Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/ZC0Ev_a9uozKTSD381_LDZK2RDs.roa
File: ZC0Ev_a9uozKTSD381_LDZK2RDs.roa (raw, json)
Hash identifier: pnW5oDwF3tLY8KOgmGng+fORY9PX/4h4cxLZ1fBm7Nw=
Subject key identifier: 64:2D:04:BF:F6:BD:BA:8C:CA:4D:20:F7:F3:5F:CB:0D:92:B6:44:3B
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 02B574FD
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/ZC0Ev_a9uozKTSD381_LDZK2RDs.roa
Signing time: Wed 09 Mar 2022 00:56:51 +0000
ROA not before: Wed 09 Mar 2022 00:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 45.140.247.0/24 maxlen: 24
81.199.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45446397 (0x2b574fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Mar 9 00:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=642d04bff6bdba8cca4d20f7f35fcb0d92b6443b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a0:21:78:cf:1b:f9:f2:1e:58:55:8d:b8:00:
0b:dc:7a:66:91:02:d4:75:00:85:97:af:1d:34:6d:
55:78:5d:a9:c9:d8:3a:3b:d3:02:76:6a:40:13:95:
a6:57:28:42:9d:8c:d1:61:7f:66:69:3e:3f:a3:d0:
22:da:a4:9b:a6:2b:f7:6b:84:f1:a1:1b:b4:97:7f:
81:d5:a1:e1:4d:9f:12:b5:7d:16:ea:ca:97:e8:76:
2f:f5:bf:57:1d:09:d8:82:a6:48:1f:70:19:9f:4c:
55:1a:58:54:8f:c1:3a:38:67:a9:57:af:3c:3f:3c:
89:6c:e3:5e:74:da:d3:5a:c2:59:a8:0a:3a:ba:6c:
fe:54:ee:ca:75:5f:26:97:00:e8:b6:69:c1:19:80:
b1:5e:f4:a3:87:90:55:f2:5a:13:27:71:4e:3f:ed:
5c:70:f4:9f:20:ac:e7:63:06:d5:4f:15:51:fa:ff:
f4:4b:3d:d4:17:0d:79:58:fb:7a:4f:64:15:77:2f:
ee:2d:db:36:68:5a:ff:bf:34:3d:cd:c2:df:78:f7:
09:3a:08:f5:39:61:c0:36:b1:d4:bf:44:20:2e:4b:
e6:14:f0:7d:c2:46:27:9b:1c:94:76:c4:a2:0f:e0:
a2:b5:57:fa:32:68:cc:3a:ed:b4:4d:9e:aa:71:8e:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2D:04:BF:F6:BD:BA:8C:CA:4D:20:F7:F3:5F:CB:0D:92:B6:44:3B
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/ZC0Ev_a9uozKTSD381_LDZK2RDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.247.0/24
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d1:e3:79:2e:88:aa:c5:74:96:5b:d4:1d:1b:9d:89:90:bc:
f5:90:6a:bf:9d:11:f3:83:b9:a6:55:d5:f4:cd:b8:2d:48:1f:
2f:a5:33:03:9b:2e:e2:bd:7c:5e:86:38:62:14:a9:ef:39:40:
53:35:10:9a:f5:a8:40:f7:ed:7b:a1:59:da:cd:00:0d:34:cb:
ca:dd:7a:e6:03:db:d0:85:a4:1d:52:ed:60:21:59:17:28:10:
85:eb:6c:c7:02:00:05:db:48:36:f5:c4:65:ec:89:71:ca:94:
18:a4:82:58:92:77:c3:1b:e1:04:c4:63:2f:51:6d:f4:df:3b:
43:21:db:ac:2f:4b:13:44:db:49:d9:a1:9d:35:b1:23:d8:1e:
2c:a9:66:c0:23:4e:bc:22:69:3c:e4:a3:7d:95:04:43:e9:4f:
07:d7:2a:7d:4d:7d:2e:7e:e7:e1:e7:49:41:38:73:cb:97:dc:
d0:4f:01:1c:eb:13:c9:4e:57:54:86:b9:3c:68:68:1a:11:7b:
8d:84:bf:03:ee:07:3f:95:64:08:e0:bb:ed:42:01:7a:0e:06:
c3:d8:ef:71:d9:67:7d:69:ce:00:92:72:63:1e:64:e6:4e:87:
78:17:47:95:f8:06:7b:c9:e5:39:71:e7:04:e8:4d:63:62:f3:
5c:f0:3b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org