Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZTTPv4FftOhswpbG5D2yt-oejOI.roa
File: ZTTPv4FftOhswpbG5D2yt-oejOI.roa (raw, json)
Hash identifier: ME29wGD3r6/7PzpDp26uDH02juXeHIYV6sskGlPYE5A=
Subject key identifier: 65:34:CF:BF:81:5F:B4:E8:6C:C2:96:C6:E4:3D:B2:B7:EA:1E:8C:E2
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01850B5F4DB699233C30471C1ECC30808416
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZTTPv4FftOhswpbG5D2yt-oejOI.roa
Signing time: Tue 13 Dec 2022 12:04:33 +0000
ROA not before: Tue 13 Dec 2022 12:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205275
IP address blocks: 81.181.66.0/23 maxlen: 24
194.102.33.0/24 maxlen: 24
81.181.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0b:5f:4d:b6:99:23:3c:30:47:1c:1e:cc:30:80:84:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Dec 13 12:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6534cfbf815fb4e86cc296c6e43db2b7ea1e8ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:63:34:4b:9a:ee:e7:56:88:d6:df:08:20:d5:
3f:1f:84:f2:77:1c:35:91:0f:16:5c:9c:4c:9c:82:
13:5f:fd:33:9b:bc:a8:6c:58:65:9b:6b:98:67:6a:
81:ad:8a:f0:30:18:e1:ac:80:11:be:e1:64:62:b6:
10:d2:e9:4c:44:f5:34:d4:26:1a:bf:33:2f:b0:f0:
27:e3:9c:ce:85:75:3d:f3:08:4a:4e:28:a5:98:99:
a8:9f:5b:84:55:33:af:ca:ae:6d:e0:c3:e0:bf:51:
a8:d6:c1:4e:b6:0e:3f:dd:f5:d1:b4:e6:de:50:ac:
64:15:45:d8:47:cc:60:c7:4d:51:37:46:d8:2a:a9:
8c:cd:1c:4a:cd:95:74:5a:8d:40:6d:28:24:26:17:
54:05:96:be:2a:63:0d:5c:27:8a:28:b8:e4:68:24:
05:2b:63:71:d9:72:e2:8d:3c:29:1d:4c:7e:d1:ed:
5d:2a:f4:a6:8a:1c:14:b5:9a:62:90:96:75:9e:bc:
51:bb:c0:16:cf:3a:bf:78:3e:16:f4:72:14:d0:f4:
05:bd:84:be:7f:f7:cb:ed:10:2b:9d:f7:d7:7b:6c:
e7:12:d8:f3:f6:a6:1f:be:23:87:4f:07:c9:5c:15:
02:be:ab:d6:0a:8e:31:72:c5:aa:3c:c4:46:cd:56:
c2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:34:CF:BF:81:5F:B4:E8:6C:C2:96:C6:E4:3D:B2:B7:EA:1E:8C:E2
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ZTTPv4FftOhswpbG5D2yt-oejOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.66.0/23
81.181.129.0/24
194.102.33.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:78:26:5d:72:35:95:59:75:71:4d:7a:51:7a:6f:ce:40:ec:
f0:17:cc:65:c6:3e:2a:3b:bf:2c:61:b6:8c:5b:fe:40:5d:f7:
7e:c8:e1:da:97:c2:5e:42:4a:bc:94:ad:f4:11:18:62:cc:8a:
13:3c:43:3b:c7:ab:77:e2:61:fa:17:c8:d1:dc:b2:48:82:2b:
b7:81:1d:11:73:71:5f:41:5d:7f:0f:1f:ff:b1:0a:c1:ba:b0:
b3:84:2e:d9:ba:c9:f9:38:1f:a5:ab:f0:2a:d1:ed:53:ec:8a:
ee:bf:c0:3d:80:8b:95:ba:87:93:bc:e4:32:20:c6:13:04:c9:
91:0d:fc:2f:d0:70:a8:d9:6e:29:b6:2e:63:b0:b1:8a:a6:5e:
f4:cc:05:a9:6c:90:72:16:58:83:ad:d8:f7:c8:64:64:ad:e4:
eb:3b:2f:ce:b7:2c:f9:08:f0:8a:ae:47:7e:a2:a9:21:b2:08:
e2:22:bf:41:6a:17:83:63:8c:e7:6b:da:2e:81:a2:e5:eb:61:
fd:6a:aa:9b:2b:ae:d0:bc:91:fa:92:fc:16:b9:f8:5c:14:68:
32:96:4e:d5:ce:5b:a0:89:e1:6c:bf:1c:19:f1:a0:cb:43:47:
aa:72:5b:12:cb:68:5e:60:af:fa:01:ba:89:79:59:bb:27:6f:
e4:c9:65:2e
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYULX022mSM8MEccHswwgIQWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjIxMjEzMTIwNDMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTM0Y2ZiZjgxNWZiNGU4NmNjMjk2YzZlNDNkYjJiN2VhMWU4Y2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmM0S5ru51aI1t8IINU/H4Tydxw1
kQ8WXJxMnIITX/0zm7yobFhlm2uYZ2qBrYrwMBjhrIARvuFkYrYQ0ulMRPU01CYa
vzMvsPAn45zOhXU98whKTiilmJmon1uEVTOvyq5t4MPgv1Go1sFOtg4/3fXRtObe
UKxkFUXYR8xgx01RN0bYKqmMzRxKzZV0Wo1AbSgkJhdUBZa+KmMNXCeKKLjkaCQF
K2Nx2XLijTwpHUx+0e1dKvSmihwUtZpikJZ1nrxRu8AWzzq/eD4W9HIU0PQFvYS+
f/fL7RArnffXe2znEtjz9qYfviOHTwfJXBUCvqvWCo4xcsWqPMRGzVbCGQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFGU0z7+BX7TobMKWxuQ9srfqHoziMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvWlRUUHY0RmZ0T2hzd3BiRzVEMnl0LW9lak9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBUbVCAwQA
UbWBAwQAwmYhMA0GCSqGSIb3DQEBCwUAA4IBAQCyeCZdcjWVWXVxTXpRem/OQOzw
F8xlxj4qO78sYbaMW/5AXfd+yOHal8JeQkq8lK30ERhizIoTPEM7x6t34mH6F8jR
3LJIgiu3gR0Rc3FfQV1/Dx//sQrBurCzhC7Zusn5OB+lq/Aq0e1T7Iruv8A9gIuV
uoeTvOQyIMYTBMmRDfwv0HCo2W4pti5jsLGKpl70zAWpbJByFliDrdj3yGRkreTr
Oy/Otyz5CPCKrkd+oqkhsgjiIr9BaheDY4zna9ougaLl62H9aqqbK67QvJH6kvwW
ufhcFGgylk7VzlugieFsvxwZ8aDLQ0eqclsSy2heYK/6AbqJeVm7J2/kyWUu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org