Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SjZze_2kXzvstw_o5TNwvGnZLlE.roa
File: SjZze_2kXzvstw_o5TNwvGnZLlE.roa (raw, json)
Hash identifier: hCLiO5aLIIH1MzrVztw0DHhKxKbxwb5Xd60Q3xsPM2M=
Subject key identifier: 4A:36:73:7B:FD:A4:5F:3B:EC:B7:0F:E8:E5:33:70:BC:69:D9:2E:51
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0184C7C275E76832981B4BC89B479A4CF1F4
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SjZze_2kXzvstw_o5TNwvGnZLlE.roa
Signing time: Wed 30 Nov 2022 08:58:40 +0000
ROA not before: Wed 30 Nov 2022 08:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52073
IP address blocks: 185.143.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:c2:75:e7:68:32:98:1b:4b:c8:9b:47:9a:4c:f1:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Nov 30 08:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a36737bfda45f3becb70fe8e53370bc69d92e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d0:c2:cb:82:24:16:f7:8a:57:b0:2e:14:5a:
5c:17:81:c2:f7:10:2a:54:58:dd:f1:b1:70:92:1f:
8f:1a:05:6b:29:9a:95:18:e8:76:3c:1f:4d:6e:a4:
6a:75:31:e8:10:3e:9d:fa:f6:54:18:66:01:7f:d9:
95:9f:3c:5f:21:8a:e7:e0:73:76:1a:96:bb:c5:b6:
5a:48:36:f7:a0:70:bc:f9:22:e7:cc:84:80:2d:8d:
3d:3a:21:29:4b:f7:46:3d:71:b8:c6:44:fe:75:6e:
7f:f8:4d:16:ae:75:8e:64:21:0c:53:96:e2:ca:23:
91:7d:47:20:61:d8:0d:f9:05:15:bc:93:fb:79:c0:
b5:1b:0c:87:d2:21:5b:9d:16:b7:ff:24:56:50:e6:
5d:38:a6:5e:42:6d:3e:f9:01:39:82:59:87:2a:76:
38:16:f7:e0:e0:c2:7a:c7:a9:a5:2d:43:65:78:41:
17:3d:0f:bb:69:55:2e:70:0a:cb:7b:f9:71:3b:ae:
5f:91:e3:f4:3f:d6:58:78:09:20:cf:0d:00:dd:bd:
63:a9:29:44:1f:e6:8b:bc:99:b5:05:29:76:13:7b:
41:3b:00:c7:63:5f:9e:30:31:b9:21:f2:4c:61:e2:
d8:da:94:fa:99:db:24:f7:15:00:6f:49:f2:3f:54:
53:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:36:73:7B:FD:A4:5F:3B:EC:B7:0F:E8:E5:33:70:BC:69:D9:2E:51
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SjZze_2kXzvstw_o5TNwvGnZLlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.241.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9d:c8:6d:f8:13:ec:85:86:76:77:d0:10:a8:01:70:5b:63:
3f:2c:0a:71:85:3f:f9:42:52:94:15:a0:ee:80:4c:14:a1:ee:
d7:61:f0:78:b5:77:ca:51:7d:ac:84:01:37:bb:c1:51:0a:7f:
b4:e9:99:0b:3f:c1:88:da:b0:61:9a:6a:69:29:0c:9c:04:06:
1c:54:21:27:1b:b4:bc:dc:19:1c:9d:ec:dd:35:49:4d:e8:17:
41:db:30:61:26:3e:f2:a8:7b:04:0b:ff:91:25:81:14:30:53:
f3:27:fc:59:4b:84:28:66:b2:b8:dd:bc:d4:28:d9:51:35:95:
f4:33:75:3c:7b:1d:3d:d6:8c:ee:e4:af:c1:80:98:7d:fd:27:
08:e7:38:25:51:19:94:ea:13:f3:e9:37:da:56:e6:b7:fe:57:
84:85:d5:41:2c:99:f9:98:db:e8:2b:c6:61:ac:7b:01:ab:bb:
12:71:46:6d:6b:c1:4e:69:4d:f4:90:0b:4b:f0:5d:d3:91:7f:
66:f2:04:49:4c:2f:c1:15:d6:dc:a4:90:4e:46:36:77:5b:cf:
7e:5d:4f:65:fc:1d:dd:4e:fd:60:cd:e1:5d:a3:7c:ff:61:a1:
a4:1d:fa:b7:21:b0:16:a7:1a:00:47:a6:8d:5b:33:72:c0:6c:
25:7a:50:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTHwnXnaDKYG0vIm0eaTPH0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm
MTZhOWYwHhcNMjIxMTMwMDg1ODQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTM2NzM3YmZkYTQ1ZjNiZWNiNzBmZThlNTMzNzBiYzY5ZDkyZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtDCy4IkFveKV7AuFFpcF4HC9xAq
VFjd8bFwkh+PGgVrKZqVGOh2PB9NbqRqdTHoED6d+vZUGGYBf9mVnzxfIYrn4HN2
Gpa7xbZaSDb3oHC8+SLnzISALY09OiEpS/dGPXG4xkT+dW5/+E0WrnWOZCEMU5bi
yiORfUcgYdgN+QUVvJP7ecC1GwyH0iFbnRa3/yRWUOZdOKZeQm0++QE5glmHKnY4
Fvfg4MJ6x6mlLUNleEEXPQ+7aVUucArLe/lxO65fkeP0P9ZYeAkgzw0A3b1jqSlE
H+aLvJm1BSl2E3tBOwDHY1+eMDG5IfJMYeLY2pT6mdsk9xUAb0nyP1RTGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEo2c3v9pF877LcP6OUzcLxp2S5RMB8GA1UdIwQY
MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt
ODZhNTUxOGUyZDUyLzEvU2paemVfMmtYenZzdHdfbzVUTnd2R25aTGxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy
LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY/xMA0G
CSqGSIb3DQEBCwUAA4IBAQAoncht+BPshYZ2d9AQqAFwW2M/LApxhT/5QlKUFaDu
gEwUoe7XYfB4tXfKUX2shAE3u8FRCn+06ZkLP8GI2rBhmmppKQycBAYcVCEnG7S8
3BkcnezdNUlN6BdB2zBhJj7yqHsEC/+RJYEUMFPzJ/xZS4QoZrK43bzUKNlRNZX0
M3U8ex091ozu5K/BgJh9/ScI5zglURmU6hPz6TfaVua3/leEhdVBLJn5mNvoK8Zh
rHsBq7sScUZta8FOaU30kAtL8F3TkX9m8gRJTC/BFdbcpJBORjZ3W89+XU9l/B3d
Tv1gzeFdo3z/YaGkHfq3IbAWpxoAR6aNWzNywGwlelC9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:29 2024 by rpki-client on console-ams.rpki-client.org