Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/Z_qHtabcM1Jp6TZRSvCNH9QJ47c.roa
File: Z_qHtabcM1Jp6TZRSvCNH9QJ47c.roa (raw, json)
Hash identifier: LhZxqChtctDaKK28o53OLVc+ggX7p2cce+FFuF4bLlw=
Subject key identifier: 67:FA:87:B5:A6:DC:33:52:69:E9:36:51:4A:F0:8D:1F:D4:09:E3:B7
Certificate issuer: /CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Certificate serial: 7C2CBC
Authority key identifier: B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/Z_qHtabcM1Jp6TZRSvCNH9QJ47c.roa
Signing time: Sat 01 Jan 2022 03:53:39 +0000
ROA not before: Sat 01 Jan 2022 03:53:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203310
IP address blocks: 185.51.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8137916 (0x7c2cbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Validity
Not Before: Jan 1 03:53:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67fa87b5a6dc335269e936514af08d1fd409e3b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6b:9c:1d:db:7c:b0:e2:28:ef:ef:c6:4c:6b:
2a:02:b4:6f:16:85:34:ca:56:60:c3:74:7f:04:76:
04:ff:2a:b4:66:dd:1e:88:45:9a:40:ff:41:88:8f:
da:a1:ab:6a:c7:83:7f:78:e4:8d:82:a3:52:34:5f:
69:38:78:a9:e6:64:08:68:93:2f:a5:a6:5b:dc:5a:
9d:14:d4:f7:c7:f1:39:1a:d3:3c:ba:ba:84:76:53:
9d:8f:73:1c:b5:cb:7f:73:08:3f:fa:39:92:6d:41:
d4:44:64:b7:bc:12:61:af:9b:3e:db:04:8e:c5:6a:
3a:da:9f:4e:f8:8a:4a:39:ad:4a:83:00:2a:34:e6:
69:a1:ce:d1:14:98:a4:03:4a:3e:4e:35:f7:7a:d9:
82:97:e9:0c:1b:a2:ff:89:85:af:e9:5c:4d:a1:3e:
37:10:86:3d:2c:26:8b:3a:f7:0d:ff:4d:77:df:cc:
55:13:96:db:b6:8b:51:61:91:e0:5c:f1:93:35:bd:
cb:1d:a3:49:23:61:79:64:a2:f9:6d:d1:a9:23:a8:
20:86:75:32:6c:06:31:83:b1:24:68:6b:b0:b2:a1:
63:a7:10:fb:37:29:45:db:fe:d1:c6:9f:97:a5:df:
96:c0:e2:af:90:23:e6:98:2e:fe:6f:a2:b5:4b:ed:
00:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:FA:87:B5:A6:DC:33:52:69:E9:36:51:4A:F0:8D:1F:D4:09:E3:B7
X509v3 Authority Key Identifier:
keyid:B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/Z_qHtabcM1Jp6TZRSvCNH9QJ47c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.103.0/24
Signature Algorithm: sha256WithRSAEncryption
78:77:21:b7:d7:0c:15:bb:a0:64:52:9b:12:76:10:8e:a8:f3:
23:29:4c:25:41:48:c7:74:e8:cf:dd:3c:38:2e:80:96:1d:39:
61:b5:e5:c3:be:f6:0e:ec:67:2d:74:e5:2c:6f:10:e8:a5:01:
84:2a:53:c0:fd:e1:33:a8:b6:18:3b:8c:3a:f7:93:19:d3:5a:
f0:22:ce:98:e4:87:8b:06:96:15:63:46:7d:16:2d:0f:92:67:
34:b7:c0:af:9c:a8:00:14:e3:ce:32:84:f3:cc:79:3d:cb:82:
10:40:f5:19:16:06:0b:65:7f:48:fd:75:02:ac:46:33:71:04:
0b:00:31:38:eb:41:3c:ff:3e:63:fe:e2:30:6f:ad:25:3d:45:
f6:0f:b2:13:2e:45:89:11:e5:13:1c:83:2e:a3:67:75:c7:5d:
54:bb:16:06:b1:7d:8c:f8:c3:ec:4a:fc:62:14:f4:31:86:11:
81:02:af:c8:ea:b1:7e:b5:e2:47:1e:f7:cd:a1:fe:5b:ee:b1:
c5:e4:39:8e:a9:32:5f:74:c7:9e:9a:7b:e1:73:61:83:62:ec:
d8:f0:0c:06:0e:c6:70:7c:03:30:79:56:bd:4b:2e:e0:77:a7:
f3:0b:34:ef:06:07:41:8f:59:d2:9f:92:c7:93:95:f6:12:3f:
56:78:02:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:14 2025 by rpki-client