Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/zD5yyNTqzMCEfbEDDVf4FXF7C4I.roa
File: zD5yyNTqzMCEfbEDDVf4FXF7C4I.roa (raw, json)
Hash identifier: jvnAheN6cGiWRc/CTuWZgsZX8yySnU5erHqjW/2E9uo=
Subject key identifier: CC:3E:72:C8:D4:EA:CC:C0:84:7D:B1:03:0D:57:F8:15:71:7B:0B:82
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 01840FFD3BEC8F59AE1F6ED3AEF875F60565
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/zD5yyNTqzMCEfbEDDVf4FXF7C4I.roa
Signing time: Tue 25 Oct 2022 16:32:44 +0000
ROA not before: Tue 25 Oct 2022 16:32:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 212.116.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0f:fd:3b:ec:8f:59:ae:1f:6e:d3:ae:f8:75:f6:05:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Oct 25 16:32:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc3e72c8d4eaccc0847db1030d57f815717b0b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:87:b7:46:76:29:4c:5b:27:ce:9f:97:78:33:
f3:03:d6:15:9b:a5:f3:de:16:a6:7b:78:ae:82:07:
3a:a4:b8:c2:bb:e4:e3:fd:7f:7e:93:3f:9d:6c:21:
a5:5f:98:42:78:e7:65:37:9f:47:82:b8:f9:b5:50:
e1:28:fb:73:9c:4e:ee:94:3f:94:5e:dd:b0:b6:2f:
eb:2f:b5:c2:30:6f:7d:06:b6:1b:0e:22:ff:03:60:
3c:a0:33:a8:fd:34:f3:0d:10:e3:7a:c8:6b:c7:91:
ae:19:7f:7e:66:f3:21:9a:6c:69:de:8a:77:bc:4b:
b1:22:af:fc:d3:47:1e:49:74:87:f5:4a:9d:3f:ea:
77:59:79:ef:e2:03:c3:8f:46:fc:fa:9f:e8:d2:b0:
57:34:57:d8:1d:80:61:27:39:5d:49:a6:92:64:d1:
3d:cf:41:41:36:4c:c6:17:f6:98:2b:89:b8:71:c2:
2b:9d:0c:7a:62:34:72:5a:36:d7:87:c7:a5:cd:ca:
7a:fa:30:45:4f:43:e8:a4:31:fa:00:e1:35:ee:18:
b8:34:8f:a9:92:29:30:1a:8b:63:9a:04:cc:83:66:
c8:dc:65:78:96:1e:fa:59:0e:e7:8f:54:d3:99:57:
e6:88:e5:8b:2d:0b:8e:3b:92:28:41:9e:e3:b7:ef:
ab:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3E:72:C8:D4:EA:CC:C0:84:7D:B1:03:0D:57:F8:15:71:7B:0B:82
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/zD5yyNTqzMCEfbEDDVf4FXF7C4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.242.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:97:9e:90:65:53:1c:6b:01:26:af:3b:48:b5:85:c1:48:1f:
df:28:34:02:8f:05:59:66:8d:8c:be:ef:17:56:1f:e2:8b:a4:
1e:06:36:ce:53:e8:ce:57:f0:6c:42:b5:21:fa:2c:81:81:51:
85:2d:92:8d:c7:aa:5b:ee:5e:12:ed:19:4d:15:4f:06:f2:13:
ae:66:88:9a:02:35:3c:c6:8e:9e:92:05:31:65:dc:d6:76:12:
45:a0:08:c0:7a:c7:c1:43:ff:57:ee:de:e7:c4:7e:e4:e9:75:
8a:c6:ba:02:45:9f:dc:3f:59:ad:c0:3a:b7:68:58:04:43:7a:
11:9e:9b:26:d6:cd:61:ac:67:63:9e:c6:b0:a2:c4:08:ac:18:
1e:47:09:17:f0:a2:bb:bb:71:1f:2a:3f:e6:49:aa:22:6a:88:
fb:7b:02:75:35:11:05:06:49:42:80:a2:36:a9:1d:5f:44:05:
a8:58:81:95:3a:d0:00:e8:d4:1c:4d:eb:97:2c:e3:7e:2a:14:
67:08:bd:16:52:12:b0:a4:ca:58:59:bb:fc:fc:b1:ee:cb:24:
2c:ba:de:45:d5:ef:a0:08:c0:04:6a:a1:68:52:17:17:6e:ff:
37:5b:29:2e:d6:2e:e2:e9:b4:cb:24:1b:e5:a6:04:6a:09:cc:
28:fb:ad:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:54 2025 by rpki-client