Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/acec3d-775e-4d0e-8433-fc3d5c2230b2/1/0Zf0msKdH_ryQYyYyooPv2MFZ8Q.roa
File: 0Zf0msKdH_ryQYyYyooPv2MFZ8Q.roa (raw, json)
Hash identifier: tyny4MRjFFjoWTDcFhbQsemON7bBvNhsf4ERUPWVcsk=
Subject key identifier: D1:97:F4:9A:C2:9D:1F:FA:F2:41:8C:98:CA:8A:0F:BF:63:05:67:C4
Certificate issuer: /CN=d271ea06b1a756cbf46ae046484bbd3e4fce4ca5
Certificate serial: 1030F078
Authority key identifier: D2:71:EA:06:B1:A7:56:CB:F4:6A:E0:46:48:4B:BD:3E:4F:CE:4C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHqBrGnVsv0auBGSEu9Pk_OTKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/acec3d-775e-4d0e-8433-fc3d5c2230b2/1/0Zf0msKdH_ryQYyYyooPv2MFZ8Q.roa
Signing time: Sat 01 Jan 2022 03:53:29 +0000
ROA not before: Sat 01 Jan 2022 03:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49944
IP address blocks: 78.153.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271642744 (0x1030f078)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271ea06b1a756cbf46ae046484bbd3e4fce4ca5
Validity
Not Before: Jan 1 03:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d197f49ac29d1ffaf2418c98ca8a0fbf630567c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c5:29:3c:72:fb:24:2d:df:f8:cc:cc:c1:e6:
a4:6d:ac:21:00:23:6f:bc:7a:c5:59:e6:94:34:6e:
1b:6c:6c:7b:b0:7d:04:51:fd:20:4f:3a:09:9f:a3:
70:22:76:84:c0:9d:33:1f:c6:cb:fc:2a:8f:b7:94:
04:a2:8b:5b:db:a0:24:30:0e:1b:c2:6c:6e:09:b8:
3a:78:a3:7f:57:81:c7:cc:a3:f0:a3:e8:64:aa:f9:
d5:7f:1a:d6:57:69:b6:01:c4:5b:5f:e7:f1:9b:aa:
55:4f:d8:ff:56:38:c2:6a:2c:fc:31:80:41:c5:f2:
41:e0:bf:02:1c:9c:07:43:2a:64:3e:69:06:0c:26:
40:7d:ea:9c:cd:33:c1:45:6b:c5:47:6a:16:6d:1b:
06:14:0e:ae:c9:b1:e3:23:5b:c1:2c:77:6e:2c:45:
bf:ce:cf:45:ea:f7:92:d2:7b:1d:3c:43:fe:51:ae:
f5:b9:75:e3:56:a2:52:28:d1:22:e7:d7:33:5c:4b:
0f:ab:e2:fd:19:e5:3d:c7:f8:66:cd:ce:d3:1b:cd:
cd:7e:11:85:bf:30:da:57:32:65:cf:b3:ae:2f:e3:
ac:b5:24:e4:83:af:c9:69:b4:cf:f4:94:7d:8d:1c:
91:a0:3e:b5:93:2e:ed:39:39:16:30:af:87:46:2a:
f7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:97:F4:9A:C2:9D:1F:FA:F2:41:8C:98:CA:8A:0F:BF:63:05:67:C4
X509v3 Authority Key Identifier:
keyid:D2:71:EA:06:B1:A7:56:CB:F4:6A:E0:46:48:4B:BD:3E:4F:CE:4C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHqBrGnVsv0auBGSEu9Pk_OTKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/acec3d-775e-4d0e-8433-fc3d5c2230b2/1/0Zf0msKdH_ryQYyYyooPv2MFZ8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/acec3d-775e-4d0e-8433-fc3d5c2230b2/1/0nHqBrGnVsv0auBGSEu9Pk_OTKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.153.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:e6:dd:00:af:f5:70:e0:79:e4:87:f0:ff:48:67:be:ff:ba:
66:4a:21:ff:20:28:07:52:c4:17:10:d1:39:82:1e:99:98:ae:
69:d8:88:1f:9f:f8:90:e8:10:4d:0d:a6:8b:c6:c9:07:de:38:
eb:64:1f:80:21:89:33:81:a9:82:54:19:79:29:e4:8e:cc:80:
e7:1f:07:b1:31:3e:55:ae:34:1d:3e:ea:7a:32:a4:33:52:33:
67:f6:e4:93:51:ee:fc:7c:b3:ca:d7:47:1d:33:5c:ab:52:ec:
52:62:87:2e:6a:68:ae:7f:f5:9e:fe:fb:87:39:4c:0d:7f:b8:
33:08:b9:88:b5:85:32:3d:5c:8d:86:01:76:4d:05:4c:13:3a:
31:e3:4c:51:f7:22:45:2b:2b:fb:f6:dc:20:6e:f8:35:8f:38:
0d:cc:9d:5f:db:cd:2d:9f:21:c1:64:73:b0:1a:26:a6:73:58:
a6:b6:3f:98:80:6e:c3:d6:f0:36:e9:41:8a:28:01:4d:9d:4f:
06:7f:54:67:e8:11:0a:c9:0c:82:a5:92:3d:01:40:53:80:93:
b0:34:49:d2:58:ea:fe:a9:1c:a9:08:d9:9a:cf:29:95:99:df:
0a:77:a8:32:af:fe:ee:3b:f7:a1:09:7c:0d:88:be:3b:17:08:
20:67:45:90
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEDDweDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MjcxZWEwNmIxYTc1NmNiZjQ2YWUwNDY0ODRiYmQzZTRmY2U0Y2E1MB4XDTIyMDEw
MTAzNTMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDE5N2Y0OWFjMjlk
MWZmYWYyNDE4Yzk4Y2E4YTBmYmY2MzA1NjdjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKLFKTxy+yQt3/jMzMHmpG2sIQAjb7x6xVnmlDRuG2xse7B9
BFH9IE86CZ+jcCJ2hMCdMx/Gy/wqj7eUBKKLW9ugJDAOG8Jsbgm4Onijf1eBx8yj
8KPoZKr51X8a1ldptgHEW1/n8ZuqVU/Y/1Y4wmos/DGAQcXyQeC/AhycB0MqZD5p
BgwmQH3qnM0zwUVrxUdqFm0bBhQOrsmx4yNbwSx3bixFv87PRer3ktJ7HTxD/lGu
9bl141aiUijRIufXM1xLD6vi/RnlPcf4Zs3O0xvNzX4Rhb8w2lcyZc+zri/jrLUk
5IOvyWm0z/SUfY0ckaA+tZMu7Tk5FjCvh0Yq9w0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTRl/Sawp0f+vJBjJjKig+/YwVnxDAfBgNVHSMEGDAWgBTSceoGsadWy/Rq
4EZIS70+T85MpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBuSHFCckduVnN2MGF1QkdTRXU5UGtfT1RLVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWEvYWNlYzNkLTc3NWUtNGQwZS04NDMzLWZjM2Q1YzIyMzBiMi8x
LzBaZjBtc0tkSF9yeVFZeVl5b29QdjJNRlo4US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEv
YWNlYzNkLTc3NWUtNGQwZS04NDMzLWZjM2Q1YzIyMzBiMi8xLzBuSHFCckduVnN2
MGF1QkdTRXU5UGtfT1RLVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBU6ZYDANBgkqhkiG9w0BAQsFAAOC
AQEAnObdAK/1cOB55Ifw/0hnvv+6Zkoh/yAoB1LEFxDROYIemZiuadiIH5/4kOgQ
TQ2mi8bJB94462QfgCGJM4GpglQZeSnkjsyA5x8HsTE+Va40HT7qejKkM1IzZ/bk
k1Hu/HyzytdHHTNcq1LsUmKHLmporn/1nv77hzlMDX+4Mwi5iLWFMj1cjYYBdk0F
TBM6MeNMUfciRSsr+/bcIG74NY84DcydX9vNLZ8hwWRzsBompnNYprY/mIBuw9bw
NulBiigBTZ1PBn9UZ+gRCskMgqWSPQFAU4CTsDRJ0ljq/qkcqQjZms8plZnfCneo
Mq/+7jv3oQl8DYi+OxcIIGdFkA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:22 2024 by rpki-client on console-fra.rpki-client.org