Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/Zlo-XUjfkTQXdWKRECglbwlM2X0.roa
File: Zlo-XUjfkTQXdWKRECglbwlM2X0.roa (raw, json)
Hash identifier: P7LVq03j6t0yQko09AU0AgVzl7+IIZpkK7ldGRtP1Gc=
Subject key identifier: 66:5A:3E:5D:48:DF:91:34:17:75:62:91:10:28:25:6F:09:4C:D9:7D
Certificate issuer: /CN=73ef4bbafdc73e53c099d4d52e9c9effa8379b4f
Certificate serial: 0308E38A
Authority key identifier: 73:EF:4B:BA:FD:C7:3E:53:C0:99:D4:D5:2E:9C:9E:FF:A8:37:9B:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-9Luv3HPlPAmdTVLpye_6g3m08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/Zlo-XUjfkTQXdWKRECglbwlM2X0.roa
Signing time: Sat 01 Jan 2022 15:01:29 +0000
ROA not before: Sat 01 Jan 2022 15:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 45.67.69.0/24 maxlen: 24
45.67.71.0/24 maxlen: 24
45.67.68.0/24 maxlen: 24
45.67.70.0/24 maxlen: 24
2a09:71c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50914186 (0x308e38a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ef4bbafdc73e53c099d4d52e9c9effa8379b4f
Validity
Not Before: Jan 1 15:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=665a3e5d48df9134177562911028256f094cd97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:99:a9:06:81:a4:e2:3e:db:b8:dd:2a:12:9b:
1d:94:19:fc:f7:61:fc:24:d7:13:ab:8e:93:34:31:
c5:58:bc:5f:4a:b9:ff:8e:20:19:f1:f0:a4:a5:4d:
28:01:48:4d:86:f8:59:1f:83:8a:91:3a:d9:92:bd:
df:6b:77:4e:77:a3:d8:d5:44:70:97:f2:0d:c0:63:
52:c4:70:69:8f:84:08:6e:27:e7:b1:07:30:ab:b2:
48:56:37:ee:69:af:1a:bd:52:e4:6c:75:f4:14:74:
a2:d6:5c:95:61:e0:42:10:53:d2:f5:7e:ed:00:ac:
bb:ea:e5:86:0b:27:32:4d:60:dd:1e:7b:f7:46:45:
41:69:3f:3d:df:dc:83:d2:1c:f7:0c:b8:0d:54:16:
5f:f2:b7:70:c8:9a:ff:9f:20:14:3e:f9:b0:19:90:
9b:d1:2d:9a:39:29:74:74:6d:5b:81:33:93:58:c4:
dc:3a:cd:f3:0b:30:11:af:3e:c7:7b:da:d4:23:5f:
19:8f:88:c5:a2:82:85:d4:83:17:81:cb:8c:bc:c2:
2d:20:3f:d1:6d:db:37:c1:36:8e:f0:41:f8:d9:22:
b3:0c:fb:ef:63:69:fc:de:9b:28:39:22:c1:a6:e7:
1f:38:fe:94:1c:0f:a1:e9:fc:dc:8f:57:ea:50:86:
db:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5A:3E:5D:48:DF:91:34:17:75:62:91:10:28:25:6F:09:4C:D9:7D
X509v3 Authority Key Identifier:
keyid:73:EF:4B:BA:FD:C7:3E:53:C0:99:D4:D5:2E:9C:9E:FF:A8:37:9B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-9Luv3HPlPAmdTVLpye_6g3m08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/Zlo-XUjfkTQXdWKRECglbwlM2X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/c-9Luv3HPlPAmdTVLpye_6g3m08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.68.0/22
IPv6:
2a09:71c0::/29
Signature Algorithm: sha256WithRSAEncryption
0f:98:71:45:69:14:1c:04:87:d3:84:23:58:5a:1f:c8:ca:05:
80:48:39:d1:cb:42:4e:3f:93:91:a7:ca:95:8f:5a:61:d4:6e:
00:de:b3:03:cd:ac:08:d5:a3:f8:ff:81:b5:70:42:df:9d:ed:
a7:b7:50:51:3a:2d:6b:54:40:47:68:6c:18:36:e9:35:f9:28:
2b:a1:53:ae:ee:dc:24:31:64:9a:d9:a5:d4:fe:c8:a3:6e:47:
97:75:89:3e:9e:cb:25:06:27:cb:c3:80:6f:fa:4f:22:34:bd:
15:c1:5e:6f:cf:3d:3c:ac:1f:01:83:a0:b3:d0:0e:3f:7c:bb:
05:69:5d:cb:81:4e:de:9c:8b:cf:1e:a5:a3:c7:32:33:9e:7e:
65:5f:bc:88:c5:e1:76:dd:b6:97:55:0f:88:ab:6c:a5:00:b9:
bd:14:6b:0d:cc:2b:6a:51:a1:7c:12:c3:30:47:0a:14:1b:3c:
55:aa:e7:58:44:03:dc:b6:27:9a:82:f6:f5:4b:11:c5:35:e1:
ba:e4:0c:6e:5e:73:35:e3:dd:63:93:47:2c:f7:67:6d:93:ca:
8f:da:bc:31:9a:61:68:5b:ff:6d:17:6c:49:e9:00:df:c3:f1:
fd:b8:76:7a:9b:c3:68:15:77:40:d7:1c:08:36:1c:31:48:2a:
d6:a9:86:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org