:1d:6c:ef:86:2f:6b:9a:8e:2e:77:df:28:be:
f7:7f:fa:de:a3:4a:e1:98:cb:41:1e:d6:cc:86:e0:
f3:19:b4:96:6b:11:ee:ef:a6:a6:6f:f1:94:c7:81:
79:cd:f2:b3:31:37:4d:eb:d9:b0:27:0f:d9:72:c8:
a9:ca:35:c3:07:9a:63:53:de:4d:43:64:da:42:8a:
b4:c8:7e:0b:9e:ed:3a:21:8b:b5:a1:86:48:c1:01:
69:f7:4f:95:b7:88:60:9c:31:0b:a6:c9:f6:15:14:
56:44:27:07:77:c2:ca:94:75:5f:30:bc:5b:6f:b7:
d9:01:db:1f:03:54:1d:5b:fb:92:db:0b:b9:9f:87:
39:e1:a0:b9:d6:8a:a7:42:7d:4b:3a:df:64:ef:10:
e4:ee:ff:e8:5f:a5:7d:a4:82:95:88:88:cb:5a:cf:
73:44:83:eb:c2:06:3d:81:04:18:ca:83:59:4e:dd:
09:ca:ef:49:08:47:4f:f1:d4:8c:37:70:dc:43:24:
78:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9B:D5:94:28:97:31:EB:E2:0F:E5:FB:CA:DA:53:C9:C1:3F:49:B1
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZZvVlCiXMeviD-X7ytpTycE_SbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.220.0/23
Signature Algorithm: sha256WithRSAEncryption
85:81:d6:b7:62:c1:78:67:2f:9b:31:15:19:0a:2d:3e:8c:61:
45:f4:14:ad:57:e2:1e:c5:33:76:20:51:91:33:1e:11:4c:03:
35:18:8c:07:68:2f:e2:61:6f:35:28:4b:66:56:36:c3:9f:3e:
f6:bb:32:86:28:45:0b:54:78:38:e2:d9:01:ac:c8:04:d3:9b:
b4:3e:4e:26:0e:9a:1a:ad:32:e3:57:61:18:a4:d0:89:12:40:
9b:ea:5f:b8:2b:e5:13:3e:6e:2d:c1:2a:a4:cf:01:88:0d:29:
50:7a:ab:d8:e2:eb:49:20:80:d4:ee:dd:fe:4e:54:cc:31:08:
b0:07:99:81:5b:d9:fa:d8:1c:30:08:85:2d:72:43:48:0c:2d:
91:bf:07:5c:cd:1f:1c:39:a5:e8:81:af:55:1b:65:aa:ba:d0:
a6:96:b8:84:6f:59:e7:14:b7:f7:2d:e8:bc:3d:f7:e1:c2:76:
6b:2f:6a:57:4a:88:3c:b4:a8:06:24:7e:16:d1:6d:44:67:13:
44:9e:9f:68:f7:e2:cd:3e:89:27:84:e6:ce:ab:b3:8b:6a:2d:
06:29:e5:0a:ba:e6:95:90:cc:ef:17:ff:d1:f9:3e:64:81:b3:
f1:69:24:ad:08:2c:21:15:a9:3b:39:8d:7c:b7:fe:a8:e9:8a:
d8:9f:20:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org