Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/970cf0-9298-4ff0-baf5-210ae0569a45/1/ZHeouH9zGKDmOcm6W1QguVTS-9M.roa
File: ZHeouH9zGKDmOcm6W1QguVTS-9M.roa (raw, json)
Hash identifier: rBG1Hfk1Rn0le0Pc66C06FjiHPhexv+WHjUcISygZbU=
Subject key identifier: 64:77:A8:B8:7F:73:18:A0:E6:39:C9:BA:5B:54:20:B9:54:D2:FB:D3
Certificate issuer: /CN=f83faec93d403f3713823fa39c7d27c62e921471
Certificate serial: 06B999B4
Authority key identifier: F8:3F:AE:C9:3D:40:3F:37:13:82:3F:A3:9C:7D:27:C6:2E:92:14:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-D-uyT1APzcTgj-jnH0nxi6SFHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/970cf0-9298-4ff0-baf5-210ae0569a45/1/ZHeouH9zGKDmOcm6W1QguVTS-9M.roa
Signing time: Sat 01 Jan 2022 08:04:34 +0000
ROA not before: Sat 01 Jan 2022 08:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206468
IP address blocks: 185.174.171.0/24 maxlen: 24
2a0b:a907::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112826804 (0x6b999b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f83faec93d403f3713823fa39c7d27c62e921471
Validity
Not Before: Jan 1 08:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6477a8b87f7318a0e639c9ba5b5420b954d2fbd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b8:02:c0:1b:d7:a6:f6:0d:b3:bc:c1:84:32:
3b:a8:73:86:4e:47:cf:df:1f:5e:a9:bf:90:0a:a3:
0c:18:1c:69:b2:21:95:17:b2:f6:fd:6d:f5:51:b2:
01:92:0e:25:2d:88:c8:4d:73:50:23:01:d1:d0:88:
c5:72:72:8c:79:47:e7:17:b9:6e:3c:0f:f1:b3:a4:
37:bc:85:0c:2c:fd:2e:d4:09:1b:5d:58:78:31:59:
50:af:b0:23:f9:63:9c:9f:83:61:c2:ee:78:4f:04:
1b:bf:9b:7e:2e:c8:d6:76:88:28:58:b9:5e:f9:2e:
d4:62:5d:49:e8:8b:60:cc:d8:b1:76:43:bc:0e:4c:
6d:9e:06:c0:f6:90:4c:b1:65:2f:50:9e:7e:5b:7d:
56:fd:30:fa:ad:6a:9e:4a:5d:af:4b:ea:9b:d4:7a:
47:61:ed:b2:4c:f4:20:a3:bc:97:7d:c5:5a:31:89:
44:35:45:4f:fc:2b:05:d1:b5:b2:cd:ea:ae:8e:c2:
db:5a:b3:96:e6:99:bb:8f:20:99:a6:a4:0f:c9:79:
25:97:f9:4d:3a:10:5d:54:2a:af:1d:b4:8c:39:49:
55:8f:0b:e4:c7:f2:f2:2f:3e:27:b8:bd:32:4e:cf:
a9:ff:d5:31:c5:59:08:ea:07:f1:de:c6:e1:ae:9b:
36:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:77:A8:B8:7F:73:18:A0:E6:39:C9:BA:5B:54:20:B9:54:D2:FB:D3
X509v3 Authority Key Identifier:
keyid:F8:3F:AE:C9:3D:40:3F:37:13:82:3F:A3:9C:7D:27:C6:2E:92:14:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-D-uyT1APzcTgj-jnH0nxi6SFHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/970cf0-9298-4ff0-baf5-210ae0569a45/1/ZHeouH9zGKDmOcm6W1QguVTS-9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/970cf0-9298-4ff0-baf5-210ae0569a45/1/1-D-uyT1APzcTgj-jnH0nxi6SFHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.171.0/24
IPv6:
2a0b:a907::/32
Signature Algorithm: sha256WithRSAEncryption
15:94:77:4b:da:e5:d8:d3:fb:c3:b5:5b:41:bb:f7:73:55:99:
b7:d4:88:fb:1b:ea:b6:8b:37:ae:49:7e:cc:48:8f:14:1a:24:
00:97:64:f3:ff:f7:2b:0c:37:2d:98:80:56:62:93:e2:7e:80:
ad:3f:78:ff:9f:15:fe:23:3b:b1:de:c4:2d:96:3a:6a:8f:66:
1e:6b:44:09:aa:dd:32:41:bf:e3:3d:e1:88:84:ce:b5:74:e3:
e2:c6:98:d2:2e:14:b6:7c:3a:da:2b:a6:e2:60:d5:bd:49:b3:
d2:fe:17:db:a8:57:aa:00:6f:a4:43:86:a5:d2:c0:c6:cb:b9:
0f:5f:62:39:de:0c:39:0a:02:fc:ad:66:70:a5:a0:87:cf:c4:
c3:ab:ee:be:48:b0:8f:2a:fe:c3:50:87:50:8f:df:bc:3d:15:
c0:31:2c:71:b4:28:14:e0:8f:a8:68:01:82:5e:ad:d8:d4:56:
57:51:dc:48:21:f7:cf:11:21:24:84:16:c0:12:84:89:45:77:
19:04:bc:64:e7:82:e7:e4:59:c4:25:a6:90:39:74:ee:c3:ea:
7c:1a:96:b1:07:bb:2f:ed:38:a5:78:23:48:2c:89:15:18:20:
59:68:5b:f7:83:00:84:0e:41:a5:29:1b:4a:08:03:92:26:c4:
9a:81:fc:fb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBrmZtDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODNmYWVjOTNkNDAzZjM3MTM4MjNmYTM5YzdkMjdjNjJlOTIxNDcxMB4XDTIyMDEw
MTA4MDQzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjQ3N2E4Yjg3Zjcz
MThhMGU2MzljOWJhNWI1NDIwYjk1NGQyZmJkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMC4AsAb16b2DbO8wYQyO6hzhk5Hz98fXqm/kAqjDBgcabIh
lRey9v1t9VGyAZIOJS2IyE1zUCMB0dCIxXJyjHlH5xe5bjwP8bOkN7yFDCz9LtQJ
G11YeDFZUK+wI/ljnJ+DYcLueE8EG7+bfi7I1naIKFi5Xvku1GJdSeiLYMzYsXZD
vA5MbZ4GwPaQTLFlL1Ceflt9Vv0w+q1qnkpdr0vqm9R6R2Htskz0IKO8l33FWjGJ
RDVFT/wrBdG1ss3qro7C21qzluaZu48gmaakD8l5JZf5TToQXVQqrx20jDlJVY8L
5Mfy8i8+J7i9Mk7Pqf/VMcVZCOoH8d7G4a6bNh8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRkd6i4f3MYoOY5ybpbVCC5VNL70zAfBgNVHSMEGDAWgBT4P67JPUA/NxOC
P6OcfSfGLpIUcTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtRC11eVQxQVB6Y1Rnai1qbkgwbnhpNlNGSEUuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2I5Lzk3MGNmMC05Mjk4LTRmZjAtYmFmNS0yMTBhZTA1NjlhNDUv
MS9aSGVvdUg5ekdLRG1PY202VzFRZ3VWVFMtOU0ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5
Lzk3MGNmMC05Mjk4LTRmZjAtYmFmNS0yMTBhZTA1NjlhNDUvMS8xLUQtdXlUMUFQ
emNUZ2otam5IMG54aTZTRkhFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAua6rMA0EAgACMAcDBQAqC6kH
MA0GCSqGSIb3DQEBCwUAA4IBAQAVlHdL2uXY0/vDtVtBu/dzVZm31Ij7G+q2izeu
SX7MSI8UGiQAl2Tz//crDDctmIBWYpPifoCtP3j/nxX+Izux3sQtljpqj2Yea0QJ
qt0yQb/jPeGIhM61dOPixpjSLhS2fDraK6biYNW9SbPS/hfbqFeqAG+kQ4al0sDG
y7kPX2I53gw5CgL8rWZwpaCHz8TDq+6+SLCPKv7DUIdQj9+8PRXAMSxxtCgU4I+o
aAGCXq3Y1FZXUdxIIffPESEkhBbAEoSJRXcZBLxk54Ln5FnEJaaQOXTuw+p8Gpax
B7sv7TileCNILIkVGCBZaFv3gwCEDkGlKRtKCAOSJsSagfz7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:19 2024 by rpki-client on console-fra.rpki-client.org