Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/ZP0HKMLCTzQdqlM4zkor2UZYrZ4.roa
File: ZP0HKMLCTzQdqlM4zkor2UZYrZ4.roa (raw, json)
Hash identifier: LWKN15R64X+ybI07lsysjK7RJUiOz4dB8We6r8/o3Ec=
Subject key identifier: 64:FD:07:28:C2:C2:4F:34:1D:AA:53:38:CE:4A:2B:D9:46:58:AD:9E
Certificate issuer: /CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Certificate serial: 08C90177
Authority key identifier: 07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/ZP0HKMLCTzQdqlM4zkor2UZYrZ4.roa
Signing time: Sat 01 Jan 2022 15:04:52 +0000
ROA not before: Sat 01 Jan 2022 15:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48325
IP address blocks: 185.126.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147390839 (0x8c90177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Validity
Not Before: Jan 1 15:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64fd0728c2c24f341daa5338ce4a2bd94658ad9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:55:10:dc:15:16:03:ff:e3:72:ae:0f:2c:3e:
64:c2:0d:df:54:37:2b:23:c3:66:43:29:b6:f8:3e:
9e:c5:37:46:98:56:b3:03:95:8f:8f:52:88:72:c0:
80:98:93:72:1f:c2:41:97:db:d3:4c:29:7e:07:a6:
be:08:70:39:22:8a:2a:11:29:23:f6:b1:a5:d8:7e:
03:8f:3b:7c:0c:03:36:46:36:5d:94:df:af:e5:57:
85:7b:7b:94:d6:d3:38:6a:80:3e:d3:03:ba:4e:40:
47:df:1e:19:0d:08:6d:3d:73:86:27:1e:86:30:68:
ed:c4:fb:08:7e:90:c5:8e:8a:bc:93:55:71:f1:f5:
3a:be:9f:9f:12:02:8f:a4:64:3d:e2:9f:ec:c4:fb:
bc:b0:35:a3:c2:31:67:20:fa:74:31:15:27:61:ea:
26:df:2d:4a:aa:59:e0:0d:26:0b:13:2b:44:b9:0a:
36:9b:34:46:11:b6:53:60:95:57:02:32:79:a4:f2:
58:a9:f7:5c:d7:ea:ae:00:6f:50:df:94:64:77:48:
47:46:61:5f:b4:97:7c:54:52:c8:27:d8:aa:65:2d:
26:e7:e5:08:dd:ff:d2:74:91:f0:7c:c0:16:f1:f2:
c1:a7:ea:b1:9c:fc:55:ac:e3:49:f9:01:e7:d5:6c:
5b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FD:07:28:C2:C2:4F:34:1D:AA:53:38:CE:4A:2B:D9:46:58:AD:9E
X509v3 Authority Key Identifier:
keyid:07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/ZP0HKMLCTzQdqlM4zkor2UZYrZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/B0ejbXdop7MKTuy7aWTIwjfXRAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ee:b4:1e:3d:ef:bf:95:36:c9:f4:ee:58:1b:23:78:12:13:
e6:07:7f:dc:db:a1:c7:15:1e:78:24:cb:e3:53:ba:5a:58:d7:
9c:7f:89:1c:25:5b:af:30:7f:b6:b0:e0:ac:05:fb:c4:a2:60:
86:1c:85:24:93:7c:ea:47:11:d2:d4:f3:c2:2f:9f:18:18:e6:
9f:e2:2e:b5:af:eb:c6:bb:31:cd:d8:da:5f:c8:9b:9d:da:3e:
e2:69:ea:84:38:7d:4a:84:3f:90:eb:ce:79:06:95:03:2b:f7:
d9:03:dc:0a:2c:12:a9:56:f3:94:0f:54:7e:4c:e3:4b:5b:c7:
4b:af:fd:47:1e:26:d2:db:16:3b:e8:17:4e:8a:70:3f:07:ce:
a4:81:e3:b0:a0:05:34:b5:ed:29:97:d9:99:a2:75:3e:c4:af:
b4:cf:48:a3:72:15:b5:bd:3a:c0:4e:4d:3d:98:39:42:70:89:
3e:aa:77:93:d6:cb:de:2f:05:0c:aa:5e:90:65:54:24:3e:42:
ed:2e:9c:0a:03:03:89:bf:02:86:1e:a7:98:72:17:ba:57:1a:
c6:16:43:a6:bd:6a:18:08:be:37:42:44:d1:8a:ea:df:a2:d8:
9f:71:2f:62:7d:48:91:88:38:9c:d3:6c:d9:b8:ac:aa:8a:dd:
4b:7a:9c:af
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECMkBdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzQ3YTM2ZDc3NjhhN2IzMGE0ZWVjYmI2OTY0YzhjMjM3ZDc0NDAxMB4XDTIyMDEw
MTE1MDQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRmZDA3MjhjMmMy
NGYzNDFkYWE1MzM4Y2U0YTJiZDk0NjU4YWQ5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKlVENwVFgP/43KuDyw+ZMIN31Q3KyPDZkMptvg+nsU3RphW
swOVj49SiHLAgJiTch/CQZfb00wpfgemvghwOSKKKhEpI/axpdh+A487fAwDNkY2
XZTfr+VXhXt7lNbTOGqAPtMDuk5AR98eGQ0IbT1zhicehjBo7cT7CH6QxY6KvJNV
cfH1Or6fnxICj6RkPeKf7MT7vLA1o8IxZyD6dDEVJ2HqJt8tSqpZ4A0mCxMrRLkK
Nps0RhG2U2CVVwIyeaTyWKn3XNfqrgBvUN+UZHdIR0ZhX7SXfFRSyCfYqmUtJufl
CN3/0nSR8HzAFvHywafqsZz8VazjSfkB59VsW4cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRk/QcowsJPNB2qUzjOSivZRlitnjAfBgNVHSMEGDAWgBQHR6Ntd2inswpO
7LtpZMjCN9dEATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0IwZWpiWGRvcDdNS1R1eTdhV1RJd2pmWFJBRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvOWVhZjFlLWM5ZWMtNDY2ZC04MzcxLWFhYmFkZDA3MTliYS8x
L1pQMEhLTUxDVHpRZHFsTTR6a29yMlVaWXJaNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
OWVhZjFlLWM5ZWMtNDY2ZC04MzcxLWFhYmFkZDA3MTliYS8xL0IwZWpiWGRvcDdN
S1R1eTdhV1RJd2pmWFJBRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl+rTANBgkqhkiG9w0BAQsFAAOC
AQEAju60Hj3vv5U2yfTuWBsjeBIT5gd/3NuhxxUeeCTL41O6WljXnH+JHCVbrzB/
trDgrAX7xKJghhyFJJN86kcR0tTzwi+fGBjmn+Iuta/rxrsxzdjaX8ibndo+4mnq
hDh9SoQ/kOvOeQaVAyv32QPcCiwSqVbzlA9UfkzjS1vHS6/9Rx4m0tsWO+gXTopw
PwfOpIHjsKAFNLXtKZfZmaJ1PsSvtM9Io3IVtb06wE5NPZg5QnCJPqp3k9bL3i8F
DKpekGVUJD5C7S6cCgMDib8Chh6nmHIXulcaxhZDpr1qGAi+N0JE0Yrq36LYn3Ev
Yn1IkYg4nNNs2bisqordS3qcrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:49 2024 by rpki-client on console-ams.rpki-client.org