Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZDdnVHH8wRtTLos4vTXs5qGTxBs.roa
File: ZDdnVHH8wRtTLos4vTXs5qGTxBs.roa (raw, json)
Hash identifier: H7DBvpR1cid/Z/H+ymbEl1UVb1u6L+XbG2DQc85zDbQ=
Subject key identifier: 64:37:67:54:71:FC:C1:1B:53:2E:8B:38:BD:35:EC:E6:A1:93:C4:1B
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0883CF08
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZDdnVHH8wRtTLos4vTXs5qGTxBs.roa
Signing time: Sat 01 Jan 2022 03:50:52 +0000
ROA not before: Sat 01 Jan 2022 03:50:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24727
IP address blocks: 212.81.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142855944 (0x883cf08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6437675471fcc11b532e8b38bd35ece6a193c41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:d5:46:ef:1a:98:6e:9b:ee:6d:9d:58:94:
6b:61:d5:46:3f:3d:f0:63:da:55:3d:28:3e:f3:fb:
6e:fc:b8:ed:e0:5e:b1:c6:58:e4:db:8c:1c:b1:95:
3f:ad:ab:91:83:f7:4b:3e:8b:30:c6:18:58:c7:93:
0b:3f:b8:36:56:1a:1e:04:b2:ce:bd:7b:83:4f:00:
fb:8f:3d:c5:9e:b9:bb:3d:3c:4d:31:60:8f:4a:a5:
14:5d:58:f4:2e:83:26:62:e0:bb:48:4a:fd:f7:53:
25:81:7b:a9:1c:e0:bc:0d:29:7a:e8:12:9d:14:56:
d3:a3:17:a9:08:35:60:4d:ff:57:03:b4:d9:63:61:
62:e8:ed:56:6b:bc:cf:d9:2f:6f:0a:09:b2:4a:5f:
cc:07:a6:7e:eb:c8:00:4b:bf:8c:df:95:28:72:fa:
9f:b7:04:12:e2:ff:cf:9c:90:86:75:98:d2:7b:11:
0b:fe:21:08:86:17:61:7f:d2:fd:3b:35:aa:11:d5:
cd:86:d3:81:3c:93:a7:53:b0:12:25:aa:0a:8f:20:
ed:4e:ea:60:ce:89:d1:4c:07:0d:70:f1:bb:da:8a:
ff:97:21:87:88:bd:4c:22:61:ef:d5:5f:88:07:14:
a6:ec:03:6a:74:3b:80:a8:79:62:64:a9:8d:c7:68:
e1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:37:67:54:71:FC:C1:1B:53:2E:8B:38:BD:35:EC:E6:A1:93:C4:1B
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/ZDdnVHH8wRtTLos4vTXs5qGTxBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.16.0/24
Signature Algorithm: sha256WithRSAEncryption
18:a2:56:90:b1:b2:65:43:2f:0f:4d:18:2f:b4:1f:85:1b:f4:
30:66:cc:31:c2:e7:8f:81:b4:08:ad:0b:03:eb:7a:d5:76:a9:
8f:0e:04:0b:8b:99:c9:08:f1:56:91:4a:89:e1:4a:05:5d:75:
2c:9f:b2:a5:16:09:01:19:d5:00:17:69:7c:17:46:b0:2a:60:
bb:23:87:78:32:89:ad:c7:b3:3f:8c:31:60:9f:73:bd:7d:fb:
fe:7b:e3:d5:2b:e5:09:94:cd:af:1f:91:6a:23:2d:fa:43:5b:
c9:28:ce:a9:51:10:57:dd:18:48:a6:85:65:da:e3:18:46:de:
f1:e5:20:c6:48:4c:77:3d:de:e5:ae:25:7c:4b:4a:65:28:c2:
0c:76:fa:94:2b:31:40:90:4a:44:bb:75:d6:0b:23:09:85:2b:
74:3d:ba:d6:21:5c:c7:74:b9:d0:c4:c6:b7:cb:66:fe:b2:1a:
d5:bb:8e:23:44:f3:0b:18:71:9e:ac:08:f9:bb:33:c5:ba:da:
00:18:92:30:59:a9:bd:ea:cb:3d:f0:21:f0:41:ba:ae:73:8f:
72:f7:65:86:02:70:e1:f8:65:57:60:c4:a5:4a:af:cf:1d:aa:
40:3f:17:03:8e:d3:9c:97:0a:f4:fd:75:82:c5:7c:22:12:94:
f3:3f:c1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:39 2025 by rpki-client