Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ZlUP-wNsxKv4iGOuWxNpNF8wu3U.roa
File: ZlUP-wNsxKv4iGOuWxNpNF8wu3U.roa (raw, json)
Hash identifier: xm6JG2Ib7kXryEa8mBWdw6d6GPD8736ERsRvOk0x7HE=
Subject key identifier: 66:55:0F:FB:03:6C:C4:AB:F8:88:63:AE:5B:13:69:34:5F:30:BB:75
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 183B0B94
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ZlUP-wNsxKv4iGOuWxNpNF8wu3U.roa
Signing time: Fri 04 Mar 2022 09:02:20 +0000
ROA not before: Fri 04 Mar 2022 09:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 178.251.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406522772 (0x183b0b94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Mar 4 09:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66550ffb036cc4abf88863ae5b1369345f30bb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:08:e9:67:f8:92:94:a4:56:52:f2:f6:a8:
52:11:5a:b1:7f:23:75:e8:54:66:b6:18:db:df:74:
87:38:09:b0:83:8a:37:6a:ec:33:5a:9a:ec:b2:9f:
8f:dc:67:36:ac:10:b8:05:fb:84:c3:cf:42:13:1d:
77:6b:09:a3:3d:76:31:31:23:7a:21:68:d5:dc:df:
d5:b2:9b:c2:57:2a:44:07:b2:60:5c:a9:0d:7c:10:
64:2f:8c:09:9e:c2:60:97:e0:b6:3d:1d:c8:13:01:
c0:97:dd:48:26:3b:c7:cf:e0:6c:24:67:cd:9c:7e:
57:c2:11:61:72:c1:e5:9c:28:02:0c:cc:3c:1e:44:
5e:02:cd:0d:f6:b6:d2:e3:91:7f:2c:f2:f1:94:56:
04:8e:71:bb:62:76:10:64:6c:c9:3d:05:31:ca:0c:
2f:4b:8e:0e:51:d2:ce:3b:3d:af:d0:76:cd:92:28:
ad:5f:a3:a4:73:f4:50:01:9b:6c:25:d6:65:b3:1d:
25:a6:8b:d0:8f:56:7c:6a:19:c7:bf:9b:48:21:a9:
c7:ad:ee:56:76:56:ee:96:f7:6e:e9:c5:c5:61:e6:
5c:cf:06:48:bb:b0:5e:41:ba:41:23:ee:63:aa:58:
75:5f:27:5c:e1:8b:32:23:7a:6f:5e:cb:1c:a7:67:
67:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:55:0F:FB:03:6C:C4:AB:F8:88:63:AE:5B:13:69:34:5F:30:BB:75
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ZlUP-wNsxKv4iGOuWxNpNF8wu3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
90:85:70:2e:60:cb:03:a1:6c:62:c6:4f:0b:62:1c:13:29:d1:
83:08:11:90:ac:9a:1c:81:91:97:d6:9e:40:97:8a:eb:5c:b8:
27:d6:dc:7a:69:d2:56:a2:46:23:5b:38:fc:f9:c6:b8:80:33:
cc:60:f0:02:6d:49:5e:0d:2a:ab:a6:cb:db:91:9e:d4:14:f4:
aa:b2:7a:9d:f0:5e:c4:35:41:48:af:61:95:13:26:aa:fe:cf:
ac:6b:b8:13:79:1b:9a:00:51:2c:88:e1:a1:73:02:40:e1:2f:
a9:5f:dd:31:dd:08:5d:53:71:7b:86:c6:26:b1:bd:99:b2:71:
90:eb:1c:97:64:c1:fd:b8:97:cc:1c:75:88:6d:68:3d:d5:b0:
76:d5:c0:28:27:4f:b4:1c:29:f9:21:a9:38:67:ec:3b:4e:4e:
9e:a7:d9:0c:ca:c6:d9:7b:b3:e6:8b:f4:dc:bb:7d:b4:fe:e1:
cd:3e:3d:bd:4f:56:84:54:89:32:48:80:2a:95:91:17:7d:61:
e9:05:00:3a:ef:ff:ec:8c:47:15:78:9d:4f:ac:e3:12:bb:8e:
15:c3:6c:63:37:49:e0:a9:be:ee:eb:51:af:b3:dd:1d:e4:6d:
ca:87:63:28:c8:23:31:bf:59:94:8b:41:c8:e9:8e:60:69:a1:
95:c7:f4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org