Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/ZxVT-dy5mEZCD1hwCBrGb-UuRQE.roa
File: ZxVT-dy5mEZCD1hwCBrGb-UuRQE.roa (raw, json)
Hash identifier: Lwn0HJpuVr7zrCJxvyZriU351J71R02nt/MzWl3TCoI=
Subject key identifier: 67:15:53:F9:DC:B9:98:46:42:0F:58:70:08:1A:C6:6F:E5:2E:45:01
Certificate issuer: /CN=32d44919fdd08afb9a4d0a8778923011251dd7f0
Certificate serial: 36FBF0
Authority key identifier: 32:D4:49:19:FD:D0:8A:FB:9A:4D:0A:87:78:92:30:11:25:1D:D7:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtRJGf3QivuaTQqHeJIwESUd1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/ZxVT-dy5mEZCD1hwCBrGb-UuRQE.roa
Signing time: Wed 22 Jun 2022 20:00:32 +0000
ROA not before: Wed 22 Jun 2022 20:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 185.5.146.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3603440 (0x36fbf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d44919fdd08afb9a4d0a8778923011251dd7f0
Validity
Not Before: Jun 22 20:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=671553f9dcb99846420f5870081ac66fe52e4501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d2:1e:53:9a:b4:07:ac:ce:14:07:6d:a4:52:
7a:ab:66:99:cb:6d:35:d4:66:b5:5a:95:45:12:7a:
68:1d:c0:a2:b0:5a:73:de:c7:f7:3a:13:08:2c:69:
ef:5a:59:54:f9:23:58:5b:b4:d0:bb:c9:96:4b:9d:
94:a6:a1:26:16:5b:12:fe:24:3d:7e:a9:17:5e:fe:
79:5a:36:ed:dc:63:a0:75:85:fa:41:ba:de:9e:01:
e2:20:1b:6f:8b:d2:d0:20:94:87:46:a4:f3:ae:bc:
32:a7:42:f2:70:02:92:a5:94:8f:a4:75:88:01:7b:
48:75:c6:27:30:43:c1:a1:d0:00:97:19:84:e8:a1:
8b:ee:65:0d:49:bd:43:2c:fc:e4:da:ee:af:4e:62:
58:83:a2:3f:2c:7f:01:43:a0:ea:5a:29:15:dd:25:
89:fc:09:6d:46:74:68:8c:c3:aa:ab:ce:5d:d5:cf:
24:c6:3b:e5:b0:81:39:08:b3:69:14:63:b8:3c:b5:
55:06:c7:15:95:49:20:31:b0:d5:03:ac:76:6e:af:
54:8c:e9:53:bc:25:18:41:0a:9b:35:6f:a4:da:6e:
c1:6c:80:ff:f0:ff:66:8c:f2:5d:0b:e4:07:f5:bc:
e9:bd:0e:78:a3:07:c1:a2:39:ed:39:26:1a:82:1c:
d2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:15:53:F9:DC:B9:98:46:42:0F:58:70:08:1A:C6:6F:E5:2E:45:01
X509v3 Authority Key Identifier:
keyid:32:D4:49:19:FD:D0:8A:FB:9A:4D:0A:87:78:92:30:11:25:1D:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtRJGf3QivuaTQqHeJIwESUd1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/ZxVT-dy5mEZCD1hwCBrGb-UuRQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/MtRJGf3QivuaTQqHeJIwESUd1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.146.0/24
Signature Algorithm: sha256WithRSAEncryption
10:aa:9c:77:ce:41:4b:47:58:79:fb:02:33:87:ec:e8:5e:71:
71:db:35:83:51:05:e9:9b:42:52:b2:a2:14:91:54:1a:9c:4f:
0c:cb:1a:ec:d9:6a:47:d9:7d:04:e9:c2:58:c8:f1:96:aa:2f:
9c:99:25:da:ab:7d:33:f2:9f:83:46:6d:0d:52:03:bb:d5:fe:
1d:7d:05:a6:ae:4d:9c:ae:59:ba:c1:03:24:fc:c6:ea:93:56:
fa:ad:93:cc:66:77:bd:cf:4f:51:cb:9c:89:a3:ec:cb:8d:78:
29:79:1b:d7:f8:58:76:8c:60:ba:9c:20:e0:fc:c4:f2:2f:a1:
51:99:78:9e:4a:c3:a0:96:c1:6b:77:dc:f3:bc:b4:e0:7d:74:
40:6e:35:36:b1:92:da:72:7e:ac:81:8c:2d:ea:d2:70:38:7b:
b4:9d:21:d2:e7:e6:a2:a9:94:6e:58:e6:53:67:a5:f8:6e:af:
a5:44:ba:95:a8:3d:b6:b3:39:35:84:92:e4:cd:21:da:3f:6b:
e7:f0:af:ea:ba:56:4d:73:e7:52:e3:a2:6c:65:b1:62:bd:39:
fc:37:93:99:2a:85:00:f5:12:1d:5d:b7:04:42:13:38:6c:01:
a1:d8:c3:cc:1c:6c:92:43:d9:0d:b9:23:2c:69:1e:7e:27:df:
a9:89:8c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:24 2024 by rpki-client on console-fra.rpki-client.org