Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Z3U88oZfKIr9Qyumv5yBzq9joKE.roa
File: Z3U88oZfKIr9Qyumv5yBzq9joKE.roa (raw, json)
Hash identifier: mzL9+DjzWb9EQUYl2rhG876WXcOvn7eMQ6gI75is1EU=
Subject key identifier: 67:75:3C:F2:86:5F:28:8A:FD:43:2B:A6:BF:9C:81:CE:AF:63:A0:A1
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A76F3B8
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Z3U88oZfKIr9Qyumv5yBzq9joKE.roa
Signing time: Sat 01 Jan 2022 04:51:57 +0000
ROA not before: Sat 01 Jan 2022 04:51:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50830
IP address blocks: 82.177.17.0/24 maxlen: 24
81.15.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980874168 (0x3a76f3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67753cf2865f288afd432ba6bf9c81ceaf63a0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:14:c0:4f:e2:5a:13:1e:b2:f6:cd:a5:05:34:
de:a5:9d:30:1f:55:fc:2d:ee:3f:e2:54:64:f3:15:
66:f7:97:ae:81:ce:45:f3:1c:a3:ff:0e:ad:9f:7b:
5b:48:eb:13:c5:f4:6e:9e:d0:f6:74:55:ee:2f:d9:
d8:39:bd:97:ec:02:fc:c3:68:2f:6b:bf:77:df:0b:
9b:95:7e:be:c9:4c:20:d3:0b:08:ae:6c:e8:00:0d:
2e:c4:19:73:a2:2e:39:08:5f:55:f6:4b:72:97:ff:
07:ae:d6:1f:06:71:82:12:82:9c:2b:ab:17:87:d4:
ed:3d:5d:6b:dc:65:66:3e:8f:7a:ca:1d:7c:66:7b:
36:dd:84:9a:ee:2e:1d:b0:b0:a0:be:94:44:e4:f4:
7c:6a:6d:e3:4b:fe:de:24:b3:5c:1c:65:60:2b:bf:
81:f1:5d:02:bb:31:89:a6:bd:b1:40:64:0c:49:97:
51:c1:2b:e1:82:eb:dc:67:1f:32:fa:02:8d:a8:38:
b1:f2:29:59:cb:5d:2e:02:84:70:83:d5:0e:d6:d0:
ce:81:f9:c2:ee:b3:a9:89:a9:80:ee:a6:35:70:f2:
87:1b:59:bc:a7:dc:d9:4b:a5:f8:06:67:e2:1f:a9:
16:7b:2d:ec:8c:28:38:8c:0c:78:b7:6f:ba:d8:b5:
66:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:75:3C:F2:86:5F:28:8A:FD:43:2B:A6:BF:9C:81:CE:AF:63:A0:A1
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Z3U88oZfKIr9Qyumv5yBzq9joKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.243.0/24
82.177.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:0e:4e:ed:52:43:0c:c2:fc:3a:80:39:be:45:f1:f5:59:14:
71:2c:33:39:86:fd:b6:89:22:c9:65:09:7e:85:e7:04:82:60:
55:80:91:cf:0b:e0:30:95:9d:e2:ed:59:9c:8d:2a:ce:73:fc:
17:f1:d0:93:ce:4d:67:fe:7c:e5:d1:6b:25:b4:21:87:3f:03:
8d:72:c4:95:7a:59:dd:29:52:d1:d3:10:f6:47:d5:d7:d7:8b:
79:a6:bd:39:df:26:a1:b8:b2:3e:db:b0:19:90:a5:0f:d1:56:
40:62:66:61:a2:43:fd:a3:3c:fc:48:b6:fe:8e:8a:f5:59:ec:
ba:91:15:f4:85:a6:f7:e4:a4:1d:6c:90:b1:32:f4:e2:be:af:
ab:05:aa:c1:96:9f:cb:92:14:6f:18:09:6e:7a:10:2d:c5:82:
ab:27:31:b8:9f:89:91:c4:85:3b:63:64:a4:65:49:bb:d1:e0:
9d:b4:55:b2:32:87:40:b6:18:8f:d2:11:4d:b9:57:fc:da:f8:
c4:9e:2f:78:34:14:92:16:c1:05:10:f1:6f:3b:35:5f:6e:d1:
d3:a2:fb:a0:51:07:7b:e2:e1:04:ce:76:17:72:ed:13:cd:6f:
47:57:ea:f3:34:92:e2:14:63:59:e3:a2:dc:80:37:1e:1c:30:
ff:61:5c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:56 2025 by rpki-client