Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/ZbzKFpOSnnOB0B7uscC1sYBq9nE.roa
File: ZbzKFpOSnnOB0B7uscC1sYBq9nE.roa (raw, json)
Hash identifier: /Vx+odsChpim9zqeu++fhxPQmlzc/sJRyM7a7PNIhBE=
Subject key identifier: 65:BC:CA:16:93:92:9E:73:81:D0:1E:EE:B1:C0:B5:B1:80:6A:F6:71
Certificate issuer: /CN=5730ced8971732d36c84f55d52d32859886c8963
Certificate serial: 0149815A
Authority key identifier: 57:30:CE:D8:97:17:32:D3:6C:84:F5:5D:52:D3:28:59:88:6C:89:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzDO2JcXMtNshPVdUtMoWYhsiWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/ZbzKFpOSnnOB0B7uscC1sYBq9nE.roa
Signing time: Sat 01 Jan 2022 15:04:19 +0000
ROA not before: Sat 01 Jan 2022 15:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48059
IP address blocks: 91.208.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21594458 (0x149815a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5730ced8971732d36c84f55d52d32859886c8963
Validity
Not Before: Jan 1 15:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65bcca1693929e7381d01eeeb1c0b5b1806af671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:00:d1:72:74:dd:15:88:db:f8:95:e5:7a:41:
a4:93:2e:00:36:e3:30:2d:88:d6:48:9f:30:9a:5f:
08:83:d9:99:34:a9:92:ec:0b:f3:46:3b:e0:b4:63:
54:4e:b6:de:b5:3d:63:67:eb:b6:53:d1:22:5c:fd:
3b:24:06:ac:15:87:1a:48:a4:f0:72:4a:f1:c7:73:
94:62:52:83:e6:54:28:74:03:c1:be:b6:b1:f3:bf:
c1:b6:7a:14:15:a2:d4:c2:20:9b:d8:c1:f9:74:92:
59:bb:7e:54:7b:f1:3a:24:2f:ab:66:37:d9:6c:1d:
0f:89:0e:16:77:b9:ce:49:2a:5e:a4:98:d4:8d:c8:
b1:81:ee:f8:c5:e3:6e:f9:49:bf:eb:c3:7e:df:b8:
99:e8:2e:bd:fa:48:1d:8c:23:88:de:6f:b9:fa:51:
b2:27:ab:f2:81:49:84:b9:29:c3:10:26:c4:ff:c5:
4a:4b:2d:f3:9b:8e:3a:36:a4:ef:85:8f:c5:ab:42:
1f:c6:c0:a9:5c:d1:5e:6e:66:c6:fd:4a:18:db:ed:
67:1f:b3:15:bf:5a:fc:69:18:5b:d9:9a:d1:c7:26:
23:df:b9:22:4a:5f:39:e6:82:21:58:39:4c:1d:48:
9b:fd:7e:e8:a7:be:12:4e:82:0c:ff:69:50:e4:a5:
08:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BC:CA:16:93:92:9E:73:81:D0:1E:EE:B1:C0:B5:B1:80:6A:F6:71
X509v3 Authority Key Identifier:
keyid:57:30:CE:D8:97:17:32:D3:6C:84:F5:5D:52:D3:28:59:88:6C:89:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzDO2JcXMtNshPVdUtMoWYhsiWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/ZbzKFpOSnnOB0B7uscC1sYBq9nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/VzDO2JcXMtNshPVdUtMoWYhsiWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.255.0/24
Signature Algorithm: sha256WithRSAEncryption
21:27:ab:33:31:4d:7e:a8:6f:d8:40:c9:6b:fe:00:10:0f:3b:
60:b3:85:0d:9f:47:ed:a9:50:ba:a0:d6:7d:23:b0:6c:34:e6:
60:1f:4e:fa:1a:be:40:36:85:24:9c:c8:4a:98:04:0a:3a:24:
0e:ff:c1:4b:a2:7b:b4:21:f2:56:fd:f5:11:ee:6b:a4:53:95:
c6:08:f7:75:b1:02:73:57:7f:bf:97:7b:d3:5e:d0:c6:ae:28:
15:1c:07:8f:8e:28:33:05:e8:d8:36:ed:99:d9:9f:84:d2:3e:
90:24:e7:c8:08:f6:98:c3:9a:17:b2:45:49:a6:06:00:b9:ba:
92:36:8f:e8:20:55:11:bc:cb:e9:f5:96:01:9d:99:b1:3b:b3:
3c:4e:fb:9b:15:80:e0:e3:ec:c5:28:e5:25:1a:bb:62:11:a0:
31:f8:37:c6:ac:08:72:1c:17:ea:54:dc:17:c4:fa:4a:c5:d6:
b3:a1:e6:66:70:34:af:f0:2a:fc:fc:65:05:a5:4f:b1:76:73:
05:75:25:3c:22:65:33:a8:3e:01:78:01:98:12:ee:87:95:99:
12:2d:a4:7b:44:a3:80:5a:6f:e9:66:02:24:d7:1f:0a:90:d4:
89:9c:70:ca:b2:db:b4:61:0b:9e:d2:c1:48:84:9c:35:68:5d:
83:23:60:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:04 2024 by rpki-client on console-ams.rpki-client.org