Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z7bIGM4oXNfufyTMWaXVAr5K4Go.roa
File: Z7bIGM4oXNfufyTMWaXVAr5K4Go.roa (raw, json)
Hash identifier: LAL/UYuz10pB1rCl9DJVe3DrgVSllYzpINKNvJu/AGA=
Subject key identifier: 67:B6:C8:18:CE:28:5C:D7:EE:7F:24:CC:59:A5:D5:02:BE:4A:E0:6A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A3BFFA
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z7bIGM4oXNfufyTMWaXVAr5K4Go.roa
Signing time: Sat 01 Jan 2022 06:05:03 +0000
ROA not before: Sat 01 Jan 2022 06:05:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39407
IP address blocks: 87.103.232.0/24 maxlen: 24
87.103.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118027770 (0x42a3bffa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67b6c818ce285cd7ee7f24cc59a5d502be4ae06a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d8:82:c6:17:0a:ac:ec:c2:91:7d:d9:6c:4e:
89:af:e6:90:60:59:0c:f5:26:b0:f6:f7:4d:de:4e:
8e:14:03:dc:a0:85:48:26:47:24:5e:0b:65:ce:65:
9d:db:ed:64:bf:87:39:65:a3:fa:cd:77:4c:37:f1:
72:15:81:34:64:c3:f0:94:c5:d0:e3:74:e8:35:a8:
df:2b:cf:bf:10:43:83:f4:5e:a1:d0:73:11:c5:47:
a3:c1:47:ea:d8:11:17:70:6e:f3:59:68:e6:12:16:
e2:78:ff:5a:e5:2a:8f:cd:53:32:14:34:ea:28:03:
c0:03:50:5c:2e:f1:b1:ef:01:d8:86:a3:94:df:e3:
ef:82:0a:96:de:c3:51:fa:2f:22:7e:4e:52:db:09:
8f:40:4c:1b:03:ca:61:da:0e:15:71:eb:7e:e8:bb:
19:17:58:28:37:c2:74:ab:c8:0c:14:2d:7c:73:d3:
9a:c7:7d:f2:03:c8:cf:b1:bc:7c:a0:c1:2c:79:65:
da:27:98:e9:a2:69:09:a9:21:0f:6e:38:31:f8:bb:
05:dc:44:61:ce:12:41:d6:4f:67:00:d8:e7:67:1d:
33:1f:b5:34:20:49:d4:c8:e8:ff:04:a3:e4:5e:fd:
f2:a9:5e:db:a1:3e:40:77:8b:08:74:4f:ac:02:d9:
52:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B6:C8:18:CE:28:5C:D7:EE:7F:24:CC:59:A5:D5:02:BE:4A:E0:6A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z7bIGM4oXNfufyTMWaXVAr5K4Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.103.232.0/24
87.103.234.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cc:c1:3f:b4:af:bd:6f:85:03:da:fe:94:dd:d9:29:e1:e7:
b7:28:6d:74:b0:5c:28:42:07:dd:58:1a:9b:3b:bb:c4:c6:27:
5c:be:e0:53:a1:73:bb:8b:3b:88:7e:d8:07:4c:2c:71:20:f3:
b2:18:25:9d:74:0e:ba:e1:21:05:6c:73:83:11:2c:5a:8a:9e:
45:b1:f9:ec:b5:0a:4a:6e:3f:e4:95:01:0c:13:9f:93:67:6c:
66:6e:de:cd:b5:06:ae:f1:57:e0:ce:49:28:e0:b7:ba:91:67:
4a:6c:51:92:02:aa:af:1c:5a:ee:f6:e8:0e:bf:86:35:ae:48:
d9:e1:07:94:9d:b3:15:0f:0b:d8:79:92:8c:5b:d9:65:b0:89:
1c:78:aa:b8:42:64:d2:6f:49:83:8d:8c:e5:41:7e:91:6a:d0:
c1:76:85:57:69:55:4a:e8:ec:6e:d3:a6:12:03:fc:4f:b0:99:
ca:c2:79:ae:34:7d:ab:df:d3:21:c5:b5:5d:b4:32:01:22:49:
58:da:37:ab:40:94:48:17:8a:4b:95:f2:4d:e7:4a:eb:9b:6f:
b0:18:af:1f:7f:85:c3:37:84:1d:5c:4b:d7:12:7a:46:a3:92:
5e:da:a2:f9:3d:47:85:b5:39:5b:b8:85:06:c7:a4:68:a4:b0:
68:50:37:94
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEQqO/+jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZWU1MzFiOWFjMjk5MGQ2OWE4YTVjMzAyM2U3MmU2ZDg0MWU2YzA5MB4XDTIyMDEw
MTA2MDUwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjdiNmM4MThjZTI4
NWNkN2VlN2YyNGNjNTlhNWQ1MDJiZTRhZTA2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALrYgsYXCqzswpF92WxOia/mkGBZDPUmsPb3Td5OjhQD3KCF
SCZHJF4LZc5lndvtZL+HOWWj+s13TDfxchWBNGTD8JTF0ON06DWo3yvPvxBDg/Re
odBzEcVHo8FH6tgRF3Bu81lo5hIW4nj/WuUqj81TMhQ06igDwANQXC7xse8B2Iaj
lN/j74IKlt7DUfovIn5OUtsJj0BMGwPKYdoOFXHrfui7GRdYKDfCdKvIDBQtfHPT
msd98gPIz7G8fKDBLHll2ieY6aJpCakhD244Mfi7BdxEYc4SQdZPZwDY52cdMx+1
NCBJ1Mjo/wSj5F798qle26E+QHeLCHRPrALZUjsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRntsgYzihc1+5/JMxZpdUCvkrgajAfBgNVHSMEGDAWgBRe5TG5rCmQ1pqK
XDAj5y5thB5sCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h1VXh1YXdwa05hYWlsd3dJLWN1YllRZWJBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8x
L1o3YklHTTRvWE5mdWZ5VE1XYVhWQXI1SzRHby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8xL1h1VXh1YXdwa05h
YWlsd3dJLWN1YllRZWJBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFdn6AMEAFdn6jANBgkqhkiG9w0B
AQsFAAOCAQEAR8zBP7SvvW+FA9r+lN3ZKeHntyhtdLBcKEIH3Vgamzu7xMYnXL7g
U6Fzu4s7iH7YB0wscSDzshglnXQOuuEhBWxzgxEsWoqeRbH57LUKSm4/5JUBDBOf
k2dsZm7ezbUGrvFX4M5JKOC3upFnSmxRkgKqrxxa7vboDr+GNa5I2eEHlJ2zFQ8L
2HmSjFvZZbCJHHiquEJk0m9Jg42M5UF+kWrQwXaFV2lVSujsbtOmEgP8T7CZysJ5
rjR9q9/TIcW1XbQyASJJWNo3q0CUSBeKS5XyTedK65tvsBivH3+FwzeEHVxL1xJ6
RqOSXtqi+T1HhbU5W7iFBsekaKSwaFA3lA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org