Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/ZC32Q0mlCF_I5P-3mi0zcXZ9BlQ.roa
File: ZC32Q0mlCF_I5P-3mi0zcXZ9BlQ.roa (raw, json)
Hash identifier: HOU02+L9CLpqMVQpUPw6n+dxX0bdN19vjvPiQ3wPsZg=
Subject key identifier: 64:2D:F6:43:49:A5:08:5F:C8:E4:FF:B7:9A:2D:33:71:76:7D:06:54
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0183F82B03F9B360FDD66FA2190EBE861653
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/ZC32Q0mlCF_I5P-3mi0zcXZ9BlQ.roa
Signing time: Fri 21 Oct 2022 01:31:51 +0000
ROA not before: Fri 21 Oct 2022 01:31:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.150.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f8:2b:03:f9:b3:60:fd:d6:6f:a2:19:0e:be:86:16:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 21 01:31:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=642df64349a5085fc8e4ffb79a2d3371767d0654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:43:7b:70:bd:1d:21:b3:19:b4:d1:75:18:81:
0e:bd:2a:d8:00:f8:8c:bf:74:6e:68:3a:9f:b4:40:
bc:89:c1:d5:94:2d:91:1b:36:41:22:85:f8:3b:71:
ab:b1:91:c7:f5:4b:ac:70:13:63:60:43:bc:8d:8e:
d2:8f:d3:ff:66:88:bb:2f:9f:e8:c9:91:b6:6a:43:
ff:13:a4:f5:64:da:8c:85:d2:ed:f8:b9:9a:00:66:
e2:68:45:53:bd:e3:fd:7a:cc:9a:fa:9f:fc:83:12:
19:4e:7a:68:49:24:40:7c:44:14:01:5b:e1:a3:ee:
3b:89:d3:a9:8f:c2:46:77:bc:7f:6b:08:0a:5d:79:
cb:91:a9:b5:ad:1a:48:3a:d4:f3:4a:82:e8:86:24:
14:79:3b:d0:4c:ab:08:c2:11:99:15:c3:62:4a:2c:
33:43:6b:da:a0:cd:fc:27:10:d6:d0:10:d0:fa:66:
46:ec:0f:35:9f:4c:8e:3b:66:44:59:77:b0:72:d7:
c1:22:53:81:64:22:95:45:10:ef:ee:d2:a1:04:e7:
e1:b4:a0:14:f2:06:25:00:9b:52:70:6a:88:b6:a6:
02:4d:ea:af:21:bf:fd:b5:71:4b:3c:7e:09:ef:ca:
85:d5:ef:6b:cf:98:85:b9:0b:eb:8d:c5:eb:0f:55:
39:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2D:F6:43:49:A5:08:5F:C8:E4:FF:B7:9A:2D:33:71:76:7D:06:54
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/ZC32Q0mlCF_I5P-3mi0zcXZ9BlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.174.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:da:5d:f6:a5:91:81:f5:0f:ba:56:dc:c0:82:99:90:22:c9:
41:3d:0e:9e:64:a2:65:cb:5e:f2:55:75:38:ea:63:1b:87:8c:
2c:ad:37:42:ec:f4:b0:4f:09:06:e1:c4:83:68:f9:53:26:4f:
6e:e1:9f:39:2f:cb:c9:36:09:57:f1:80:fe:c6:ed:3c:4b:65:
a3:19:90:d9:56:5e:17:11:5b:f5:be:85:c7:fe:fa:d2:8f:90:
69:f0:3e:c1:da:9f:92:cd:d2:57:d8:e8:a6:bb:29:37:84:c7:
af:5f:88:f2:98:d5:37:58:e6:48:ba:67:83:63:46:8b:d3:a9:
3b:4d:ae:c6:c1:6b:9e:c0:ef:1a:31:76:de:3c:07:0c:16:f7:
15:5a:cf:c5:4c:2a:aa:fe:74:d8:80:fe:d9:81:d3:0c:5a:ab:
3c:20:2c:5f:bb:48:4a:ca:b5:e4:5b:71:3e:b4:6f:94:02:61:
55:8b:e8:e5:93:0a:8a:9c:30:29:d9:f9:5f:08:24:dd:1e:58:
51:c0:b5:1b:9b:69:18:9b:dd:f1:64:4c:3e:f8:90:10:1b:7e:
2c:b7:4d:90:54:e0:4c:b0:a4:2a:1d:73:ec:d0:22:da:37:b7:
53:65:dd:96:9d:0a:d7:97:f1:f9:e4:9c:78:46:90:b0:ec:30:
0b:2e:96:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org