Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zDeNXYanmI36_jGtFPXgYpbuIys.roa
File: zDeNXYanmI36_jGtFPXgYpbuIys.roa (raw, json)
Hash identifier: CvaXnBiMldwaZN+qzuxMJR7gDqLZDLuShh3gW+2nA9U=
Subject key identifier: CC:37:8D:5D:86:A7:98:8D:FA:FE:31:AD:14:F5:E0:62:96:EE:23:2B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AF8CAFF
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zDeNXYanmI36_jGtFPXgYpbuIys.roa
Signing time: Sat 01 Jan 2022 13:57:56 +0000
ROA not before: Sat 01 Jan 2022 13:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197790
IP address blocks: 78.9.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720947967 (0x2af8caff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc378d5d86a7988dfafe31ad14f5e06296ee232b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:f8:1d:95:3f:1a:7c:70:c2:6b:da:4a:3b:
bc:50:8b:a5:16:4d:38:37:aa:8c:4c:ab:0e:34:33:
6b:43:4d:94:c5:d0:68:4e:3f:ac:ff:98:d4:6c:e4:
f2:08:17:f2:1b:4e:a6:88:74:8c:96:0b:e9:d5:db:
4a:38:92:6b:d4:f2:ba:ab:dc:57:1a:61:2b:99:bb:
f7:cc:a4:2e:97:7a:10:9c:f2:86:dc:14:9c:0b:ed:
07:f3:9f:be:14:88:19:7a:71:0b:aa:fe:f1:7a:ec:
ba:61:be:ad:3b:6f:f9:43:11:00:c6:c1:f2:01:1f:
b9:3f:f0:3e:07:45:f2:58:fe:4c:64:e5:07:a4:9a:
6f:83:51:40:1b:1c:11:25:be:1c:03:49:6b:94:19:
aa:66:92:b1:38:1d:c6:93:cd:62:34:b9:99:bc:f5:
c0:0a:3f:4e:ac:1d:37:b9:48:f2:06:71:ec:53:78:
1e:dd:22:69:59:c9:41:3d:92:27:79:fd:a2:9e:cc:
ca:57:2e:30:bd:94:a4:9d:d5:38:61:54:53:fd:8d:
53:8f:36:c2:46:53:29:1a:7c:7d:c8:a7:f8:73:8c:
2c:4b:b4:ff:37:f7:3f:ba:5f:8a:10:7f:46:9d:7c:
bf:28:ac:7c:53:6d:d2:56:1c:3a:1e:40:f3:9f:7c:
e6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:37:8D:5D:86:A7:98:8D:FA:FE:31:AD:14:F5:E0:62:96:EE:23:2B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/zDeNXYanmI36_jGtFPXgYpbuIys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.9.100.0/24
Signature Algorithm: sha256WithRSAEncryption
03:72:78:96:fe:cd:0c:99:b4:ff:75:81:80:53:d5:f1:ca:31:
f2:d4:fa:ac:a5:20:f9:c0:f0:78:89:12:ac:ab:40:d4:ef:34:
3a:6f:39:44:42:72:51:c3:70:5c:55:4b:7d:d3:98:bb:3b:fe:
b1:ec:47:d8:38:15:ca:85:c7:ba:b9:3e:1d:65:04:b0:61:70:
a5:bc:9b:27:68:07:dd:86:83:c5:59:b7:89:d5:ca:4e:c7:79:
a3:dc:dd:6f:ee:a8:dc:09:ae:76:2c:3d:6a:94:71:aa:a4:18:
9c:be:89:35:3f:ca:df:c2:a7:74:68:dc:53:4c:73:ff:83:29:
5b:db:0c:e5:72:e5:be:1a:4b:74:df:fc:76:f5:87:46:a2:37:
6c:f9:2c:81:6c:2c:9d:4f:63:38:5e:20:82:dd:88:2a:2e:3f:
92:bf:6e:9c:ab:e7:fb:a6:1c:de:47:25:94:83:f6:05:b7:d9:
c8:fd:d7:ed:39:98:80:fa:bb:14:8a:4b:d2:c5:6f:70:38:9f:
fe:7e:e9:44:05:87:19:f4:6a:c2:25:1d:ae:87:2a:25:96:85:
35:5a:98:2f:5f:8e:e8:ff:57:b1:71:bb:85:b4:8d:e3:86:a0:
d2:01:9b:10:a8:fb:82:32:70:4d:22:f9:2e:6f:2d:c6:dd:bb:
1b:e4:45:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKvjK/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTc1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2MzNzhkNWQ4NmE3
OTg4ZGZhZmUzMWFkMTRmNWUwNjI5NmVlMjMyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJUH+B2VPxp8cMJr2ko7vFCLpRZNODeqjEyrDjQza0NNlMXQ
aE4/rP+Y1Gzk8ggX8htOpoh0jJYL6dXbSjiSa9TyuqvcVxphK5m798ykLpd6EJzy
htwUnAvtB/OfvhSIGXpxC6r+8XrsumG+rTtv+UMRAMbB8gEfuT/wPgdF8lj+TGTl
B6Sab4NRQBscESW+HANJa5QZqmaSsTgdxpPNYjS5mbz1wAo/TqwdN7lI8gZx7FN4
Ht0iaVnJQT2SJ3n9op7MylcuML2UpJ3VOGFUU/2NU482wkZTKRp8fcin+HOMLEu0
/zf3P7pfihB/Rp18vyisfFNt0lYcOh5A85985vUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTMN41dhqeYjfr+Ma0U9eBilu4jKzAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
L3pEZU5YWWFubUkzNl9qR3RGUFhnWXBidUl5cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE4JZDANBgkqhkiG9w0BAQsFAAOC
AQEAA3J4lv7NDJm0/3WBgFPV8cox8tT6rKUg+cDweIkSrKtA1O80Om85REJyUcNw
XFVLfdOYuzv+sexH2DgVyoXHurk+HWUEsGFwpbybJ2gH3YaDxVm3idXKTsd5o9zd
b+6o3Amudiw9apRxqqQYnL6JNT/K38KndGjcU0xz/4MpW9sM5XLlvhpLdN/8dvWH
RqI3bPksgWwsnU9jOF4ggt2IKi4/kr9unKvn+6Yc3kcllIP2BbfZyP3X7TmYgPq7
FIpL0sVvcDif/n7pRAWHGfRqwiUdrocqJZaFNVqYL1+O6P9XsXG7hbSN44ag0gGb
EKj7gjJwTSL5Lm8txt27G+RFRw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org