Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZyoFMqPvpoddOKg1uPhAUniDp0E.roa
File: ZyoFMqPvpoddOKg1uPhAUniDp0E.roa (raw, json)
Hash identifier: KXHlXTCYJlZCT8fRziIdKQiu7nglw9M9sCn9IcRgyf4=
Subject key identifier: 67:2A:05:32:A3:EF:A6:87:5D:38:A8:35:B8:F8:40:52:78:83:A7:41
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 011C769E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZyoFMqPvpoddOKg1uPhAUniDp0E.roa
Signing time: Sat 01 Jan 2022 00:59:42 +0000
ROA not before: Sat 01 Jan 2022 00:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207300
IP address blocks: 45.154.97.0/24 maxlen: 24
2a0c:b641:790::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18642590 (0x11c769e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=672a0532a3efa6875d38a835b8f840527883a741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:de:ef:2a:4f:b7:ad:7e:79:70:f8:86:b4:0f:
8a:27:c3:1d:e6:be:e5:5d:46:da:35:88:19:71:87:
ad:2b:37:3d:8c:4e:22:db:0b:f5:6f:9a:36:f8:30:
2d:66:77:76:72:d1:e0:6f:75:7d:64:be:ba:08:03:
ab:24:23:fa:a0:ec:41:bc:e3:f2:65:04:82:dd:ed:
48:19:8b:6e:8a:f0:8c:08:cd:9a:67:06:44:e7:d2:
f2:02:55:c1:21:26:75:64:7e:1e:e8:e2:46:06:99:
47:32:6f:67:bf:6f:93:a4:45:98:6d:58:40:37:e4:
62:e1:c8:3d:52:e0:ca:ca:2e:36:b6:fb:88:cc:df:
7d:81:e3:f6:64:8c:0f:66:ad:1d:ee:9a:35:1a:50:
b1:1c:c7:d2:e4:7a:a9:38:11:c3:9e:a2:3c:72:c6:
37:10:4e:70:5d:43:8e:17:57:55:3e:9e:2d:0e:ad:
2e:ea:32:df:be:3d:2c:6b:be:a0:21:66:34:e9:74:
54:ef:c9:0f:70:ce:fd:ae:f1:07:bf:3d:e2:82:2e:
0f:29:40:ae:be:23:f2:c7:ae:06:49:83:78:82:9f:
80:55:aa:3b:37:5e:55:1c:ad:e2:be:44:a7:c5:52:
c1:a1:3d:0e:5f:0f:69:ed:17:c0:bf:b9:b8:77:4b:
bd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2A:05:32:A3:EF:A6:87:5D:38:A8:35:B8:F8:40:52:78:83:A7:41
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ZyoFMqPvpoddOKg1uPhAUniDp0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.97.0/24
IPv6:
2a0c:b641:790::/44
Signature Algorithm: sha256WithRSAEncryption
38:48:dd:6c:21:5f:e2:71:33:03:7d:52:a5:44:3b:66:e9:8d:
1d:7f:f3:1b:ba:8c:c7:63:02:d9:07:85:1f:07:69:74:ff:db:
0a:74:e2:ff:c0:6e:8f:81:7f:b8:1d:35:4c:c2:22:99:4c:9b:
96:0f:f7:ed:0f:6e:b4:bf:20:bd:98:d0:59:96:74:2d:a2:dd:
84:39:c5:71:21:3a:62:72:dd:a0:20:5f:be:0d:e0:1e:cf:81:
af:c8:9c:f7:2a:3d:1b:0e:ca:a6:b0:cb:cc:03:c5:de:bc:fc:
5e:64:6b:01:f2:2a:23:99:75:2d:33:e3:31:50:5d:90:7f:3b:
d4:19:9f:5f:57:14:59:44:04:79:f2:aa:4c:17:a1:a6:96:8d:
a7:85:ee:e1:bb:95:b2:c8:74:23:58:41:9f:cd:60:52:c5:d6:
d7:dc:ee:ac:d4:ad:9d:10:fa:d6:8b:28:46:60:68:a9:34:ad:
69:2d:bc:25:3e:0a:b2:c0:0a:cf:1b:bd:5a:43:3a:34:1c:a6:
3a:f8:77:c2:d6:f2:a6:8f:07:59:65:8d:44:fb:b8:89:e7:41:
8b:f4:b0:1d:a9:f0:dd:b4:af:b6:43:ae:d6:ca:29:be:f3:b8:
9f:08:77:e4:4f:20:94:e7:94:28:1d:62:c7:f2:69:2c:45:4e:
3b:9a:da:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:48 2025 by rpki-client