Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZEK4SFcHCNjaU4dIWLh8NxPUbHI.roa
File: ZEK4SFcHCNjaU4dIWLh8NxPUbHI.roa (raw, json)
Hash identifier: 3Dh/fa9OHbTZL1BIpAWYMXgkLq1reMK9qzbI6ARG3CU=
Subject key identifier: 64:42:B8:48:57:07:08:D8:DA:53:87:48:58:B8:7C:37:13:D4:6C:72
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 0873CE1D
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZEK4SFcHCNjaU4dIWLh8NxPUbHI.roa
Signing time: Sat 01 Jan 2022 00:53:30 +0000
ROA not before: Sat 01 Jan 2022 00:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60121
IP address blocks: 212.59.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141807133 (0x873ce1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6442b848570708d8da53874858b87c3713d46c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:85:d3:4f:fc:cc:db:93:89:64:bf:42:12:a7:
50:9c:8d:69:45:c7:99:c3:84:6d:c3:e3:a8:2a:5c:
27:59:98:58:c1:f6:c4:bc:fc:b6:c8:1f:d7:18:dc:
49:2a:d2:e5:70:0a:70:3b:dc:a1:5d:c1:26:36:c8:
d8:94:91:ec:88:03:af:42:8b:62:26:28:eb:3a:25:
42:e6:be:79:dd:51:e2:96:2c:d7:c3:4d:b7:ac:da:
f6:2d:0e:ef:1d:24:de:62:41:88:8e:8b:77:05:77:
27:57:80:99:6a:0c:f8:ec:87:b5:d2:4f:88:c2:9e:
34:92:f2:11:80:9f:69:30:9e:40:cc:2a:67:4a:98:
e6:c9:b6:c3:86:2f:9a:47:b9:fc:95:8c:8e:df:38:
27:a4:1b:3d:e6:2f:67:33:81:4a:4f:7d:44:1b:25:
ef:6d:87:50:a4:2f:e0:11:d9:f2:85:18:16:a1:b7:
7d:ee:ed:a1:31:1c:02:25:e0:3e:0b:5d:5c:16:43:
8b:75:fd:05:b6:30:fc:2b:bc:a3:b4:02:0b:c4:fb:
55:89:36:54:10:33:64:97:4b:eb:4c:2e:4f:39:91:
bc:61:29:94:bc:b9:b2:e9:4c:75:7e:9a:1a:e7:1f:
7e:b2:72:f7:e0:48:8f:3f:d1:19:f0:77:f2:e7:ef:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:42:B8:48:57:07:08:D8:DA:53:87:48:58:B8:7C:37:13:D4:6C:72
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/ZEK4SFcHCNjaU4dIWLh8NxPUbHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.59.16.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:72:e0:49:f5:8a:03:9a:b6:b2:0f:32:21:ef:bb:a5:25:88:
fd:0c:5b:f4:aa:d1:da:b2:dd:3f:0f:8b:d5:26:6b:eb:7f:de:
00:1d:4d:d9:bb:a3:36:38:10:da:fe:6f:74:4c:4b:b9:6c:c1:
89:ac:20:6e:61:53:63:80:ca:c1:54:07:ac:e9:83:7d:d4:bb:
82:98:e4:a7:96:8c:80:82:cd:9b:85:35:38:6e:b0:ba:92:18:
ef:22:26:66:e7:0e:80:8d:8d:78:24:4c:7b:a1:f4:d1:b6:5c:
3a:8d:18:40:ca:66:5b:df:ea:f1:54:89:79:7e:80:7e:aa:84:
83:03:8f:b6:7b:bf:22:91:b2:b2:39:b7:18:51:68:e3:b7:b8:
f5:1f:eb:89:4b:39:1f:75:4f:27:9b:42:cd:3c:f7:cd:10:8e:
00:ea:1e:25:1b:04:72:fd:17:c0:de:7d:7e:63:83:63:f6:ee:
16:79:e5:62:87:b0:6a:84:95:63:eb:85:55:81:e0:5d:5e:a4:
85:5a:05:91:95:78:d3:38:a1:0e:69:05:36:f4:15:64:18:97:
e0:a8:72:e7:2f:e3:6f:cf:18:7b:d2:e5:6a:d2:81:13:83:9c:
5f:d6:d6:82:1a:63:fb:09:68:0c:82:a9:47:cc:b6:24:9b:55:
fe:f7:10:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org