Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/497ced-0526-4d3b-bd2b-80d21c20d918/1/ZDjsqNXrKjh8-TiQxVAfoSwZH5c.roa
File: ZDjsqNXrKjh8-TiQxVAfoSwZH5c.roa (raw, json)
Hash identifier: x7yNrExYAptAgYNs6FbSmZcFU3Gp8yckgSWjCgQQd7Q=
Subject key identifier: 64:38:EC:A8:D5:EB:2A:38:7C:F9:38:90:C5:50:1F:A1:2C:19:1F:97
Certificate issuer: /CN=e06314757548f074e84faf3fcbb7b82d82def3e5
Certificate serial: 0EB73EB5
Authority key identifier: E0:63:14:75:75:48:F0:74:E8:4F:AF:3F:CB:B7:B8:2D:82:DE:F3:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GMUdXVI8HToT68_y7e4LYLe8-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/497ced-0526-4d3b-bd2b-80d21c20d918/1/ZDjsqNXrKjh8-TiQxVAfoSwZH5c.roa
Signing time: Sat 01 Jan 2022 09:02:59 +0000
ROA not before: Sat 01 Jan 2022 09:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 130.112.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246890165 (0xeb73eb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e06314757548f074e84faf3fcbb7b82d82def3e5
Validity
Not Before: Jan 1 09:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6438eca8d5eb2a387cf93890c5501fa12c191f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:94:12:ff:b5:f3:d6:56:e7:1a:bd:d4:02:89:
ae:54:e3:3c:e4:c6:01:99:68:27:58:e9:bf:a6:ce:
56:5e:30:75:87:2f:9b:6e:cb:79:53:a4:d5:0b:99:
84:ab:f4:b2:59:c7:f1:0b:80:11:4f:9e:2c:93:e9:
39:4d:ff:7d:a9:75:bf:b8:24:ae:fc:c8:37:8e:11:
16:c0:f4:03:fc:4a:1a:de:65:28:82:59:45:5d:ce:
34:c6:04:fe:0c:00:5b:f0:04:64:64:e1:82:8b:ed:
e5:83:ed:c2:58:fe:37:a5:1a:44:27:b4:25:f0:ad:
d6:9e:fb:01:74:32:d8:5d:b1:db:5f:33:6d:8c:ba:
f4:f2:38:cb:bb:81:67:84:92:7b:86:72:ca:c7:6a:
6c:96:b6:a1:1a:22:d5:3d:fd:94:b4:37:ee:59:87:
74:6d:31:24:af:c3:af:9c:38:a0:02:81:1b:48:d3:
a4:79:b7:95:5a:a0:d9:c1:81:2b:c2:34:b0:b4:14:
36:64:dc:99:8a:c7:8c:14:22:24:b3:16:20:46:c2:
cc:f5:05:56:ca:31:83:4c:76:e0:43:8c:5b:bd:20:
2b:e2:9f:82:69:00:66:22:0d:95:c9:2c:5c:a0:25:
9b:e3:88:61:e5:56:0d:a8:4f:72:4e:4a:b2:c0:ea:
95:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:38:EC:A8:D5:EB:2A:38:7C:F9:38:90:C5:50:1F:A1:2C:19:1F:97
X509v3 Authority Key Identifier:
keyid:E0:63:14:75:75:48:F0:74:E8:4F:AF:3F:CB:B7:B8:2D:82:DE:F3:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GMUdXVI8HToT68_y7e4LYLe8-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/497ced-0526-4d3b-bd2b-80d21c20d918/1/ZDjsqNXrKjh8-TiQxVAfoSwZH5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/497ced-0526-4d3b-bd2b-80d21c20d918/1/4GMUdXVI8HToT68_y7e4LYLe8-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.112.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:c7:c7:67:36:f8:3a:a7:aa:9b:ad:84:11:71:e3:31:62:63:
ce:f1:b8:8b:1e:c3:0a:e4:43:3c:1d:17:b3:7e:2b:a9:73:e5:
2a:3f:1b:45:a9:62:d7:27:3d:a1:ac:81:5f:97:0f:fd:72:cd:
57:21:7e:6a:2d:da:18:61:7c:19:e5:89:31:e9:60:60:5a:73:
25:f6:3d:2b:80:51:ea:33:6d:2e:ce:44:b2:d6:22:52:9d:86:
d6:4e:68:a6:05:a7:8f:22:78:4a:18:d2:78:b5:e5:ad:cf:2c:
f2:be:e1:b5:ea:75:79:34:37:9b:5a:2e:a3:71:bf:3b:64:28:
2f:de:32:c7:29:89:c2:87:c8:26:19:9c:c1:fc:11:83:b2:e0:
e4:cb:7e:2b:dd:4c:91:bd:ef:08:20:4d:73:07:db:b7:93:61:
4e:69:df:0c:79:f8:ec:67:4b:7c:86:3e:70:f1:aa:c0:6a:08:
53:19:e1:c6:0d:5f:a8:1f:36:22:0b:46:2c:fb:8b:47:fe:f1:
18:85:1d:06:f3:54:da:a9:5a:24:83:03:f4:d0:c8:1c:30:43:
14:7e:6e:06:cd:9e:6b:34:f7:db:80:9a:0e:71:a7:07:22:7f:
dc:04:ca:4b:0a:83:40:31:1b:49:c7:24:7e:7a:52:36:34:86:
27:0d:c3:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:26 2025 by rpki-client