Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/zRWdTl5Xx0toqE685AYUxkBlj4w.roa
File: zRWdTl5Xx0toqE685AYUxkBlj4w.roa (raw, json)
Hash identifier: 9/AykyxJ9wHcZLApIgI6i+Hv5I87FunG6jsXrXV/BxQ=
Subject key identifier: CD:15:9D:4E:5E:57:C7:4B:68:A8:4E:BC:E4:06:14:C6:40:65:8F:8C
Certificate issuer: /CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Certificate serial: 04D5C152
Authority key identifier: B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/zRWdTl5Xx0toqE685AYUxkBlj4w.roa
Signing time: Sat 02 Jul 2022 06:14:25 +0000
ROA not before: Sat 02 Jul 2022 06:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34323
IP address blocks: 91.200.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81117522 (0x4d5c152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Validity
Not Before: Jul 2 06:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd159d4e5e57c74b68a84ebce40614c640658f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d3:dc:72:e9:56:fb:e2:31:05:e4:a4:31:89:
52:e3:16:58:fb:52:c3:c1:00:96:6e:c4:d9:49:e3:
f7:d8:a0:4a:8a:1f:b7:ad:ac:47:46:38:d2:9c:9f:
f7:13:e4:71:73:f9:64:fe:6c:4f:f3:e0:74:ca:f2:
e4:fc:23:db:8d:0b:a3:75:74:b9:c4:7c:d8:c8:a4:
94:b6:1d:0d:35:1e:95:d9:06:f6:3a:7f:b9:55:96:
17:aa:02:b6:59:8e:73:8c:c9:d7:9e:bd:9d:ad:d9:
01:28:b8:f4:56:e7:c0:af:e2:14:80:22:0e:cf:8e:
d3:b1:a2:d4:b5:ba:1c:1f:1b:c6:39:c6:19:2a:17:
e7:a9:10:49:f4:94:35:4b:ef:ea:cf:ba:54:2d:f7:
d8:5b:e9:eb:ec:f0:cf:22:ed:f6:6f:77:74:a2:7e:
64:bf:f4:37:4a:25:31:1f:55:e0:fe:ac:ca:14:66:
84:72:64:8f:d8:cf:04:df:8d:cf:fd:d7:bc:f0:2d:
01:9d:7b:64:1a:15:95:be:fe:88:43:97:ed:29:53:
eb:52:7b:26:c1:84:65:54:97:12:b7:90:b2:fa:07:
63:9f:b8:b2:87:b0:5d:eb:88:04:46:94:b1:6b:b3:
9c:3e:3f:6d:43:3d:54:7d:4e:26:2a:dd:e3:b3:a5:
04:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:15:9D:4E:5E:57:C7:4B:68:A8:4E:BC:E4:06:14:C6:40:65:8F:8C
X509v3 Authority Key Identifier:
keyid:B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/zRWdTl5Xx0toqE685AYUxkBlj4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/uC57gGjErprkykw6ayCWGZp0H_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.82.0/24
Signature Algorithm: sha256WithRSAEncryption
61:16:35:6c:d2:26:13:29:a3:17:24:ee:9c:bd:c4:03:1a:ba:
90:17:96:86:09:21:ec:c3:1b:17:59:ec:2a:8c:d7:6a:4f:db:
b1:1f:6b:9a:9a:d5:68:4a:16:c6:8a:1f:d0:b0:44:7b:6e:bf:
33:f6:38:6b:27:e2:05:50:89:43:ed:df:06:81:93:c5:1f:c8:
f5:15:0e:b1:7f:fa:7c:a6:d7:d0:82:dc:7e:b3:a3:0f:df:51:
d5:62:ce:ba:5f:41:b2:c4:37:78:ff:06:43:72:42:19:eb:97:
42:a2:37:20:e3:09:68:cb:73:fc:ee:63:bf:f7:a2:dd:70:c2:
3b:94:11:21:6a:a6:3b:ff:51:6d:a0:d5:70:04:82:a1:9d:b8:
90:5e:c7:ee:3a:8e:06:e1:59:94:c1:84:5b:f5:ba:42:46:23:
b2:92:67:cf:49:59:8c:ca:f5:1b:d9:2b:37:ca:b9:dc:1f:dc:
38:f3:cf:2a:8a:f0:e9:d3:f8:44:66:8e:21:77:6e:96:a7:4a:
51:b3:df:a6:6e:3e:4b:1e:eb:aa:69:29:eb:57:cc:b4:9d:58:
d0:5d:c2:4a:55:a9:c4:e3:ed:45:17:ae:e1:80:8f:cb:a8:eb:
11:23:9f:af:80:2a:72:f8:da:c1:86:cd:a2:0a:2d:8f:db:16:
68:80:4d:10
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBNXBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODJlN2I4MDY4YzRhZTlhZTRjYTRjM2E2YjIwOTYxOTlhNzQxZmYyMB4XDTIyMDcw
MjA2MTQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2QxNTlkNGU1ZTU3
Yzc0YjY4YTg0ZWJjZTQwNjE0YzY0MDY1OGY4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ/T3HLpVvviMQXkpDGJUuMWWPtSw8EAlm7E2Unj99igSoof
t62sR0Y40pyf9xPkcXP5ZP5sT/PgdMry5Pwj240Lo3V0ucR82MiklLYdDTUeldkG
9jp/uVWWF6oCtlmOc4zJ1569na3ZASi49FbnwK/iFIAiDs+O07Gi1LW6HB8bxjnG
GSoX56kQSfSUNUvv6s+6VC332Fvp6+zwzyLt9m93dKJ+ZL/0N0olMR9V4P6syhRm
hHJkj9jPBN+Nz/3XvPAtAZ17ZBoVlb7+iEOX7SlT61J7JsGEZVSXEreQsvoHY5+4
soewXeuIBEaUsWuznD4/bUM9VH1OJird47OlBM0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTNFZ1OXlfHS2ioTrzkBhTGQGWPjDAfBgNVHSMEGDAWgBS4LnuAaMSumuTK
TDprIJYZmnQf8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VDNTdnR2pFcnBya3lrdzZheUNXR1pwMEhfSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvMjljOTE1LTJjYmMtNDc2OC04NDBjLWFhZGZhOWMwNjc0Mi8x
L3pSV2RUbDVYeDB0b3FFNjg1QVlVeGtCbGo0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
MjljOTE1LTJjYmMtNDc2OC04NDBjLWFhZGZhOWMwNjc0Mi8xL3VDNTdnR2pFcnBy
a3lrdzZheUNXR1pwMEhfSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvIUjANBgkqhkiG9w0BAQsFAAOC
AQEAYRY1bNImEymjFyTunL3EAxq6kBeWhgkh7MMbF1nsKozXak/bsR9rmprVaEoW
xoof0LBEe26/M/Y4ayfiBVCJQ+3fBoGTxR/I9RUOsX/6fKbX0ILcfrOjD99R1WLO
ul9BssQ3eP8GQ3JCGeuXQqI3IOMJaMtz/O5jv/ei3XDCO5QRIWqmO/9RbaDVcASC
oZ24kF7H7jqOBuFZlMGEW/W6QkYjspJnz0lZjMr1G9krN8q53B/cOPPPKorw6dP4
RGaOIXdulqdKUbPfpm4+Sx7rqmkp61fMtJ1Y0F3CSlWpxOPtRReu4YCPy6jrESOf
r4AqcvjawYbNogotj9sWaIBNEA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:18 2024 by rpki-client on console-ams.rpki-client.org