Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ZpTeBtEjQFfD_lEZiYH1LFqGUQY.roa
File: ZpTeBtEjQFfD_lEZiYH1LFqGUQY.roa (raw, json)
Hash identifier: W1v2B5yXz9RrpCFOilUFWarwf5+Ufti1pZFQk1QDFbc=
Subject key identifier: 66:94:DE:06:D1:23:40:57:C3:FE:51:19:89:81:F5:2C:5A:86:51:06
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0974D843
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ZpTeBtEjQFfD_lEZiYH1LFqGUQY.roa
Signing time: Sat 01 Jan 2022 09:04:03 +0000
ROA not before: Sat 01 Jan 2022 09:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209417
IP address blocks: 45.9.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158652483 (0x974d843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6694de06d1234057c3fe51198981f52c5a865106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3e:bf:2a:55:f6:46:87:10:44:07:32:b8:16:
9c:81:3b:e1:ae:23:e7:3c:4e:8d:40:03:dc:b3:a9:
82:58:e1:16:07:d6:30:c9:8b:c3:d9:0c:6f:bb:3a:
61:31:ef:d4:85:c7:4a:86:ce:d9:fb:15:61:d3:04:
d9:47:5e:4a:c1:97:ee:55:98:94:2c:56:1a:55:1d:
40:39:31:6f:7f:17:c5:db:21:cb:c4:4f:44:21:69:
a6:b3:32:10:43:ff:a3:6e:ff:05:3e:9b:97:bf:49:
74:b0:e9:6b:1f:1b:2a:f8:50:a2:1e:d8:07:90:26:
34:16:80:ae:dd:70:1f:5c:50:b0:09:8f:3a:d8:82:
94:6c:d8:4d:64:c3:64:41:a0:8e:c2:ed:b5:16:17:
b9:3a:7e:c9:e5:05:a7:80:04:64:e6:03:8c:fc:d1:
62:df:47:a9:5c:a6:9c:d7:94:45:f9:9f:67:c1:e0:
2f:96:b8:f5:d5:75:ab:c7:6c:8b:0a:67:49:17:59:
19:b3:0b:b0:c2:13:07:bd:bf:08:18:a5:c1:d1:7a:
67:29:b5:44:d3:d7:9b:ae:43:af:ce:a0:fd:47:65:
9a:5b:d1:c2:00:3e:9d:ce:d7:52:4d:df:ef:1f:bd:
87:40:f2:e1:80:c9:bb:92:4b:37:c9:61:52:4d:c1:
c6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:94:DE:06:D1:23:40:57:C3:FE:51:19:89:81:F5:2C:5A:86:51:06
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ZpTeBtEjQFfD_lEZiYH1LFqGUQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.11.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:bc:05:86:69:e3:08:8c:46:8c:74:d8:bd:fb:5a:c7:78:88:
a3:44:4a:52:4d:cd:30:89:76:da:23:57:f0:8b:5c:5c:44:3e:
bd:0d:6c:61:8e:3b:cb:ac:ed:5e:dd:5c:7e:bd:ef:97:3d:1a:
a7:f4:ad:ed:5c:d0:25:b0:c0:6b:f6:e4:c6:2b:26:f4:ed:b8:
f1:4b:50:77:aa:3d:9c:03:3f:37:20:da:09:dc:f3:39:a2:d2:
e2:ff:1e:2e:bc:c2:51:aa:b5:9f:e2:7b:dd:86:d3:d7:56:cd:
d5:26:de:12:2a:0d:a0:30:5a:67:83:a4:e4:88:36:83:ec:0a:
fd:0f:de:6d:e8:83:f7:ca:03:80:bc:b9:6e:fb:22:fe:c6:f2:
10:f0:cd:f8:6f:de:52:60:bd:0f:9f:bf:26:14:d8:d5:50:7d:
a5:55:02:76:42:d0:3d:eb:58:d1:fe:fd:a2:c8:f6:8c:32:43:
6d:c9:6a:d3:71:35:2d:34:9f:af:e1:86:ac:bd:9e:52:d6:92:
74:e6:c4:be:70:58:3b:1c:e7:5e:4a:3e:57:78:4c:ce:09:25:
ba:72:0c:e7:ef:12:ff:cd:3a:95:fa:5c:60:37:a1:a6:06:9c:
76:06:71:a5:bd:f0:f9:20:66:29:f2:f0:0b:f2:97:2c:a5:1f:
4e:9e:ac:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org