Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Zps4-dzMLDkfx6ZF3SXTfRjjlvo.roa
File: Zps4-dzMLDkfx6ZF3SXTfRjjlvo.roa (raw, json)
Hash identifier: 59BfvM61o7XP43pqjO32/3jOapVmQ1rs3Rx4DUaO2AY=
Subject key identifier: 66:9B:38:F9:DC:CC:2C:39:1F:C7:A6:45:DD:25:D3:7D:18:E3:96:FA
Certificate issuer: /CN=dbc7840920d1c709ff299aed3682c23fb432767d
Certificate serial: 0326EE7E
Authority key identifier: DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Zps4-dzMLDkfx6ZF3SXTfRjjlvo.roa
Signing time: Sat 01 Jan 2022 10:54:52 +0000
ROA not before: Sat 01 Jan 2022 10:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 141.98.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52883070 (0x326ee7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc7840920d1c709ff299aed3682c23fb432767d
Validity
Not Before: Jan 1 10:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=669b38f9dccc2c391fc7a645dd25d37d18e396fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:65:d7:08:e1:ea:c3:54:3a:fc:2d:ca:bf:45:
d1:8e:c3:04:66:07:2f:f0:89:e9:e0:9a:6f:13:80:
52:ee:b5:54:9c:31:fc:c8:72:20:65:13:92:87:cc:
aa:23:26:7b:67:28:19:21:10:8b:13:d0:8c:73:5a:
5b:e7:d3:13:5f:13:db:49:e5:a3:24:89:31:f1:36:
df:3f:b6:65:56:c6:b4:a9:fd:b7:cc:1e:99:ba:2a:
56:3f:08:fc:21:90:89:0f:2c:2f:8c:5f:53:2f:ff:
7b:2a:65:b9:71:89:76:78:96:53:d6:92:49:0a:5f:
8f:8c:bf:65:9c:86:c8:58:76:0c:f6:5c:49:bd:4d:
fa:a6:85:43:f8:b4:2d:b2:99:22:f4:7c:d2:2f:57:
fa:87:1c:40:68:3f:9d:71:79:49:3b:92:ce:97:91:
92:1a:25:d4:82:87:4e:06:50:55:39:2d:43:3d:fc:
1c:28:be:f2:ad:cf:f6:3a:21:98:75:82:86:bd:a0:
fb:53:25:ec:d8:8a:36:d1:c7:71:dd:70:b8:b3:a8:
4d:bf:5c:69:88:2b:67:15:37:c9:3c:10:1c:36:70:
69:ff:22:92:77:b9:6c:2e:d8:eb:99:5b:56:a5:23:
0a:58:b4:07:4f:da:97:14:5f:23:65:86:f6:62:0c:
98:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:9B:38:F9:DC:CC:2C:39:1F:C7:A6:45:DD:25:D3:7D:18:E3:96:FA
X509v3 Authority Key Identifier:
keyid:DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Zps4-dzMLDkfx6ZF3SXTfRjjlvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:4d:9a:cd:db:1b:0f:b9:cb:09:c3:0f:69:84:50:85:98:1a:
14:5d:26:47:7c:b4:c3:ab:2c:14:cd:d6:62:f9:7d:a0:14:f3:
4b:8f:23:2a:db:d3:91:2a:fc:dc:d4:d1:d4:3f:3b:fb:76:a9:
81:f3:98:ef:7f:d3:1d:7f:59:02:d8:ff:0f:32:c6:14:ed:ee:
cf:cd:f9:58:93:76:af:43:27:a5:e2:12:67:3b:7f:4b:db:f7:
8f:b0:0a:58:d8:41:18:1b:06:1b:29:00:ef:22:f2:47:cd:dc:
fe:bf:90:38:bf:9d:cf:70:6c:65:e8:7a:8e:8d:04:62:68:f8:
1e:40:70:9a:67:ec:0a:c3:af:24:58:5c:e7:33:d8:e2:3a:a0:
1b:8f:ef:c1:e0:92:a5:e2:39:95:aa:6f:9c:fa:48:7c:bd:69:
59:42:2e:a9:dd:ed:b4:56:c3:82:e9:8e:48:01:6e:24:69:4a:
f2:5c:4d:76:19:c6:4b:99:f7:79:ed:a9:c4:75:80:db:c6:d3:
72:e1:27:dd:95:99:90:aa:0b:b5:6f:89:09:6c:03:f0:2d:0a:
5c:b5:7c:4c:4e:4d:36:6c:d1:1d:ca:cc:75:5c:3f:67:a7:1e:
58:dc:a0:1f:0a:d4:17:8c:5f:76:d1:d3:01:59:ae:c6:79:76:
cd:e1:76:bb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAybufjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YmM3ODQwOTIwZDFjNzA5ZmYyOTlhZWQzNjgyYzIzZmI0MzI3NjdkMB4XDTIyMDEw
MTEwNTQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjY5YjM4ZjlkY2Nj
MmMzOTFmYzdhNjQ1ZGQyNWQzN2QxOGUzOTZmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBl1wjh6sNUOvwtyr9F0Y7DBGYHL/CJ6eCabxOAUu61VJwx
/MhyIGUTkofMqiMme2coGSEQixPQjHNaW+fTE18T20nloySJMfE23z+2ZVbGtKn9
t8wemboqVj8I/CGQiQ8sL4xfUy//eypluXGJdniWU9aSSQpfj4y/ZZyGyFh2DPZc
Sb1N+qaFQ/i0LbKZIvR80i9X+occQGg/nXF5STuSzpeRkhol1IKHTgZQVTktQz38
HCi+8q3P9johmHWChr2g+1Ml7NiKNtHHcd1wuLOoTb9caYgrZxU3yTwQHDZwaf8i
kne5bC7Y65lbVqUjCli0B0/alxRfI2WG9mIMmA0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRmmzj53MwsOR/HpkXdJdN9GOOW+jAfBgNVHSMEGDAWgBTbx4QJINHHCf8p
mu02gsI/tDJ2fTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzI4ZUVDU0RSeHduX0tacnROb0xDUDdReWRuMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTQvOTUyMWUxLTc2MTAtNGQ0My04NjgzLTUxYmUyZjk2MDhiYy8x
L1pwczQtZHpNTERrZng2WkYzU1hUZlJqamx2by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQv
OTUyMWUxLTc2MTAtNGQ0My04NjgzLTUxYmUyZjk2MDhiYy8xLzI4ZUVDU0RSeHdu
X0tacnROb0xDUDdReWRuMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI1iUDANBgkqhkiG9w0BAQsFAAOC
AQEAHU2azdsbD7nLCcMPaYRQhZgaFF0mR3y0w6ssFM3WYvl9oBTzS48jKtvTkSr8
3NTR1D87+3apgfOY73/THX9ZAtj/DzLGFO3uz835WJN2r0MnpeISZzt/S9v3j7AK
WNhBGBsGGykA7yLyR83c/r+QOL+dz3BsZeh6jo0EYmj4HkBwmmfsCsOvJFhc5zPY
4jqgG4/vweCSpeI5lapvnPpIfL1pWUIuqd3ttFbDgumOSAFuJGlK8lxNdhnGS5n3
ee2pxHWA28bTcuEn3ZWZkKoLtW+JCWwD8C0KXLV8TE5NNmzRHcrMdVw/Z6ceWNyg
HwrUF4xfdtHTAVmuxnl2zeF2uw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:03 2024 by rpki-client on console-fra.rpki-client.org