Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/ZbSS-M_7LUY_IIO-5aYzSLB1SfI.roa
File: ZbSS-M_7LUY_IIO-5aYzSLB1SfI.roa (raw, json)
Hash identifier: hr040hWvMhehgXzBgNkgRzB4B8oY3jfkis+kGYclSBg=
Subject key identifier: 65:B4:92:F8:CF:FB:2D:46:3F:20:83:BE:E5:A6:33:48:B0:75:49:F2
Certificate issuer: /CN=572ba64b3a9060b464337ad30a02bec4b11a551f
Certificate serial: 036069A3
Authority key identifier: 57:2B:A6:4B:3A:90:60:B4:64:33:7A:D3:0A:02:BE:C4:B1:1A:55:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyumSzqQYLRkM3rTCgK-xLEaVR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/ZbSS-M_7LUY_IIO-5aYzSLB1SfI.roa
Signing time: Sat 01 Jan 2022 10:57:38 +0000
ROA not before: Sat 01 Jan 2022 10:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.9.4.0/24 maxlen: 24
194.9.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56650147 (0x36069a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572ba64b3a9060b464337ad30a02bec4b11a551f
Validity
Not Before: Jan 1 10:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65b492f8cffb2d463f2083bee5a63348b07549f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:01:56:bb:3b:61:e2:06:a0:48:04:0f:ce:aa:
c3:5b:f9:71:65:6b:75:ce:d6:a5:f4:1e:28:cd:ee:
f1:cf:0e:24:68:73:8c:6b:c7:53:fb:ff:09:ae:1f:
7d:30:1a:77:1f:2d:1d:be:6a:ed:ab:da:12:63:34:
b0:67:51:f5:b8:87:b6:86:72:2a:e7:6e:09:61:85:
c2:8d:bc:97:b7:f4:c5:b4:9c:a1:47:63:fd:26:09:
b6:9c:05:8a:dc:43:64:ca:f1:43:86:17:c7:da:30:
72:97:96:e9:32:45:c0:ea:58:10:f6:e2:79:75:d5:
b4:83:26:16:9d:a1:05:11:9c:8b:60:4e:2d:d4:7b:
f2:88:a7:aa:78:f6:55:3c:27:38:46:2c:77:fb:47:
62:fe:4a:61:53:e0:57:87:65:4a:27:02:cf:f7:53:
91:cf:a8:66:17:71:a9:6e:c1:9f:6c:e7:bb:5f:df:
38:fc:58:22:b1:85:0b:01:58:c3:a9:bd:63:14:c6:
10:d1:6b:ab:c4:8a:7c:7c:c0:e4:df:a2:bf:c1:94:
ac:36:b8:a5:fb:87:92:75:d9:90:76:37:79:9a:dd:
59:58:a9:dd:e1:4b:05:9e:64:25:f3:2f:a5:da:e4:
40:7d:1e:36:4d:7b:b0:43:2f:8c:ba:bc:89:a6:04:
58:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B4:92:F8:CF:FB:2D:46:3F:20:83:BE:E5:A6:33:48:B0:75:49:F2
X509v3 Authority Key Identifier:
keyid:57:2B:A6:4B:3A:90:60:B4:64:33:7A:D3:0A:02:BE:C4:B1:1A:55:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyumSzqQYLRkM3rTCgK-xLEaVR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/ZbSS-M_7LUY_IIO-5aYzSLB1SfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/VyumSzqQYLRkM3rTCgK-xLEaVR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.4.0/23
Signature Algorithm: sha256WithRSAEncryption
87:ea:e1:11:15:87:19:72:f0:87:f3:86:3c:0f:97:f1:13:03:
bb:84:cd:b2:a2:19:7b:82:10:3f:da:68:6a:f4:4d:9a:c0:fb:
da:16:67:4a:9e:16:92:c7:fd:c8:f2:01:f1:04:39:4f:b0:40:
73:8b:2f:62:78:e7:0d:ad:77:92:7e:58:63:7d:90:b0:ce:56:
a6:40:c9:1e:b1:6c:3f:2c:71:b1:c9:7f:a4:13:bf:3d:1d:3b:
55:0d:56:19:33:4c:a8:53:cb:e3:52:1f:96:bd:83:29:07:ce:
3b:95:53:aa:0c:cf:94:1f:95:fc:c7:0b:b6:6a:bc:66:8c:ea:
c3:96:0f:1e:0e:bf:80:82:8d:4c:fb:0a:f9:2b:2e:43:4e:62:
a3:ae:32:07:d6:19:74:fa:62:3d:d4:d1:02:26:63:3e:f1:e2:
40:b2:9e:4f:05:b6:01:a7:f7:c2:7e:4b:ab:36:2d:97:58:73:
18:1f:ad:e2:0e:5c:20:54:de:6e:66:82:bf:af:da:46:b3:0b:
0e:22:3c:83:c8:7d:82:b6:db:c2:c5:57:29:a7:80:5d:b1:e5:
51:5f:03:2d:92:aa:86:6a:aa:bc:47:97:5d:f7:a9:b7:ce:79:
a7:b6:45:99:35:e8:75:96:f6:7f:2f:32:96:68:bb:4b:08:2a:
5f:91:f8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:34 2025 by rpki-client