Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/zUa_Rf5tLWoHwZ_ST9XgkOoD4EA.roa
File: zUa_Rf5tLWoHwZ_ST9XgkOoD4EA.roa (raw, json)
Hash identifier: A5E3blBTzYhLiSlr5i1UqSpZCJcggr7ItxneAtenKj4=
Subject key identifier: CD:46:BF:45:FE:6D:2D:6A:07:C1:9F:D2:4F:D5:E0:90:EA:03:E0:40
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018C7D42
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/zUa_Rf5tLWoHwZ_ST9XgkOoD4EA.roa
Signing time: Wed 02 Feb 2022 16:03:27 +0000
ROA not before: Wed 02 Feb 2022 16:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 138.128.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25984322 (0x18c7d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Feb 2 16:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd46bf45fe6d2d6a07c19fd24fd5e090ea03e040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:dc:a9:fd:19:1f:e7:0a:16:85:4d:12:0f:
ff:e5:b4:43:27:1d:d7:85:22:de:d5:21:fa:c5:e3:
50:a0:df:b7:b9:87:17:85:5f:6b:a5:fc:b3:5d:47:
b0:47:4d:d5:ef:bf:0a:65:9c:02:fe:b1:58:06:36:
d7:cc:28:ae:45:47:6f:c3:a3:2f:04:35:2e:b0:d8:
ee:9c:c0:0d:75:7b:95:08:3d:41:e2:a1:b8:5a:8b:
a0:ce:d2:81:21:66:cd:c7:ea:80:25:a5:5b:f9:86:
18:81:70:06:ce:b3:41:a3:c5:53:00:37:fe:8e:45:
6c:4d:9e:c6:11:4c:73:8e:c1:03:82:97:c7:18:33:
b5:6f:49:f8:da:fc:21:e8:e9:66:f9:c5:9a:6e:52:
ce:5c:ac:ca:43:b9:58:cd:61:af:2a:10:95:68:c9:
27:40:ab:f7:e0:fe:14:9b:72:0d:0e:a3:20:87:3c:
2e:33:2d:62:e8:9b:44:72:82:69:32:f8:dd:b2:95:
f2:d8:90:3f:69:ac:0f:a2:2f:29:86:e5:e2:32:69:
65:66:05:ec:06:9a:b1:55:e2:08:fd:8b:9b:fd:c3:
96:fb:46:5b:7a:82:77:59:2c:7d:55:1c:73:e9:61:
8f:70:82:b9:a4:9b:fe:d2:17:7a:a9:b6:df:d6:68:
ba:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:46:BF:45:FE:6D:2D:6A:07:C1:9F:D2:4F:D5:E0:90:EA:03:E0:40
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/zUa_Rf5tLWoHwZ_ST9XgkOoD4EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.128.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:4a:7a:a2:31:6e:a1:ce:3d:e7:1e:a5:e4:75:88:ed:58:12:
32:45:64:26:76:99:ef:98:c4:81:90:10:33:bc:b9:41:d5:e5:
89:83:d7:2f:a4:01:fb:9e:fc:3c:19:dc:18:97:e9:08:bf:f1:
38:03:10:09:9e:b5:a9:06:0d:65:ff:67:34:35:71:96:42:76:
67:a8:77:af:31:a4:6a:f9:30:75:f6:49:91:00:59:63:5c:68:
05:16:9b:47:07:58:b9:be:6d:aa:c4:1a:0f:62:f7:f4:62:bd:
03:cc:68:c2:2d:51:1e:55:2f:71:dc:61:1e:08:4c:83:15:e0:
31:fa:77:0f:ae:40:46:5e:ea:a1:6e:72:7b:bc:5b:f7:e6:78:
b4:80:26:87:2a:2b:06:a1:fe:94:b1:d4:4a:01:d1:18:2a:8e:
ee:44:16:b9:f1:69:2c:64:bc:c9:c7:45:8e:76:12:ef:5a:d2:
84:65:d6:63:90:85:3d:e0:b4:f2:c7:05:e9:2f:8b:e4:f4:4a:
18:69:8c:0a:b1:13:9c:f7:7a:f5:1d:f0:57:93:0f:7d:24:aa:
9f:5a:11:0c:2f:31:33:a0:4e:6f:0d:50:ba:f7:df:bf:aa:5f:
8d:16:bb:35:05:a8:a5:6a:8d:a8:44:a5:aa:ed:fd:64:55:da:
4c:5a:c1:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-fra.rpki-client.org