Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ZvhUdgJkicFIRGbgNBpxtEISEn8.roa
File: ZvhUdgJkicFIRGbgNBpxtEISEn8.roa (raw, json)
Hash identifier: jP++3r25sKQcjonFPrw+WptvcIIwNEmXYr29MTEcey8=
Subject key identifier: 66:F8:54:76:02:64:89:C1:48:44:66:E0:34:1A:71:B4:42:12:12:7F
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 04232420
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ZvhUdgJkicFIRGbgNBpxtEISEn8.roa
Signing time: Thu 10 Mar 2022 17:01:05 +0000
ROA not before: Thu 10 Mar 2022 17:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69411872 (0x4232420)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Mar 10 17:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66f85476026489c1484466e0341a71b44212127f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f0:f3:f3:e8:54:40:9f:07:61:05:8f:e1:d3:
29:93:b7:3c:c2:9d:3b:f0:42:ac:5f:5b:78:d4:e8:
d8:c9:47:34:35:92:6d:35:0a:b9:4d:10:69:0f:fb:
1e:e6:d4:9e:42:b5:ae:3b:e7:08:a1:cf:13:cc:b5:
cd:7f:3b:bf:96:d3:80:ba:5c:1c:1e:4d:0c:bb:33:
12:ea:cc:55:7b:fb:18:70:ec:aa:2f:d2:4a:66:fb:
72:13:87:6c:b3:4b:9a:b4:db:3b:0d:26:b8:21:aa:
e3:29:69:8d:2a:39:90:be:56:bb:79:6a:c7:f3:e8:
c4:07:75:b1:8c:32:9e:f3:72:fb:c4:16:8b:13:3d:
d9:60:ac:22:8f:15:fd:a5:a4:26:d2:6e:21:97:e2:
79:1d:2a:b1:99:cb:62:27:5c:96:11:b5:3e:d4:2b:
f4:5d:75:f9:a6:67:c7:c1:3a:cf:89:fc:0f:24:1b:
e0:40:0c:ce:20:96:68:89:73:8d:3f:b6:39:ad:11:
de:c8:0d:5d:ab:6a:ec:2d:e2:20:35:04:e9:80:fa:
d8:36:90:7f:85:49:2b:b6:05:f4:5a:1e:ab:53:47:
f1:69:45:41:79:29:61:12:d6:c1:6c:4d:e2:fc:43:
0e:af:e0:28:3b:77:d3:25:43:b7:36:e5:2c:1d:3b:
18:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F8:54:76:02:64:89:C1:48:44:66:E0:34:1A:71:B4:42:12:12:7F
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/ZvhUdgJkicFIRGbgNBpxtEISEn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:0c:45:e8:24:2c:55:eb:19:be:40:82:dc:3c:16:fd:69:6f:
60:30:a4:25:04:5e:92:2f:bf:d4:ca:ca:8d:02:1d:b6:2c:17:
8c:ca:60:fc:2a:9b:46:af:87:10:35:4a:a3:30:be:dd:73:62:
23:06:b9:7f:e1:3b:90:96:ae:a4:ec:65:71:ac:5b:10:2d:1b:
f5:b3:ec:8b:63:be:cb:fc:c8:69:d3:be:fa:c8:cc:7a:db:5f:
89:a3:cc:47:de:91:e6:25:82:e2:c6:03:c3:e7:11:4d:eb:c4:
0b:5f:53:eb:ba:c5:cb:8c:1c:dd:d3:3b:2a:c2:1a:77:1a:eb:
3c:5e:19:06:d0:06:1c:73:2e:9a:ca:8e:c9:ba:e1:f4:82:ff:
8b:ad:42:32:ab:dd:77:5c:d2:47:fb:d8:1c:a0:60:04:30:11:
bf:be:b9:c9:10:24:8e:ca:d6:2e:5a:30:a1:da:75:5f:0b:0c:
13:91:c3:ae:fe:b8:d1:65:16:b0:ac:c0:03:a7:5b:95:8e:3c:
f0:45:54:c9:36:60:bb:64:1b:92:47:70:3e:29:99:de:db:da:
52:16:0f:cd:38:3e:26:a6:af:2f:26:b5:d0:de:d1:fd:19:66:
02:a2:e3:e2:76:7d:1e:23:89:c4:10:29:f5:82:54:53:29:ef:
ef:5c:8b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org