Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/DZV2ZoGaiCZN_Ehyb-LFNsxzIWg.roa
File: DZV2ZoGaiCZN_Ehyb-LFNsxzIWg.roa (raw, json)
Hash identifier: MmGYcLGHQv5b2WXNI19s10o0jre1dwcO0UNjJJ0rtj8=
Subject key identifier: 0D:95:76:66:81:9A:88:26:4D:FC:48:72:6F:E2:C5:36:CC:73:21:68
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0183CB06588538AD3FCD9354DAD479058011
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/DZV2ZoGaiCZN_Ehyb-LFNsxzIWg.roa
Signing time: Wed 12 Oct 2022 07:08:54 +0000
ROA not before: Wed 12 Oct 2022 07:08:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20836
IP address blocks: 151.236.18.0/24 maxlen: 24
149.154.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:06:58:85:38:ad:3f:cd:93:54:da:d4:79:05:80:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Oct 12 07:08:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d957666819a88264dfc48726fe2c536cc732168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:96:d2:a1:9c:3f:a0:94:6f:8c:fc:eb:52:e1:
6f:ca:2e:d5:59:c1:59:78:4a:e7:d0:d2:e9:8a:41:
9c:72:c3:bd:87:c5:d3:2b:57:85:c6:c7:c7:28:01:
36:5d:fb:09:29:ba:ef:3f:06:c0:01:35:3c:05:70:
7c:e5:d7:63:d7:85:6b:08:51:37:48:93:34:29:10:
50:c4:ef:64:18:e4:09:0a:1c:f1:3b:6e:d4:06:97:
b5:2f:cf:54:9d:9a:b8:8b:92:c9:b9:99:ea:21:dd:
e0:14:22:b1:59:12:55:5b:19:2b:ca:97:6d:19:3b:
d3:d6:cd:cf:8e:4c:94:75:bf:48:1c:d7:9b:fe:a2:
b1:d2:ec:43:74:a5:d9:09:ee:94:c5:3c:94:6b:07:
30:1e:6a:c1:03:d0:c4:6d:1c:c8:06:9b:ff:af:dd:
92:cc:c2:95:31:c2:c0:98:89:6f:e5:4c:13:75:3b:
e6:ef:11:bc:b2:a6:5a:d5:0e:e2:bd:87:60:0f:45:
d0:dc:ef:df:e1:6a:9c:fe:09:eb:0d:9c:44:2e:a6:
4d:f1:2e:07:34:e1:f4:8d:7c:00:63:b4:c0:e1:4a:
80:55:67:7e:ca:53:4b:b0:88:28:fb:72:01:b1:76:
c1:1e:09:bb:fc:a4:c5:42:14:10:ff:c3:02:b8:87:
32:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:95:76:66:81:9A:88:26:4D:FC:48:72:6F:E2:C5:36:CC:73:21:68
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/DZV2ZoGaiCZN_Ehyb-LFNsxzIWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.154.157.0/24
151.236.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:a6:9c:42:cc:30:b8:bb:ee:16:02:6e:80:f4:2b:72:6e:16:
ee:64:2a:a8:40:a3:8f:78:e7:4a:db:50:fe:c6:91:22:d3:52:
33:99:4e:9c:a1:fc:e5:ea:eb:ac:d2:7e:5b:a5:78:8e:f4:45:
d1:0a:d5:18:75:e1:56:43:65:98:35:fe:98:51:6b:4d:28:a9:
b5:16:fd:f2:a4:9f:09:fe:d9:9d:e4:45:cd:bc:37:96:df:f9:
3e:55:be:0a:6d:a7:da:0a:72:56:16:4c:a2:da:49:d8:2c:69:
02:9d:7c:b7:60:16:db:2a:fd:aa:58:7a:be:67:e8:74:4b:8d:
fe:44:b5:7e:c2:ea:0e:d2:b7:3e:9d:63:97:b8:4c:f5:69:71:
9a:96:a2:77:a2:19:84:65:d2:96:20:73:12:48:28:e7:2c:45:
a9:61:1f:e4:a0:56:59:7d:0e:b8:a4:0f:90:c6:10:2e:6a:9b:
c3:a4:36:fc:7a:85:62:58:1b:34:7f:97:aa:8d:04:81:f7:40:
da:ac:f7:2c:5b:27:e4:45:89:44:56:ae:23:a6:cd:77:e0:7d:
cf:1b:ce:d7:a1:b1:86:a1:9b:37:61:c4:d4:6a:8f:2e:bc:82:
a2:6e:f8:ab:a8:dd:b7:6a:1e:5b:1c:23:c4:bf:2b:fd:61:c2:
8c:d8:39:dd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYPLBliFOK0/zZNU2tR5BYARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj
MjhmNmEwHhcNMjIxMDEyMDcwODU0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDk1NzY2NjgxOWE4ODI2NGRmYzQ4NzI2ZmUyYzUzNmNjNzMyMTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZbSoZw/oJRvjPzrUuFvyi7VWcFZ
eErn0NLpikGccsO9h8XTK1eFxsfHKAE2XfsJKbrvPwbAATU8BXB85ddj14VrCFE3
SJM0KRBQxO9kGOQJChzxO27UBpe1L89UnZq4i5LJuZnqId3gFCKxWRJVWxkrypdt
GTvT1s3PjkyUdb9IHNeb/qKx0uxDdKXZCe6UxTyUawcwHmrBA9DEbRzIBpv/r92S
zMKVMcLAmIlv5UwTdTvm7xG8sqZa1Q7ivYdgD0XQ3O/f4Wqc/gnrDZxELqZN8S4H
NOH0jXwAY7TA4UqAVWd+ylNLsIgo+3IBsXbBHgm7/KTFQhQQ/8MCuIcyBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFA2VdmaBmogmTfxIcm/ixTbMcyFoMB8GA1UdIwQY
MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt
YjM4ZTI2NzdiM2RjLzEvRFpWMlpvR2FpQ1pOX0VoeWItTEZOc3h6SVdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj
LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAlZqdAwQA
l+wSMA0GCSqGSIb3DQEBCwUAA4IBAQA6ppxCzDC4u+4WAm6A9CtybhbuZCqoQKOP
eOdK21D+xpEi01IzmU6cofzl6uus0n5bpXiO9EXRCtUYdeFWQ2WYNf6YUWtNKKm1
Fv3ypJ8J/tmd5EXNvDeW3/k+Vb4KbafaCnJWFkyi2knYLGkCnXy3YBbbKv2qWHq+
Z+h0S43+RLV+wuoO0rc+nWOXuEz1aXGalqJ3ohmEZdKWIHMSSCjnLEWpYR/koFZZ
fQ64pA+QxhAuapvDpDb8eoViWBs0f5eqjQSB90DarPcsWyfkRYlEVq4jps134H3P
G87XobGGoZs3YcTUao8uvIKibvirqN23ah5bHCPEvyv9YcKM2Dnd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org