Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/b-ZZJJW7vABxl0xfNB46c8UVCAE.roa
File: b-ZZJJW7vABxl0xfNB46c8UVCAE.roa (raw, json)
Hash identifier: po6etJ0QdqSBozzpijhu34pPYKuQoa4HZvCfoNpdP+4=
Subject key identifier: 6F:E6:59:24:95:BB:BC:00:71:97:4C:5F:34:1E:3A:73:C5:15:08:01
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 09B7728D
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/b-ZZJJW7vABxl0xfNB46c8UVCAE.roa
Signing time: Sat 01 Jan 2022 13:55:44 +0000
ROA not before: Sat 01 Jan 2022 13:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203425
IP address blocks: 151.236.214.0/23 maxlen: 24
93.95.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163017357 (0x9b7728d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 13:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe6592495bbbc0071974c5f341e3a73c5150801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:e5:11:d3:e0:2f:6d:51:09:65:20:8e:c3:
f1:62:63:3d:79:fb:be:65:a2:7e:d0:70:d3:59:c9:
ae:b5:17:38:d8:4e:4b:6d:26:da:e0:68:d1:c9:0c:
ca:66:96:f7:da:17:b0:25:31:72:0a:e1:95:23:17:
6b:57:f5:53:c5:e2:33:14:cb:e3:50:81:b3:6c:2a:
d9:0e:d4:af:ce:26:71:af:e5:54:11:8e:48:80:e9:
c5:9c:ae:2a:87:5d:8b:45:e4:49:7f:b1:ae:50:67:
e1:3f:23:32:85:33:ca:d7:c1:eb:78:c7:a6:a9:b9:
a4:98:7a:0b:8d:38:d6:66:12:f2:47:f3:1c:2d:03:
2e:ed:fb:5d:af:33:c2:58:ce:03:d1:c0:85:9d:51:
68:f5:19:1d:fb:88:9c:cc:5c:75:f0:77:97:ef:43:
e6:8e:1f:c4:75:aa:15:87:f5:fd:f8:2b:5f:5a:d3:
0a:50:ca:d8:33:ff:b2:99:bc:0b:88:a6:8f:e0:5e:
89:b5:52:69:b6:0c:0e:23:f1:d0:b2:5a:70:0e:21:
72:7b:9c:63:76:f8:90:5a:14:82:a9:c2:f0:f5:1a:
bd:bb:80:4f:b0:d8:80:8e:9d:63:6c:dc:0f:7f:f8:
e0:02:6f:50:8b:42:02:49:49:06:46:c2:d5:e3:05:
91:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E6:59:24:95:BB:BC:00:71:97:4C:5F:34:1E:3A:73:C5:15:08:01
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/b-ZZJJW7vABxl0xfNB46c8UVCAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.8.0/21
151.236.214.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:3b:eb:98:a3:14:42:e2:42:c7:95:de:3b:73:fc:43:c0:bf:
74:41:5e:0a:31:36:d4:5c:69:5d:17:89:41:61:98:ac:ea:37:
a0:b4:3f:f7:0f:76:24:bf:62:ed:06:7b:e1:59:fd:1e:0f:f9:
de:0d:59:ec:81:c0:7e:f9:a7:33:b3:d2:4f:83:90:87:08:1a:
5b:f3:8b:b7:b3:b4:42:e7:c4:bf:0c:75:a1:f7:7f:52:b7:4f:
af:a5:e3:de:22:75:57:7e:15:32:1e:ad:60:44:d2:3d:26:79:
bb:66:4b:97:57:50:05:90:24:0e:e5:18:09:36:3b:51:d4:24:
a3:48:05:a9:cb:53:f1:d9:f4:d9:1f:e3:d7:06:0f:eb:ba:57:
68:7c:76:14:75:02:32:88:de:f9:0f:54:0c:64:be:b5:2c:2b:
7f:8e:c9:92:bc:7b:c1:a7:b9:94:4f:91:be:72:18:5c:85:14:
f8:25:21:26:bb:ca:b0:68:93:29:8e:d6:ed:4b:8f:87:64:e3:
b7:ca:f3:ed:35:bc:81:86:40:4c:be:09:41:a4:db:90:88:38:
d9:88:ac:b7:9c:9c:2e:66:c0:d9:a4:7a:18:dd:25:44:26:0f:
05:e8:14:70:04:60:60:f2:9b:01:4f:31:a4:fa:59:d3:ff:03:
b6:b8:dc:c3
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECbdyjTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ODRkNjFjZDE3ZWQ5MmU1NGJiMzM5N2YxZTVhNmIzOTA0YWM2ZjA1MB4XDTIyMDEw
MTEzNTU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmZlNjU5MjQ5NWJi
YmMwMDcxOTc0YzVmMzQxZTNhNzNjNTE1MDgwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+K5RHT4C9tUQllII7D8WJjPXn7vmWiftBw01nJrrUXONhO
S20m2uBo0ckMymaW99oXsCUxcgrhlSMXa1f1U8XiMxTL41CBs2wq2Q7Ur84mca/l
VBGOSIDpxZyuKoddi0XkSX+xrlBn4T8jMoUzytfB63jHpqm5pJh6C4041mYS8kfz
HC0DLu37Xa8zwljOA9HAhZ1RaPUZHfuInMxcdfB3l+9D5o4fxHWqFYf1/fgrX1rT
ClDK2DP/spm8C4imj+BeibVSabYMDiPx0LJacA4hcnucY3b4kFoUgqnC8PUavbuA
T7DYgI6dY2zcD3/44AJvUItCAklJBkbC1eMFkfcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRv5lkklbu8AHGXTF80HjpzxRUIATAfBgNVHSMEGDAWgBTITWHNF+2S5Uuz
OX8eWms5BKxvBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lFMWh6UmZ0a3VWTHN6bF9IbHByT1FTc2J3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWEvODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8x
L2ItWlpKSlc3dkFCeGwweGZOQjQ2YzhVVkNBRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEv
ODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8xL3lFMWh6UmZ0a3VW
THN6bF9IbHByT1FTc2J3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA11fCAMEAZfs1jANBgkqhkiG9w0B
AQsFAAOCAQEAfDvrmKMUQuJCx5XeO3P8Q8C/dEFeCjE21FxpXReJQWGYrOo3oLQ/
9w92JL9i7QZ74Vn9Hg/53g1Z7IHAfvmnM7PST4OQhwgaW/OLt7O0QufEvwx1ofd/
UrdPr6Xj3iJ1V34VMh6tYETSPSZ5u2ZLl1dQBZAkDuUYCTY7UdQko0gFqctT8dn0
2R/j1wYP67pXaHx2FHUCMoje+Q9UDGS+tSwrf47Jkrx7wae5lE+RvnIYXIUU+CUh
JrvKsGiTKY7W7UuPh2Tjt8rz7TW8gYZATL4JQaTbkIg42Yist5ycLmbA2aR6GN0l
RCYPBegUcARgYPKbAU8xpPpZ0/8Dtrjcww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org