Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/983abd-3488-4c6e-ad88-8b1cfb68366e/1/ZU9OO0BdQ-SF5eKYK1Kb_Njzm1s.roa
File: ZU9OO0BdQ-SF5eKYK1Kb_Njzm1s.roa (raw, json)
Hash identifier: 7/DjgdkduhI1yb3GqGEPWJOMBh+o4Mz7D30WIFrS6x8=
Subject key identifier: 65:4F:4E:3B:40:5D:43:E4:85:E5:E2:98:2B:52:9B:FC:D8:F3:9B:5B
Certificate issuer: /CN=6b7fa05e6b4d8a51294407504d9641ad3e02043f
Certificate serial: 018570FBBACD7A87048032C97C4DED676910
Authority key identifier: 6B:7F:A0:5E:6B:4D:8A:51:29:44:07:50:4D:96:41:AD:3E:02:04:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3-gXmtNilEpRAdQTZZBrT4CBD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/983abd-3488-4c6e-ad88-8b1cfb68366e/1/ZU9OO0BdQ-SF5eKYK1Kb_Njzm1s.roa
Signing time: Mon 02 Jan 2023 05:37:03 +0000
ROA not before: Mon 02 Jan 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61045
IP address blocks: 188.93.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:ba:cd:7a:87:04:80:32:c9:7c:4d:ed:67:69:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7fa05e6b4d8a51294407504d9641ad3e02043f
Validity
Not Before: Jan 2 05:37:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=654f4e3b405d43e485e5e2982b529bfcd8f39b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:78:45:e5:fb:13:d0:01:c0:6c:67:b7:19:63:
13:0c:fc:c8:a9:e8:79:2c:80:38:58:35:f2:83:b4:
f5:2a:a6:d2:10:ba:17:56:0d:9c:45:4b:b2:9f:55:
4b:46:d4:0f:6f:39:d4:dd:b5:59:4d:d3:82:ea:0e:
91:28:41:47:a9:8c:9d:d5:e7:a3:80:58:ab:d9:57:
c7:1f:45:71:96:43:ca:15:e1:f6:95:e6:da:b3:cf:
d7:6b:dd:51:5b:be:aa:29:a3:6d:40:89:26:a1:3b:
f7:d2:0b:b2:c7:35:66:a3:c4:a6:41:9d:a7:82:01:
03:02:76:08:1f:86:55:b8:80:40:fd:11:85:4b:31:
1e:b2:fb:d9:84:7c:e9:2c:f6:f2:ea:6b:6c:3a:5c:
23:96:f0:a2:65:6b:e7:5b:5e:b1:a4:7a:e6:e2:51:
65:bd:bf:64:6d:47:12:f4:b3:a0:5b:42:79:9c:47:
f6:20:69:fe:b0:14:a9:65:32:16:ce:02:7d:cf:de:
a0:4c:cd:62:38:72:10:d3:b1:bd:bb:fa:62:4f:0b:
8b:44:b1:26:23:cd:cc:bb:fb:a6:3c:6b:e0:04:8e:
4c:0f:7a:cf:f5:9e:89:11:65:e0:ce:6b:78:ba:3e:
e6:cd:76:9b:44:4c:da:df:62:dc:7d:98:eb:2b:2e:
b5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4F:4E:3B:40:5D:43:E4:85:E5:E2:98:2B:52:9B:FC:D8:F3:9B:5B
X509v3 Authority Key Identifier:
keyid:6B:7F:A0:5E:6B:4D:8A:51:29:44:07:50:4D:96:41:AD:3E:02:04:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3-gXmtNilEpRAdQTZZBrT4CBD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/983abd-3488-4c6e-ad88-8b1cfb68366e/1/ZU9OO0BdQ-SF5eKYK1Kb_Njzm1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/983abd-3488-4c6e-ad88-8b1cfb68366e/1/a3-gXmtNilEpRAdQTZZBrT4CBD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:19:06:bc:02:5d:1c:36:d5:59:10:61:ff:b5:6d:bc:24:13:
cd:6b:6f:81:0a:16:17:a7:06:24:0b:7d:bf:da:7e:5c:c9:82:
7d:34:73:7f:be:df:05:98:2a:c6:32:7e:04:dd:c8:8c:fd:b5:
76:8c:83:69:48:96:69:57:e5:ac:ee:ec:d7:c1:5e:bd:5b:42:
16:47:ea:be:23:48:ca:e6:e0:bf:f1:2a:6c:89:00:46:8f:1a:
10:3b:c6:ca:56:ab:76:fd:b1:e3:d8:3b:b3:06:a9:99:b6:a9:
2e:cc:92:2b:8c:cd:a6:43:2f:c8:68:0a:d1:72:d1:31:e3:4f:
ef:00:f1:2f:14:bb:eb:d4:af:5e:55:bc:49:d1:54:6c:7f:85:
0b:a4:c5:b5:ad:62:05:db:33:0a:1f:d5:4b:71:34:60:1d:67:
cd:e6:ec:a0:5e:06:3e:1b:9f:13:9b:78:c6:41:5d:4a:43:07:
d9:47:27:ec:1d:96:f1:a3:d6:15:fd:8f:a0:f5:d0:91:a9:ee:
21:7f:c0:4b:3a:47:bc:7c:77:a9:cd:4d:fe:eb:00:9b:94:9b:
d4:8e:c6:93:96:99:c6:05:14:27:8d:2e:c0:a0:4b:f2:88:f2:
26:94:71:4a:40:7d:12:0e:0d:55:5a:23:4c:fc:9f:60:65:6b:
8d:5a:90:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:36:56 2025 by rpki-client