Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZrG5r_EoNM7loTUJk2h0TYqx0bs.roa
File: ZrG5r_EoNM7loTUJk2h0TYqx0bs.roa (raw, json)
Hash identifier: RFSmXyfOUKj7zPCcrJeJIpeWH2hU29r4eEd+HiHmesY=
Subject key identifier: 66:B1:B9:AF:F1:28:34:CE:E5:A1:35:09:93:68:74:4D:8A:B1:D1:BB
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01845D64E4A7270C7943325CE883D079980E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZrG5r_EoNM7loTUJk2h0TYqx0bs.roa
Signing time: Wed 09 Nov 2022 17:16:43 +0000
ROA not before: Wed 09 Nov 2022 17:16:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 62.76.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:64:e4:a7:27:0c:79:43:32:5c:e8:83:d0:79:98:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 9 17:16:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66b1b9aff12834cee5a135099368744d8ab1d1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:01:9e:4a:18:93:be:36:ad:c3:96:dd:9b:ad:
0a:c9:f1:3c:55:49:cf:57:0b:1d:95:6b:c0:f0:6d:
65:ed:de:b8:de:ea:8e:0c:2b:a2:21:8c:2d:23:2f:
23:2a:55:6d:b6:37:54:53:89:6b:25:ea:06:7b:80:
5e:15:ad:05:ff:52:a7:05:f3:1f:be:54:d7:8a:94:
e7:7e:90:f3:5b:3c:d3:d6:b7:fe:55:05:b5:1d:ff:
97:0a:de:6f:f3:d1:7a:4c:81:c0:5c:df:44:cd:d4:
d1:f2:6e:9f:35:57:1d:eb:2f:58:8e:54:6e:03:ed:
c0:0c:0b:40:62:6c:9d:2e:c3:a0:a0:be:76:86:f1:
5c:b8:96:63:87:af:24:37:54:b1:c2:c9:7e:a7:ac:
0d:2d:00:1f:ac:90:87:50:33:ea:e2:28:be:eb:7a:
f4:62:40:37:92:d5:cd:82:fa:56:bf:df:47:75:91:
38:68:d7:32:63:cd:f7:22:2d:eb:35:54:a4:c2:d7:
6b:a8:4c:ff:23:74:4a:bc:28:9d:3c:cf:af:89:8e:
57:e1:e8:7f:2d:d9:cd:2b:6c:00:f7:f5:88:41:96:
3c:87:40:d7:da:1b:d6:f2:45:72:18:5d:7b:53:5b:
ac:3d:a4:62:2d:d7:27:37:16:c4:46:51:ff:23:f7:
64:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B1:B9:AF:F1:28:34:CE:E5:A1:35:09:93:68:74:4D:8A:B1:D1:BB
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ZrG5r_EoNM7loTUJk2h0TYqx0bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.141.0/24
Signature Algorithm: sha256WithRSAEncryption
17:1d:61:f6:d9:13:13:ab:30:be:b7:d0:f6:71:e8:c3:67:77:
c2:a0:60:6c:f1:66:f1:49:eb:a3:fb:fa:2b:64:61:42:66:3d:
63:a8:8e:8e:44:00:40:7f:51:0c:4a:08:52:d9:8f:58:81:8f:
24:32:ef:29:80:38:bf:33:e4:80:c0:ef:3c:e4:66:ff:a7:58:
28:5a:c7:b2:4d:f4:a7:76:07:89:40:e6:36:81:12:d2:76:bc:
10:ae:3c:b8:b1:8d:ed:bb:e8:d7:23:0a:ee:3d:25:ff:e5:93:
3d:07:fa:4f:cf:37:f9:8d:ec:5f:2d:d8:16:d9:73:bc:da:38:
d1:f5:a4:fe:43:7f:c5:fd:a5:ee:49:5d:c3:86:ed:1b:71:35:
21:72:30:cd:59:ca:92:44:63:7e:ae:e7:76:a1:94:8a:2a:01:
5a:d2:33:6f:b9:46:89:0b:80:b9:90:b0:43:63:ec:ec:4b:b0:
b3:e2:34:3f:2e:cc:5f:6d:cb:5e:4a:01:fc:20:8f:d9:1f:81:
95:19:79:27:b8:ac:a3:c4:ee:0c:1d:3f:11:d7:46:d8:24:55:
6f:18:19:9c:1f:b5:a0:51:fb:db:4a:dc:02:a0:ef:76:e9:7e:
9a:59:78:4a:b1:63:a4:94:99:f5:a5:31:bf:ab:90:86:b2:72:
4a:42:f3:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRdZOSnJwx5QzJc6IPQeZgOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjIxMTA5MTcxNjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmIxYjlhZmYxMjgzNGNlZTVhMTM1MDk5MzY4NzQ0ZDhhYjFkMWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAggGeShiTvjatw5bdm60KyfE8VUnP
VwsdlWvA8G1l7d643uqODCuiIYwtIy8jKlVttjdUU4lrJeoGe4BeFa0F/1KnBfMf
vlTXipTnfpDzWzzT1rf+VQW1Hf+XCt5v89F6TIHAXN9EzdTR8m6fNVcd6y9YjlRu
A+3ADAtAYmydLsOgoL52hvFcuJZjh68kN1Sxwsl+p6wNLQAfrJCHUDPq4ii+63r0
YkA3ktXNgvpWv99HdZE4aNcyY833Ii3rNVSkwtdrqEz/I3RKvCidPM+viY5X4eh/
LdnNK2wA9/WIQZY8h0DX2hvW8kVyGF17U1usPaRiLdcnNxbERlH/I/dknQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGaxua/xKDTO5aE1CZNodE2KsdG7MB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvWnJHNXJfRW9OTTdsb1RVSmsyaDBUWXF4MGJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkyNMA0G
CSqGSIb3DQEBCwUAA4IBAQAXHWH22RMTqzC+t9D2cejDZ3fCoGBs8WbxSeuj+/or
ZGFCZj1jqI6ORABAf1EMSghS2Y9YgY8kMu8pgDi/M+SAwO885Gb/p1goWseyTfSn
dgeJQOY2gRLSdrwQrjy4sY3tu+jXIwruPSX/5ZM9B/pPzzf5jexfLdgW2XO82jjR
9aT+Q3/F/aXuSV3Dhu0bcTUhcjDNWcqSRGN+rud2oZSKKgFa0jNvuUaJC4C5kLBD
Y+zsS7Cz4jQ/LsxfbcteSgH8II/ZH4GVGXknuKyjxO4MHT8R10bYJFVvGBmcH7Wg
UfvbStwCoO926X6aWXhKsWOklJn1pTG/q5CGsnJKQvMY
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org