Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZmfS-jPKATQb9O8Z6dB3_bENCdo.roa
File: ZmfS-jPKATQb9O8Z6dB3_bENCdo.roa (raw, json)
Hash identifier: 5o9wgV/B/CP40Z0B1WVOyGsJ+M6MsnppnmLouBku5QI=
Subject key identifier: 66:67:D2:FA:33:CA:01:34:1B:F4:EF:19:E9:D0:77:FD:B1:0D:09:DA
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 015C82D3
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZmfS-jPKATQb9O8Z6dB3_bENCdo.roa
Signing time: Sat 01 Jan 2022 02:59:23 +0000
ROA not before: Sat 01 Jan 2022 02:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210972
IP address blocks: 45.95.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22840019 (0x15c82d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 02:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6667d2fa33ca01341bf4ef19e9d077fdb10d09da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8f:7d:82:0b:85:16:dd:2a:51:49:dc:53:70:
2d:a8:91:c4:b1:bd:02:59:9a:ec:93:ce:d8:46:f2:
c1:f9:2d:55:15:47:94:78:58:bd:88:1e:06:58:56:
bc:ca:32:3f:86:32:e9:1e:b4:e6:1a:13:77:88:e0:
ae:b4:70:90:c9:92:db:4b:4a:a0:a7:4c:9e:20:f0:
97:b6:8f:63:85:b3:49:24:6f:79:6c:76:e6:12:d9:
5c:99:b0:ad:d6:53:f4:19:41:a1:47:ca:77:60:dd:
e7:ed:d5:95:5e:60:f1:fc:28:15:6e:84:1c:88:99:
e9:47:c6:20:fa:4c:2f:f9:d1:84:98:4c:69:64:40:
42:35:56:9a:43:80:0b:84:7b:7c:e7:76:cd:6e:8e:
26:8f:44:07:e7:1f:24:fc:c4:5f:6b:79:01:13:8d:
1b:67:a7:e2:fc:2b:5f:f0:6c:49:b2:51:3c:d3:9f:
64:52:8b:67:93:2b:ab:9e:c1:f5:c9:18:63:1d:b5:
25:51:ef:f7:95:bb:38:24:3e:49:ad:19:c3:93:1f:
c4:bd:87:10:4a:ef:5a:38:ca:06:70:22:a1:69:e1:
70:16:e4:6d:db:ed:84:15:56:b8:7b:a3:55:52:74:
7e:bd:c2:b4:d7:cb:ab:da:78:a7:21:ce:39:3a:71:
bd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:67:D2:FA:33:CA:01:34:1B:F4:EF:19:E9:D0:77:FD:B1:0D:09:DA
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZmfS-jPKATQb9O8Z6dB3_bENCdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.115.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e6:e2:d9:ac:43:82:50:1e:31:6a:35:79:33:50:d6:e9:97:
ca:b0:1d:f1:7f:6b:15:df:0c:6c:41:eb:2e:c0:5e:9a:fa:ef:
3e:4b:d5:e9:24:9f:db:fc:d2:64:60:ac:56:42:a3:2e:c9:bc:
d9:da:7c:01:b4:ed:ed:b3:1d:ed:fa:55:54:a6:de:e9:64:d7:
53:d3:70:0c:a6:ba:19:71:f1:f5:c5:69:f3:03:38:a7:a1:10:
88:35:31:b6:48:09:db:68:2f:ce:0c:4d:e4:de:4b:98:25:c6:
08:58:cb:c8:c6:da:e1:d8:f7:71:25:25:b6:19:e4:93:c9:b9:
dd:bc:77:c7:36:f9:43:df:ef:cd:3c:37:7a:16:90:39:43:c5:
81:74:48:9f:b4:8f:77:56:fa:90:9c:25:58:e1:4d:f0:14:50:
1a:9d:70:06:53:ca:d9:84:7a:8c:17:b9:3f:97:2c:f7:9e:49:
15:42:87:7d:06:2e:49:dc:37:c0:66:fa:e1:69:1b:43:ab:a6:
71:49:c2:ac:0b:45:de:01:ef:58:34:4f:a5:1a:d3:a7:d4:a8:
84:a3:c0:25:ba:69:41:7d:d3:b3:d6:43:4c:d5:71:c1:1a:e4:
b1:64:9b:83:cd:1a:33:88:ea:e2:d7:3c:d6:db:c6:07:86:a9:
b0:00:f4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org