Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/zbAxAQkDocMIc8Vgfc3APc6djaI.roa
File: zbAxAQkDocMIc8Vgfc3APc6djaI.roa (raw, json)
Hash identifier: /KdfgxzQeQfVgG1I3oBjcsQ9RSyaMe4+6uDqRb9+I7Q=
Subject key identifier: CD:B0:31:01:09:03:A1:C3:08:73:C5:60:7D:CD:C0:3D:CE:9D:8D:A2
Certificate issuer: /CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Certificate serial: 01888C642017913CC562CCD2AB7552A20F6D
Authority key identifier: 76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/zbAxAQkDocMIc8Vgfc3APc6djaI.roa
Signing time: Mon 05 Jun 2023 16:29:11 +0000
ROA not before: Mon 05 Jun 2023 16:29:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 46.162.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:64:20:17:91:3c:c5:62:cc:d2:ab:75:52:a2:0f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Validity
Not Before: Jun 5 16:29:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdb031010903a1c30873c5607dcdc03dce9d8da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:33:76:58:93:70:b7:85:09:77:be:b9:92:6b:
d8:4d:3d:68:5c:78:df:32:9d:a5:0b:24:c2:cd:a1:
5e:e9:82:3a:79:e4:76:6f:e3:29:ac:63:24:84:0f:
76:22:f7:fd:7f:59:34:89:90:d9:ef:64:1f:1b:f2:
91:a5:70:ac:96:fc:81:55:fb:44:af:1e:fd:3b:ff:
3a:7a:22:41:a8:7c:ae:8d:1e:c7:d3:04:be:86:db:
85:a9:de:a5:a7:72:40:15:3d:5b:c8:00:4a:54:9a:
d4:0e:7b:ec:53:68:ce:58:79:5a:b7:b8:43:0a:2e:
0b:87:9d:09:97:a7:32:50:ed:5d:a6:55:fe:b2:4a:
e9:3b:2a:a0:89:5d:65:d5:48:c9:84:1e:70:9f:a4:
ec:f2:e3:cd:ed:f0:e0:b9:10:43:fa:89:e9:41:67:
b7:c6:e1:a4:0d:b6:be:17:db:68:79:c1:f6:c6:a6:
94:f0:94:ff:b6:7d:ae:75:81:d4:d3:21:f3:b2:d0:
93:06:95:23:2d:98:d5:93:f9:d0:b9:44:b8:68:1c:
30:e8:bb:74:a2:f9:8d:f0:38:99:53:e3:69:99:43:
e2:39:1b:c5:79:c1:eb:01:d4:ee:ab:fb:5a:d2:84:
d9:89:7f:3f:a7:37:67:cc:ca:b5:66:83:51:6d:66:
74:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B0:31:01:09:03:A1:C3:08:73:C5:60:7D:CD:C0:3D:CE:9D:8D:A2
X509v3 Authority Key Identifier:
keyid:76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/zbAxAQkDocMIc8Vgfc3APc6djaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/dkL9PzNs5u6Z5h-pdwSabGqSPko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.162.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:82:af:d7:59:ce:31:05:b6:0b:6e:74:89:5f:b3:24:b0:4d:
0d:9d:6d:64:ef:06:93:c5:4c:ff:67:3f:e0:48:79:91:f5:ab:
b5:6a:79:04:9d:fe:68:cf:ca:41:b9:c9:b0:d6:c5:2d:16:d6:
38:d9:16:42:b4:8a:79:a4:50:04:ee:24:64:58:a3:38:78:7f:
15:0c:cd:ff:e5:9b:02:8c:03:71:c9:b1:0d:d7:93:fd:45:f1:
e9:7e:5c:f2:a3:3c:31:a8:3c:d6:bf:84:b1:30:47:74:40:b4:
4d:18:bc:af:2d:3d:9f:f8:0b:c0:6e:c3:27:88:35:0d:f5:3c:
a5:49:bd:32:a8:c7:71:75:97:90:27:45:a5:3c:e8:47:09:73:
ee:9d:42:24:1a:2f:b4:11:1b:41:55:94:e4:bc:9c:b9:ba:69:
a6:5c:36:68:2b:37:12:39:86:2d:7f:a3:61:73:76:a0:97:6e:
8d:d2:31:04:b3:d9:c6:af:49:9c:75:dc:b4:03:47:88:f2:8e:
9b:2a:61:28:8b:ac:b4:cc:ae:cf:ef:e5:37:e1:b2:ca:13:e0:
1f:05:c1:9b:78:d0:13:89:7d:1d:88:9e:a5:72:e9:64:03:67:
4a:99:c6:3f:94:a6:74:5d:80:1c:e3:34:3e:58:7a:59:f9:22:
24:60:c5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:11 2025 by rpki-client