Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZmoKsIqVS4ln2GQlYDJzBYMrPU0.roa
File: ZmoKsIqVS4ln2GQlYDJzBYMrPU0.roa (raw, json)
Hash identifier: E6vgbXaBX2sTzHUoTSGR1ml98PiIzibXaatFeAleVMw=
Subject key identifier: 66:6A:0A:B0:8A:95:4B:89:67:D8:64:25:60:32:73:05:83:2B:3D:4D
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018268E0DD36E4F43D882D335800B45A86C1
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZmoKsIqVS4ln2GQlYDJzBYMrPU0.roa
Signing time: Thu 04 Aug 2022 12:42:23 +0000
ROA not before: Thu 04 Aug 2022 12:42:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58202
IP address blocks: 62.60.148.0/22 maxlen: 24
62.60.146.0/23 maxlen: 24
213.176.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:e0:dd:36:e4:f4:3d:88:2d:33:58:00:b4:5a:86:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 4 12:42:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666a0ab08a954b8967d8642560327305832b3d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:7b:15:92:a3:d1:23:26:8b:24:32:50:a0:
62:ec:f3:d8:11:de:40:ad:11:e7:3a:05:e7:e3:e1:
5f:ba:f6:d9:3b:d1:4b:1a:1a:be:78:ac:2e:18:06:
68:8e:f5:c1:50:a1:bd:f6:7a:7b:69:bb:9d:10:a0:
db:65:a6:35:52:ea:91:26:9f:5a:af:e6:35:18:00:
d3:05:97:f0:0d:ae:54:60:4d:a0:d3:fb:b9:0a:01:
e6:3a:ec:77:c9:f9:84:27:83:df:fe:08:66:5d:ef:
07:c5:f3:94:13:67:c7:7d:dd:0c:35:30:41:3d:a3:
40:37:53:a8:54:8b:89:7a:93:8a:14:fd:25:45:0a:
d5:af:72:59:38:a5:83:ba:3e:a3:ca:8f:61:35:c2:
99:e8:da:3d:28:18:3f:bb:5f:4e:90:dc:13:b0:4e:
b9:f5:d4:bb:fa:77:bf:81:b8:9e:87:b9:a2:59:b1:
bb:87:51:56:1c:26:13:a0:06:5e:91:98:4c:76:6d:
25:26:c7:bf:e9:88:b5:e4:58:d8:12:c2:fc:16:cc:
b9:c5:60:51:42:53:59:a1:8a:bb:09:29:fc:d6:42:
fe:ca:29:f5:d6:c8:50:be:9a:12:cf:fd:df:e1:6a:
56:dc:70:a5:df:10:5c:5e:8a:1a:83:48:0d:3f:51:
33:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6A:0A:B0:8A:95:4B:89:67:D8:64:25:60:32:73:05:83:2B:3D:4D
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZmoKsIqVS4ln2GQlYDJzBYMrPU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0-62.60.151.255
213.176.24.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:5f:c8:4c:06:b9:d6:76:57:ae:90:1a:6e:d6:5c:d3:8c:6f:
76:8a:cb:0f:a2:a0:61:07:da:e7:83:71:17:ea:1b:e4:da:fa:
ab:3b:7c:6f:18:95:20:24:ff:ca:3e:19:bb:d1:5e:3b:17:d0:
61:25:43:e5:fa:12:b5:a5:3d:f8:2b:a9:f9:1e:92:3a:f3:31:
ee:8c:e2:92:bd:2a:1f:65:67:06:3a:30:3b:df:b7:2e:dc:f0:
14:9d:94:07:b2:72:66:ec:bd:82:21:16:4c:f9:1f:53:8d:b8:
b9:4e:f3:b6:88:b9:7f:9e:07:c1:08:01:dd:2f:97:d2:f3:ae:
03:d7:8b:f4:47:db:5f:ae:47:93:ba:e0:a5:e8:87:2a:0e:72:
be:4d:38:74:17:51:57:5d:e9:8f:4b:26:68:54:5c:92:7e:83:
ad:d9:b6:e5:ed:06:c7:ce:7c:47:e9:76:9a:ac:f9:ba:1a:9e:
53:fe:1d:3f:6a:f5:06:3e:8d:89:ab:d8:75:e2:89:97:be:fc:
ef:96:d9:ae:9f:46:44:c6:05:89:13:a2:c8:66:3e:02:38:8c:
8f:96:3a:4d:f3:ca:5c:3d:37:c9:62:8a:86:6d:c6:d2:54:09:
d7:0c:84:6d:81:c3:78:d4:0f:30:3a:bf:bb:3c:3e:6a:62:92:
70:81:08:53
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYJo4N025PQ9iC0zWAC0WobBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjIwODA0MTI0MjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjZhMGFiMDhhOTU0Yjg5NjdkODY0MjU2MDMyNzMwNTgzMmIzZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6Z7FZKj0SMmiyQyUKBi7PPYEd5A
rRHnOgXn4+FfuvbZO9FLGhq+eKwuGAZojvXBUKG99np7abudEKDbZaY1UuqRJp9a
r+Y1GADTBZfwDa5UYE2g0/u5CgHmOux3yfmEJ4Pf/ghmXe8HxfOUE2fHfd0MNTBB
PaNAN1OoVIuJepOKFP0lRQrVr3JZOKWDuj6jyo9hNcKZ6No9KBg/u19OkNwTsE65
9dS7+ne/gbieh7miWbG7h1FWHCYToAZekZhMdm0lJse/6Yi15FjYEsL8Fsy5xWBR
QlNZoYq7CSn81kL+yin11shQvpoSz/3f4WpW3HCl3xBcXooag0gNP1EzDQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFGZqCrCKlUuJZ9hkJWAycwWDKz1NMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvWm1vS3NJcVZTNGxuMkdRbFlESnpCWU1yUFUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAE+PJID
BAM+PJADBAPVsBgwDQYJKoZIhvcNAQELBQADggEBAItfyEwGudZ2V66QGm7WXNOM
b3aKyw+ioGEH2ueDcRfqG+Ta+qs7fG8YlSAk/8o+GbvRXjsX0GElQ+X6ErWlPfgr
qfkekjrzMe6M4pK9Kh9lZwY6MDvfty7c8BSdlAeycmbsvYIhFkz5H1ONuLlO87aI
uX+eB8EIAd0vl9LzrgPXi/RH21+uR5O64KXohyoOcr5NOHQXUVdd6Y9LJmhUXJJ+
g63ZtuXtBsfOfEfpdpqs+boanlP+HT9q9QY+jYmr2HXiiZe+/O+W2a6fRkTGBYkT
oshmPgI4jI+WOk3zylw9N8liioZtxtJUCdcMhG2Bw3jUDzA6v7s8PmpiknCBCFM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:35 2023 by rpki-client on console-fra.rpki-client.org