Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzX0-E5-C65e3BiHWLXBKM0ytMQ.roa
File: ZzX0-E5-C65e3BiHWLXBKM0ytMQ.roa (raw, json)
Hash identifier: f9RjyrkkmK8IngMGb8OlxNobpfMpsgTlZ1HRfFQT4PY=
Subject key identifier: 67:35:F4:F8:4E:7E:0B:AE:5E:DC:18:87:58:B5:C1:28:CD:32:B4:C4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 027170D6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzX0-E5-C65e3BiHWLXBKM0ytMQ.roa
Signing time: Mon 21 Mar 2022 08:43:45 +0000
ROA not before: Mon 21 Mar 2022 08:43:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29066
IP address blocks: 45.157.36.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40988886 (0x27170d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 21 08:43:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6735f4f84e7e0bae5edc188758b5c128cd32b4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:08:de:a1:09:e3:ca:e3:fc:3e:25:90:ab:8d:
53:10:fb:bf:fc:67:f0:b2:58:d5:8e:9f:8d:97:a0:
52:81:91:da:f0:ae:70:2a:89:49:ba:eb:bc:75:8d:
17:78:f7:cf:f2:b5:37:3b:e9:ee:e4:ee:e2:a0:6a:
64:d6:84:e5:63:81:e4:90:14:bb:85:da:42:7e:e3:
a6:7c:73:11:08:8d:6b:42:3e:b9:4a:2b:7d:17:db:
06:ce:6f:b4:76:96:72:d6:78:eb:45:5c:dd:01:5f:
61:1f:e9:37:ba:d2:a7:fe:34:94:8d:99:fd:c2:89:
f2:ee:5c:b4:9f:0f:53:1e:4e:b1:65:ba:9a:1d:73:
91:7c:88:1a:c9:cd:9c:79:a6:02:db:e9:48:13:46:
ad:0b:38:3a:c6:51:c8:5d:a8:bf:eb:ba:47:71:b2:
dd:bf:c0:0c:44:4a:ed:e3:b3:b9:15:86:4b:ff:1d:
4b:16:ed:30:ff:c4:4d:e0:dc:37:18:a0:6d:1d:50:
89:61:25:17:fd:80:aa:5b:fa:ed:98:70:30:82:78:
b5:0e:91:c2:00:8d:d9:9f:3b:31:04:5a:1f:7a:4d:
11:ba:9d:09:5b:b5:47:51:5a:dd:77:9d:62:58:93:
11:37:42:93:f0:db:e6:1a:ad:67:36:f4:d5:92:17:
69:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:35:F4:F8:4E:7E:0B:AE:5E:DC:18:87:58:B5:C1:28:CD:32:B4:C4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzX0-E5-C65e3BiHWLXBKM0ytMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.218.0/24
45.157.36.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:1b:58:65:48:80:68:1a:5c:0c:5b:93:b9:bc:46:4d:0b:71:
36:a5:d7:ab:57:7b:8f:36:60:45:af:73:44:7a:3c:a8:af:a7:
e9:ef:9d:19:c7:97:24:71:6a:02:fc:f0:fb:80:6a:7e:4b:9e:
93:4b:d1:1e:8c:c6:f3:f3:fd:44:ba:7f:e3:18:d7:a0:e0:26:
c5:96:12:36:ca:63:33:1b:b7:76:c1:31:17:2f:35:a7:f0:43:
d9:ea:12:86:b7:a9:31:09:30:2f:a5:44:26:67:78:de:57:0d:
86:71:ae:59:3f:00:5f:ed:b3:d0:53:e2:0e:b6:4f:47:67:7a:
73:12:ac:7f:b5:18:72:70:bd:01:d8:83:2a:55:e7:92:d2:df:
a3:f4:ff:20:6e:df:77:eb:8d:1a:48:d4:61:bb:c0:4a:61:e5:
da:c3:2d:4f:7b:be:d4:80:70:c4:71:fd:bd:6f:6c:e2:a7:bc:
97:2c:37:9a:bb:a6:dc:4b:21:be:c2:f1:87:1e:9e:21:ec:71:
be:f4:60:5a:d5:38:ec:f6:85:96:88:04:bf:9f:11:d7:e7:ca:
41:ef:c6:44:44:e7:7a:6c:da:f7:2d:36:27:89:0a:8a:a8:78:
63:24:3e:0a:61:4c:37:9c:c7:62:01:d5:96:09:56:60:02:e4:
ae:9a:c9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:14:54 2025 by rpki-client