Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/zpxI9B0T61gITm7rMZNxngkq0Xo.roa
File: zpxI9B0T61gITm7rMZNxngkq0Xo.roa (raw, json)
Hash identifier: jL2Xj6nRfiIDDZkvK4tI9lu7U4fpBshtesND/CELKgM=
Subject key identifier: CE:9C:48:F4:1D:13:EB:58:08:4E:6E:EB:31:93:71:9E:09:2A:D1:7A
Certificate issuer: /CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Certificate serial: 044FBB94
Authority key identifier: 9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/zpxI9B0T61gITm7rMZNxngkq0Xo.roa
Signing time: Sat 01 Jan 2022 14:57:25 +0000
ROA not before: Sat 01 Jan 2022 14:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212727
IP address blocks: 164.153.132.0/24 maxlen: 24
164.153.134.0/24 maxlen: 24
164.153.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72334228 (0x44fbb94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Validity
Not Before: Jan 1 14:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce9c48f41d13eb58084e6eeb3193719e092ad17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5a:88:27:32:ab:45:78:24:ad:10:ea:96:fe:
88:24:7c:f4:8f:87:d9:83:5c:42:d1:12:a8:50:fa:
5a:4c:c7:47:03:dd:d7:7f:2b:2d:25:16:43:86:c7:
b4:5b:9c:6c:8d:2c:42:25:b5:fc:f6:38:a1:9c:e9:
5e:aa:c5:fe:6e:eb:0a:14:ea:4f:00:78:19:27:c5:
ac:cc:4f:f0:24:53:72:9c:cf:43:1a:cd:16:65:0f:
98:5f:0c:29:a6:e0:51:79:94:68:9d:74:93:32:5a:
c8:5c:d8:1c:0b:88:b3:89:99:c3:ce:40:b2:71:88:
ba:cd:13:94:ac:01:25:1b:b5:21:ae:14:9f:25:08:
9d:62:74:f5:02:dc:53:22:57:2c:38:59:84:10:d5:
b8:1e:9d:af:4e:f9:a0:06:cc:a7:57:e8:7d:57:58:
6e:ce:2c:f7:f0:0d:95:7e:5c:5a:23:94:9f:3b:1d:
51:da:d8:c6:96:c9:65:72:b4:5f:ba:c7:ef:d9:e0:
97:a1:f5:f8:fd:8f:20:39:f6:80:20:dd:3d:02:49:
00:b4:e2:f3:e0:c9:8e:52:41:06:4b:d5:8d:fc:bf:
7f:6f:be:34:e3:04:14:31:e7:99:14:5e:1f:92:5b:
35:84:10:16:65:ba:40:70:c0:a8:9b:7e:d2:af:8f:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9C:48:F4:1D:13:EB:58:08:4E:6E:EB:31:93:71:9E:09:2A:D1:7A
X509v3 Authority Key Identifier:
keyid:9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/zpxI9B0T61gITm7rMZNxngkq0Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/m3Weyf9U3gOn_zpl7bsuB1jmh4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.153.132.0-164.153.134.255
Signature Algorithm: sha256WithRSAEncryption
59:df:2c:57:1c:48:bd:99:e3:ce:26:de:54:5c:d9:4e:bb:b0:
d4:d2:b2:c8:c6:38:0d:2a:18:dd:24:ad:35:26:a8:b2:88:a4:
0e:9d:12:71:2f:6c:1c:74:c4:df:55:1d:a8:2f:15:ee:8b:80:
9e:64:dc:26:8f:d4:69:94:a9:ab:89:3a:1c:7c:30:80:6e:14:
5c:03:d1:7d:f4:63:4d:7f:98:4a:36:09:f1:48:e4:6b:92:4e:
ce:9f:8a:3c:28:08:fc:a8:46:7f:ad:ec:d4:52:d5:11:51:c9:
64:d2:69:4e:90:0d:6a:4c:3d:aa:ee:c0:dd:69:e8:dd:81:37:
f4:7b:4d:67:5f:d0:ab:a9:bb:d3:02:fd:9a:e2:c3:3d:41:ca:
3a:0c:7d:20:3b:10:0a:98:cc:4a:56:ec:58:19:e2:d3:71:2d:
8c:24:5c:76:7c:45:74:a9:60:43:67:34:85:b6:19:88:c8:16:
2e:24:3c:e7:7b:3f:74:01:ca:51:96:09:37:9d:cb:0b:a6:4e:
4a:58:2d:41:62:93:06:ca:b6:cb:62:90:14:3b:6d:09:7f:83:
f0:19:d4:78:66:8c:f8:6d:67:34:27:f9:82:45:a4:9d:66:68:
26:ac:6d:8a:b9:03:0d:67:6c:cb:cb:d1:51:6f:b0:fb:cc:90:
10:09:9c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:00 2024 by rpki-client on console-fra.rpki-client.org