Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Zrs1RYBB8RisrxOtBSSq0bKuYdg.roa
File: Zrs1RYBB8RisrxOtBSSq0bKuYdg.roa (raw, json)
Hash identifier: FnbhLOFNE+xHgDPqOpDzV+1wJjwI0nyZKN8i9AjS1qc=
Subject key identifier: 66:BB:35:45:80:41:F1:18:AC:AF:13:AD:05:24:AA:D1:B2:AE:61:D8
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A5A73F3
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Zrs1RYBB8RisrxOtBSSq0bKuYdg.roa
Signing time: Sat 01 Jan 2022 14:56:32 +0000
ROA not before: Sat 01 Jan 2022 14:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62157
IP address blocks: 5.160.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979006451 (0x3a5a73f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66bb35458041f118acaf13ad0524aad1b2ae61d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b2:b0:13:78:d1:74:41:be:34:a5:48:12:23:
85:6e:0d:31:e7:8d:6e:61:87:3c:2b:fd:2b:7f:fb:
34:a1:3b:51:4e:85:33:61:ea:64:74:7f:9d:d7:9d:
75:69:97:7f:8d:a1:19:42:b6:31:c7:27:0a:5c:f4:
3a:fb:ec:b3:d9:ab:5c:10:c6:70:e8:e4:d0:db:74:
9c:15:8b:0b:1a:0e:10:ba:86:69:16:e2:7b:b9:50:
f5:59:84:4b:b3:b7:c9:f1:99:08:b1:2e:a5:db:c9:
7a:5d:cb:5f:87:f7:51:71:a7:13:68:e2:a5:ed:b5:
43:af:c8:aa:90:67:17:cd:86:85:24:1f:e8:10:98:
87:61:9e:3b:af:8e:a6:54:7f:87:ea:db:32:65:91:
f7:cd:cf:4e:22:2f:ee:c9:78:b7:6d:2e:c0:17:30:
e4:bd:50:71:75:bb:41:5c:01:11:4b:85:da:83:8a:
f3:6c:07:09:ac:36:b3:9b:09:d9:14:ba:e4:1d:23:
4e:1c:d0:cd:12:bc:88:03:4a:df:cf:af:a9:a9:4d:
f3:1c:85:19:0b:6c:20:26:01:13:61:e0:6a:52:cf:
d4:0a:f2:1a:9d:96:99:ea:a2:a9:86:06:56:eb:cf:
70:43:b6:30:da:91:78:67:92:29:35:8c:08:25:08:
ff:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BB:35:45:80:41:F1:18:AC:AF:13:AD:05:24:AA:D1:B2:AE:61:D8
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Zrs1RYBB8RisrxOtBSSq0bKuYdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.54.0/23
Signature Algorithm: sha256WithRSAEncryption
60:0d:f1:7b:b7:b3:94:ff:96:59:a8:65:6b:bb:bb:d7:48:d3:
b4:4b:90:0d:26:54:65:eb:d0:14:77:d8:b6:70:5e:21:0a:1e:
f7:70:b0:60:5f:d3:ef:91:e4:f3:11:cf:8f:51:d4:27:40:b7:
87:03:43:54:2f:54:8d:fb:5f:9f:b2:c2:49:0a:03:ef:d6:e3:
1d:a4:bc:ca:ab:b0:c8:53:15:63:83:f7:3e:df:6e:6d:19:4c:
03:df:3c:12:dd:78:41:50:3a:d9:e7:28:c1:20:30:df:cb:d9:
28:da:c1:52:8a:ee:5f:4e:97:a8:5e:ce:bd:b9:6e:fb:c0:68:
bb:14:ea:f3:c3:a9:eb:37:4b:f1:15:da:fb:73:4b:bd:26:4b:
b2:90:14:94:8f:92:00:6e:a5:21:5f:21:11:45:1c:5b:e0:01:
4a:86:8d:36:4d:b8:84:e2:a8:79:cc:61:09:a4:19:98:36:b0:
be:a1:7f:03:0e:b4:ad:b4:f5:3e:d6:6c:73:aa:58:2e:2c:39:
d1:bb:bd:f3:83:e9:b0:74:9a:d4:94:8f:15:49:68:ca:f2:ef:
7c:02:f0:3b:03:78:5e:d6:12:0d:39:e6:f5:2f:11:21:ae:b2:
ce:e4:ff:ac:ad:51:37:56:a7:09:5a:42:fa:a7:55:1e:64:3e:
d8:c8:11:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org