Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/ZUEEyaA121U0C9jeE9hR7UjHQQM.roa
File: ZUEEyaA121U0C9jeE9hR7UjHQQM.roa (raw, json)
Hash identifier: THczY5RAm7pKTKujjjt7v4g9ye2nHZ8YxLYw0+xCH2M=
Subject key identifier: 65:41:04:C9:A0:35:DB:55:34:0B:D8:DE:13:D8:51:ED:48:C7:41:03
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 0182D3BF76F89A2B72427B7934430582B63A
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/ZUEEyaA121U0C9jeE9hR7UjHQQM.roa
Signing time: Thu 25 Aug 2022 06:45:16 +0000
ROA not before: Thu 25 Aug 2022 06:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39719
IP address blocks: 81.23.84.0/23 maxlen: 23
2a12:1d40:1::/48 maxlen: 48
2a12:1d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d3:bf:76:f8:9a:2b:72:42:7b:79:34:43:05:82:b6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Aug 25 06:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=654104c9a035db55340bd8de13d851ed48c74103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cc:65:d3:92:14:cb:0e:c2:4d:d9:44:fe:b6:
43:55:a0:0e:12:bf:14:4f:87:84:be:36:c5:53:b8:
46:7f:12:a8:4f:70:eb:16:92:41:e6:78:6a:21:d0:
18:54:65:a0:89:98:1d:0e:ab:36:4d:4c:4b:ff:e2:
24:9a:10:5b:db:b8:3b:a8:9e:85:d3:55:3f:7c:f8:
63:2b:d2:26:ad:32:17:3e:7f:e0:34:75:5f:59:b4:
42:f3:3f:da:35:80:53:92:1b:dc:61:7f:b8:45:8e:
c0:3b:10:6c:98:85:f6:ad:c4:0e:22:c6:ca:01:b6:
6c:17:de:27:70:ff:1e:e9:5d:83:aa:ce:77:df:10:
c6:ab:19:e7:36:40:d8:4f:a9:47:f8:73:9e:2e:39:
0f:a0:9c:a8:1c:fb:a0:98:b0:47:61:da:9a:74:72:
7f:79:10:84:d9:ad:8a:9b:3e:11:67:ff:91:40:aa:
e4:45:54:d7:56:c3:bf:3d:03:3b:ac:9e:e7:56:fa:
00:60:bd:cd:5b:63:c8:3e:d2:c5:e3:60:ca:3c:2a:
03:11:94:fc:74:62:6c:ba:41:34:16:34:35:08:3a:
3a:d9:fe:06:3b:17:03:72:3c:2a:7f:cc:9c:7f:77:
ab:f5:30:b2:cc:6d:67:ee:cb:8b:15:17:cc:7a:64:
9d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:41:04:C9:A0:35:DB:55:34:0B:D8:DE:13:D8:51:ED:48:C7:41:03
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/ZUEEyaA121U0C9jeE9hR7UjHQQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.84.0/23
IPv6:
2a12:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
60:23:84:5b:2c:01:88:8e:d8:04:28:2e:44:48:d2:fd:e1:6a:
0c:7e:de:56:75:5b:91:1b:44:b6:88:b1:f8:75:3d:9d:f5:35:
21:80:f5:d7:e6:4c:54:88:08:cd:85:30:a6:4c:f5:eb:9c:63:
32:a3:e8:d6:23:35:93:08:2a:0e:06:d0:0c:58:1f:5d:89:12:
32:c6:fe:43:07:2b:30:34:d5:42:c4:aa:16:54:80:19:11:b3:
72:29:ae:8e:d1:36:ac:25:68:2f:04:13:62:6c:c9:b7:3d:3c:
98:16:47:a2:66:82:bd:57:87:b2:05:c5:61:ff:02:97:cc:22:
eb:3e:42:d0:8c:f4:fc:5a:58:57:d2:4f:e8:ff:dc:57:ae:db:
57:a2:3c:de:8c:43:e1:7c:17:2b:f2:56:16:1f:8d:5e:ea:27:
6b:f0:a6:2a:c2:10:f3:f9:b8:03:5a:ef:28:55:f6:2b:b0:0f:
f9:ce:d5:cc:9d:22:06:c0:1b:fb:90:a9:64:88:de:01:6f:4f:
7f:f4:fa:e2:38:25:84:58:4c:15:87:b2:b1:cb:c8:43:1b:13:
42:86:c4:ce:2c:88:d6:90:fa:5d:69:a3:f2:c7:dc:ee:07:96:
59:ad:48:a7:17:0d:41:d0:36:df:eb:28:d0:0f:ab:ff:88:5a:
9a:3e:c9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:25 2025 by rpki-client