Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/z-Tplo_zEphBPBFRbPvkr9EsNW4.roa
File: z-Tplo_zEphBPBFRbPvkr9EsNW4.roa (raw, json)
Hash identifier: t13OQ1r9DSiOA2J2Lbx2lWOuIII9wjEFNrFQNV7DpNM=
Subject key identifier: CF:E4:E9:96:8F:F3:12:98:41:3C:11:51:6C:FB:E4:AF:D1:2C:35:6E
Certificate issuer: /CN=a566d8337776c98746bd231e69e185db2a9a5be2
Certificate serial: 0184C117EDDA9482DC5C285FECCDA71A75E0
Authority key identifier: A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/z-Tplo_zEphBPBFRbPvkr9EsNW4.roa
Signing time: Tue 29 Nov 2022 01:54:41 +0000
ROA not before: Tue 29 Nov 2022 01:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208608
IP address blocks: 45.91.204.0/22 maxlen: 24
2a0e:1540::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c1:17:ed:da:94:82:dc:5c:28:5f:ec:cd:a7:1a:75:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a566d8337776c98746bd231e69e185db2a9a5be2
Validity
Not Before: Nov 29 01:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfe4e9968ff31298413c11516cfbe4afd12c356e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:49:a9:b9:dd:8b:87:3f:43:11:85:2a:48:d3:
0b:34:3a:1f:1a:53:21:ea:70:18:8d:28:ad:61:db:
ed:57:60:18:09:02:fe:bf:65:17:81:c6:3e:b9:5c:
55:18:27:42:72:90:fd:31:7d:8a:63:0a:69:11:79:
a4:37:5b:53:1e:5e:9f:ef:60:89:1c:05:cd:64:c5:
22:3e:f6:78:80:a0:20:35:be:86:79:bf:d2:c5:48:
ec:35:31:e8:c6:45:1f:f6:f3:27:ec:fe:ba:74:f3:
96:98:23:d7:64:b7:70:3f:89:29:e5:4b:cd:d5:0d:
23:6e:1f:f2:8a:20:cd:5e:62:1d:4d:1e:e4:8d:6a:
7a:43:fc:9f:42:a6:1b:a3:32:ff:1f:63:91:b2:61:
52:59:f6:d9:83:9a:90:92:63:97:13:39:a1:46:e3:
fd:83:7e:87:1a:17:c0:b1:bb:ac:db:1d:2b:9d:38:
2c:aa:e4:ed:f4:0c:b3:60:b1:1f:dc:10:6e:f4:93:
93:26:25:bd:ed:07:1b:d5:b4:3c:f5:dd:b9:c6:ae:
04:99:0f:69:21:62:bb:50:3d:62:a6:b3:ed:0b:d3:
ed:af:d2:61:10:4f:97:b8:ad:01:40:77:1b:88:47:
89:a0:6d:8b:5b:8f:67:12:b0:65:ca:21:cf:6e:c7:
18:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E4:E9:96:8F:F3:12:98:41:3C:11:51:6C:FB:E4:AF:D1:2C:35:6E
X509v3 Authority Key Identifier:
keyid:A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/z-Tplo_zEphBPBFRbPvkr9EsNW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.204.0/22
IPv6:
2a0e:1540::/29
Signature Algorithm: sha256WithRSAEncryption
50:cf:47:c6:b7:3c:c0:01:d6:60:fd:c3:ab:bd:77:2b:cb:0d:
f8:5a:14:9b:c6:a7:4e:0e:54:af:3b:79:31:e2:6e:c0:fd:5d:
c5:9e:73:ed:d7:61:b1:e9:93:5a:b7:0b:b8:f3:29:29:8c:dc:
c8:2e:94:9c:78:e7:c0:b2:81:17:ef:2f:ad:09:35:2f:1a:9c:
c2:50:fd:08:dc:2f:52:b7:b9:3d:0a:4d:c4:86:48:a1:29:e7:
d1:f6:50:c1:59:18:d3:d0:8b:b3:1f:71:0a:86:e0:22:ec:e1:
f8:c3:63:99:9b:9c:1b:bf:f6:b9:29:30:88:a8:e3:33:8b:c7:
cb:b3:bc:0d:52:95:65:85:80:37:74:4d:fa:26:03:08:34:72:
42:1f:55:22:7b:87:14:09:0b:72:d6:8b:57:08:63:69:ea:45:
e6:a5:3b:6c:ca:4f:df:54:0b:5b:b5:b6:5a:86:29:94:1b:35:
4b:6a:b3:83:35:80:be:55:b9:74:d1:eb:42:bf:6e:75:8f:7c:
bb:b1:b5:3d:1d:a6:38:ed:86:24:fd:d3:1f:04:8e:6b:59:6f:
1d:73:c8:98:48:80:25:c2:59:0f:82:c9:53:35:4c:65:bb:20:
e2:de:12:2a:11:cf:2b:3d:62:21:d9:0a:92:05:7c:ab:27:e7:
63:80:c4:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net