Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Zb8co5s18R3kzlmT8vli6AYJQtg.roa
File: Zb8co5s18R3kzlmT8vli6AYJQtg.roa (raw, json)
Hash identifier: 6K+/Z8bhz76XZ+beTZM0en01BxGXDpmMHWqtBMhyfyA=
Subject key identifier: 65:BF:1C:A3:9B:35:F1:1D:E4:CE:59:93:F2:F9:62:E8:06:09:42:D8
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A65CD9CBC1FF49F748C23B172EFB129F4
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Zb8co5s18R3kzlmT8vli6AYJQtg.roa
Signing time: Tue 05 Sep 2023 14:44:48 +0000
ROA not before: Tue 05 Sep 2023 14:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216394
IP address blocks: 5.105.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:cd:9c:bc:1f:f4:9f:74:8c:23:b1:72:ef:b1:29:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Sep 5 14:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65bf1ca39b35f11de4ce5993f2f962e8060942d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:68:6b:34:ea:19:c4:65:28:9d:f9:62:59:
c5:fc:c4:4a:21:d7:3c:df:09:33:6e:4a:88:fc:df:
c1:03:87:54:dc:d6:01:12:b8:b9:8f:4e:ec:1d:c0:
6d:bf:80:3f:b7:cc:17:56:6f:1e:8b:28:0d:94:48:
3b:a6:e4:1d:67:ac:66:3f:4f:09:66:71:71:00:32:
19:47:76:f7:70:c6:bd:31:d4:3d:75:20:ac:12:21:
a2:db:62:5c:a3:27:d1:80:da:c9:0b:54:2b:92:f3:
cd:07:c6:6c:2f:72:52:c4:5b:4b:1b:2c:7a:8a:d4:
b8:7c:79:2e:63:c1:32:26:cc:d9:8a:68:39:cc:85:
18:d1:a2:36:76:e4:ec:e8:02:42:f0:ad:ec:89:67:
94:eb:b9:98:f7:f1:30:70:11:c3:80:de:de:f6:55:
ab:83:a7:fd:47:14:de:39:66:c6:e4:1f:dc:39:1a:
31:11:bc:64:8b:ea:fc:2e:ce:03:78:1f:36:ed:81:
ca:c2:dd:39:30:24:86:f3:93:40:aa:19:d9:d5:ab:
c5:1d:f4:37:92:58:6c:1e:b4:a7:6d:4c:7d:04:a8:
d8:d4:b4:5e:76:67:2e:a8:61:3c:e5:9b:88:2c:35:
6e:06:4f:d6:63:a4:93:6c:b1:6c:64:73:f9:47:4f:
62:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BF:1C:A3:9B:35:F1:1D:E4:CE:59:93:F2:F9:62:E8:06:09:42:D8
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Zb8co5s18R3kzlmT8vli6AYJQtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.82.0/24
Signature Algorithm: sha256WithRSAEncryption
50:19:95:21:74:8a:35:62:ef:b4:53:2b:95:75:52:99:be:1b:
62:69:1c:01:6b:43:80:44:c1:04:2b:0e:12:f0:49:8b:7a:0c:
c2:7c:96:85:7d:28:72:66:09:4c:34:e1:46:da:6e:58:71:69:
3c:1d:89:d8:a1:bf:23:34:c9:09:bc:6b:a3:9c:dc:9a:b9:7d:
5c:5d:44:39:f4:76:e8:09:f5:01:13:b0:fa:fc:f5:f1:a3:d5:
9c:0d:5a:e1:ed:3c:79:2c:0d:18:c8:be:2d:d8:f9:61:cc:3b:
b9:2b:0e:03:04:b6:c8:14:30:8a:09:ea:99:3f:de:ff:c3:81:
e7:8a:aa:35:71:9f:0c:ec:8d:f9:a9:1b:69:22:f2:ca:57:35:
9a:bf:27:d2:71:94:52:ff:5c:77:53:ce:07:9a:b4:d9:02:dd:
c1:f5:7e:df:27:cb:e4:d2:15:9f:c0:68:6d:c7:3f:37:7f:cb:
40:f3:d0:d3:1c:08:29:08:e3:ab:cf:9d:6f:0e:90:f2:92:d5:
5d:d4:f4:e0:bd:e3:0d:a6:45:8a:13:81:63:52:8d:c1:c2:13:
a0:42:c4:a6:d8:63:93:67:47:c3:ee:0d:86:da:3a:07:fe:70:
e9:3d:e6:dd:aa:a4:76:f9:73:85:13:b3:72:74:14:5c:92:bd:
18:09:b3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:52 2025 by rpki-client