Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/ZhPXNaTxeivnO5Na6RGRq4G9ke8.roa
File: ZhPXNaTxeivnO5Na6RGRq4G9ke8.roa (raw, json)
Hash identifier: ergBAWIw8BjQhUDALjs7DS98+hA/tES0bQ3H0Eb+CpQ=
Subject key identifier: 66:13:D7:35:A4:F1:7A:2B:E7:3B:93:5A:E9:11:91:AB:81:BD:91:EF
Certificate issuer: /CN=3ecd53c66424c3f369ca88ee7af76adb25e18451
Certificate serial: 012A740C
Authority key identifier: 3E:CD:53:C6:64:24:C3:F3:69:CA:88:EE:7A:F7:6A:DB:25:E1:84:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ps1TxmQkw_Npyojuevdq2yXhhFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/ZhPXNaTxeivnO5Na6RGRq4G9ke8.roa
Signing time: Sat 01 Jan 2022 05:59:35 +0000
ROA not before: Sat 01 Jan 2022 05:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59437
IP address blocks: 185.159.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19559436 (0x12a740c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ecd53c66424c3f369ca88ee7af76adb25e18451
Validity
Not Before: Jan 1 05:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6613d735a4f17a2be73b935ae91191ab81bd91ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d7:b8:87:97:63:07:6d:04:c8:7d:35:88:7e:
46:a8:da:80:e6:14:b0:ab:43:ac:9d:3b:2b:e1:5a:
eb:b9:b9:bb:ed:08:25:12:ba:16:7b:bb:9e:e5:f9:
1b:b9:b8:c1:c3:2d:db:36:39:63:74:f8:eb:42:23:
0b:7d:3d:83:26:63:86:ec:6b:16:90:8d:79:39:11:
9c:4b:22:66:f4:8b:6a:41:69:47:b2:c5:b7:f1:ce:
3a:3f:1e:85:e9:0b:c4:6c:57:76:6c:f8:b3:bd:27:
3d:ac:59:92:42:c8:2d:df:f6:4d:cd:cd:b6:16:d0:
4a:ab:98:b6:52:9d:ff:a1:73:9c:c3:53:62:11:75:
fd:85:38:5b:a3:4a:b7:12:e7:8f:6c:3e:f4:fb:78:
50:78:15:a6:d9:29:5e:2d:11:01:96:e2:6d:2a:7a:
68:f9:1c:2b:92:f0:fd:f1:35:2d:28:d8:57:3a:c0:
ce:bd:92:cc:e7:23:fd:c5:f7:e1:5f:43:3f:87:59:
9f:40:5c:b3:56:11:74:7b:78:97:82:e7:20:f8:c8:
23:3a:b8:a3:37:6a:84:2f:d4:83:5d:17:17:49:68:
9f:70:07:1e:9b:65:77:11:d2:66:9f:26:98:fb:30:
e6:fc:2c:39:c7:85:5f:f2:b0:3b:a1:99:ea:66:ec:
d4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:13:D7:35:A4:F1:7A:2B:E7:3B:93:5A:E9:11:91:AB:81:BD:91:EF
X509v3 Authority Key Identifier:
keyid:3E:CD:53:C6:64:24:C3:F3:69:CA:88:EE:7A:F7:6A:DB:25:E1:84:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ps1TxmQkw_Npyojuevdq2yXhhFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/ZhPXNaTxeivnO5Na6RGRq4G9ke8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/Ps1TxmQkw_Npyojuevdq2yXhhFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:9a:cb:f8:9a:3e:53:61:4f:74:55:cf:a2:06:1a:59:1c:fa:
95:9d:61:06:84:e8:7e:3c:08:86:84:74:5c:e1:cc:ef:3e:82:
fb:32:5f:3b:0d:36:1a:63:ec:1a:b9:02:a7:e8:8a:af:07:02:
cb:40:95:17:7d:81:b7:47:10:94:c6:0e:17:04:db:80:46:b0:
79:81:c8:38:4e:47:9e:89:51:75:cb:1f:41:64:ca:6d:ac:d4:
be:bb:cc:02:e1:2e:b1:ab:31:cc:d4:a9:94:2f:99:1c:4e:ee:
fa:2f:b9:39:f5:e4:0f:f1:d6:3b:3f:f8:62:73:3f:47:c2:17:
f4:92:87:67:32:22:77:c5:ba:fd:b9:f0:5a:65:3e:0d:0d:ac:
13:9e:c7:c5:eb:62:28:4c:5c:db:50:02:5a:40:40:3f:72:bf:
91:2a:fa:a8:bf:b5:0a:ae:4f:ef:ca:09:df:f1:e4:2c:14:11:
f8:da:50:54:2b:58:5d:96:b8:e1:68:c3:44:76:f1:55:d0:ac:
89:59:a7:32:d4:60:bb:b6:05:46:c0:8d:1e:5b:19:96:8e:61:
05:a9:56:f9:3c:63:94:f0:eb:74:14:8a:9d:da:ac:4d:68:9b:
7e:b4:a0:d3:67:51:07:8b:3d:f0:83:cc:7c:a5:11:a9:30:c3:
d5:41:74:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEASp0DDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWNkNTNjNjY0MjRjM2YzNjljYTg4ZWU3YWY3NmFkYjI1ZTE4NDUxMB4XDTIyMDEw
MTA1NTkzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjYxM2Q3MzVhNGYx
N2EyYmU3M2I5MzVhZTkxMTkxYWI4MWJkOTFlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJzXuIeXYwdtBMh9NYh+RqjagOYUsKtDrJ07K+Fa67m5u+0I
JRK6Fnu7nuX5G7m4wcMt2zY5Y3T460IjC309gyZjhuxrFpCNeTkRnEsiZvSLakFp
R7LFt/HOOj8ehekLxGxXdmz4s70nPaxZkkLILd/2Tc3NthbQSquYtlKd/6FznMNT
YhF1/YU4W6NKtxLnj2w+9Pt4UHgVptkpXi0RAZbibSp6aPkcK5Lw/fE1LSjYVzrA
zr2SzOcj/cX34V9DP4dZn0Bcs1YRdHt4l4LnIPjIIzq4ozdqhC/Ug10XF0lon3AH
HptldxHSZp8mmPsw5vwsOceFX/KwO6GZ6mbs1JsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRmE9c1pPF6K+c7k1rpEZGrgb2R7zAfBgNVHSMEGDAWgBQ+zVPGZCTD82nK
iO5692rbJeGEUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BzMVR4bVFrd19OcHlvanVldmRxMnlYaGhGRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvZTY1YWRhLTRkNGEtNDA0ZC04NzAwLWMyMjU2ODA0ZTkyMi8x
L1poUFhOYVR4ZWl2bk81TmE2UkdScTRHOWtlOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
ZTY1YWRhLTRkNGEtNDA0ZC04NzAwLWMyMjU2ODA0ZTkyMi8xL1BzMVR4bVFrd19O
cHlvanVldmRxMnlYaGhGRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmfVjANBgkqhkiG9w0BAQsFAAOC
AQEAG5rL+Jo+U2FPdFXPogYaWRz6lZ1hBoTofjwIhoR0XOHM7z6C+zJfOw02GmPs
GrkCp+iKrwcCy0CVF32Bt0cQlMYOFwTbgEaweYHIOE5HnolRdcsfQWTKbazUvrvM
AuEusasxzNSplC+ZHE7u+i+5OfXkD/HWOz/4YnM/R8IX9JKHZzIid8W6/bnwWmU+
DQ2sE57HxetiKExc21ACWkBAP3K/kSr6qL+1Cq5P78oJ3/HkLBQR+NpQVCtYXZa4
4WjDRHbxVdCsiVmnMtRgu7YFRsCNHlsZlo5hBalW+TxjlPDrdBSKndqsTWibfrSg
02dRB4s98IPMfKURqTDD1UF0hQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:24 2023 by rpki-client on console-fra.rpki-client.org