Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/ZfNUWX_dGDtxqeKEJjnWgUMv4rE.roa
File: ZfNUWX_dGDtxqeKEJjnWgUMv4rE.roa (raw, json)
Hash identifier: I2jd32b+LCC6bxo1e2pNbWOXhJAd61hs4JqAW86K754=
Subject key identifier: 65:F3:54:59:7F:DD:18:3B:71:A9:E2:84:26:39:D6:81:43:2F:E2:B1
Certificate issuer: /CN=150183623fc16dc74cb775462c36d31016a40ac1
Certificate serial: 01131C4C
Authority key identifier: 15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/ZfNUWX_dGDtxqeKEJjnWgUMv4rE.roa
Signing time: Wed 23 Feb 2022 20:37:40 +0000
ROA not before: Wed 23 Feb 2022 20:37:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57511
IP address blocks: 158.255.77.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18029644 (0x1131c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=150183623fc16dc74cb775462c36d31016a40ac1
Validity
Not Before: Feb 23 20:37:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65f354597fdd183b71a9e2842639d681432fe2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:64:d5:e6:09:9c:f7:6f:16:7b:72:43:ba:
6c:0b:7e:f4:41:13:8b:3c:7e:de:1c:7d:d2:cf:a8:
90:02:40:6a:fe:4d:3c:84:3d:dd:27:13:99:c4:e0:
8c:77:ea:88:95:5d:89:10:70:8d:54:91:26:26:ae:
ee:d9:14:6f:d1:d3:5e:1f:78:b9:f2:fc:38:d3:a4:
f3:18:49:ce:d8:19:98:bb:dd:4a:1a:29:82:b4:ff:
69:34:d9:eb:ec:f5:5e:8f:d6:4d:5c:a0:d2:a0:87:
03:71:97:2a:62:a1:ec:23:97:66:2d:a6:0e:cd:22:
b5:73:a8:e4:b8:aa:ba:13:dd:6b:3c:ea:a2:43:3a:
93:74:b0:39:9a:69:d5:49:c7:0d:ab:91:36:2a:dc:
1f:de:97:77:42:02:27:9b:ea:11:38:d2:48:1d:1b:
ac:d6:78:41:d8:4a:3b:df:1d:86:bd:98:0e:9f:1e:
29:0a:4c:80:8a:1f:80:58:fb:93:9f:9f:49:cd:d9:
1b:c2:76:9a:b9:8b:a8:46:89:ff:c4:c8:c3:98:8a:
3a:7e:e4:b0:9e:8d:7d:e7:67:34:bc:06:e5:39:6a:
b2:4b:e3:82:fd:b9:20:fd:c5:03:f0:09:a1:f8:24:
77:47:c4:bd:cf:2d:9c:60:50:c4:fd:5d:39:5f:d0:
ae:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F3:54:59:7F:DD:18:3B:71:A9:E2:84:26:39:D6:81:43:2F:E2:B1
X509v3 Authority Key Identifier:
keyid:15:01:83:62:3F:C1:6D:C7:4C:B7:75:46:2C:36:D3:10:16:A4:0A:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQGDYj_BbcdMt3VGLDbTEBakCsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/ZfNUWX_dGDtxqeKEJjnWgUMv4rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f3fb24-9a20-449e-af62-28f52052c1dd/1/FQGDYj_BbcdMt3VGLDbTEBakCsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.77.0/24
Signature Algorithm: sha256WithRSAEncryption
09:94:2b:92:21:a9:44:12:08:75:c4:54:11:c4:f5:53:c0:0d:
6e:0a:3c:7a:bc:85:26:6d:1c:07:84:31:77:c1:1f:be:05:4a:
0b:33:42:7f:b2:18:60:40:f7:28:97:b0:0a:5e:3c:f4:12:54:
82:a8:a4:b0:27:d1:fa:4c:6b:64:cd:b7:5d:56:2d:f0:6d:16:
46:0a:d5:6c:a8:d0:f5:63:6f:71:a2:7d:ce:0d:41:38:d1:08:
aa:f9:77:d0:12:ce:21:8a:b6:96:5e:71:66:77:d4:7a:4b:f2:
90:76:fb:08:2e:ef:76:52:4b:15:29:3c:82:d0:0d:e1:c4:84:
3f:2d:8f:4b:be:a3:a3:b4:ac:ad:c0:63:31:6c:03:fa:90:75:
be:08:7c:0f:4a:d7:2f:77:ef:3e:b3:01:fd:a8:ae:16:28:76:
4c:aa:51:cc:ab:a5:75:34:bf:0e:c6:5a:d0:16:55:7d:87:e6:
23:17:b8:67:2c:c5:fd:1a:aa:ca:76:e7:43:9d:c9:f9:5d:f8:
18:93:3b:e1:d1:1b:94:73:1b:99:05:86:0f:e0:6d:44:4c:52:
3b:63:9c:ea:be:da:46:e3:20:61:a3:0a:17:40:91:17:65:68:
eb:4c:9c:de:f1:c9:df:e5:b3:85:e2:5d:41:9c:fe:0c:c4:9c:
cb:c5:f5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:31 2024 by rpki-client on console-fra.rpki-client.org