Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZrA7nyvmq3Ba2C5EGYhLT3GIBcg.roa
File: ZrA7nyvmq3Ba2C5EGYhLT3GIBcg.roa (raw, json)
Hash identifier: rlQAloB1sCLL+BoWfU9crFtx/4hmVk5LPwl8qh1WHBM=
Subject key identifier: 66:B0:3B:9F:2B:E6:AB:70:5A:D8:2E:44:19:88:4B:4F:71:88:05:C8
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A58EDC7
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZrA7nyvmq3Ba2C5EGYhLT3GIBcg.roa
Signing time: Sat 01 Jan 2022 14:56:32 +0000
ROA not before: Sat 01 Jan 2022 14:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62039
IP address blocks: 5.160.204.0/23 maxlen: 23
5.160.205.0/24 maxlen: 24
5.160.204.0/24 maxlen: 24
5.160.206.0/24 maxlen: 24
5.160.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978906567 (0x3a58edc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66b03b9f2be6ab705ad82e4419884b4f718805c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:9d:fc:51:80:cc:e0:59:1c:0d:f1:55:a2:
c3:62:12:23:9f:30:2d:e5:5f:34:75:0b:3c:1a:ca:
b8:51:4b:0d:72:ab:02:8b:7a:f9:51:88:8b:da:61:
6e:c5:3d:55:f6:5a:a5:7c:0c:cb:e3:c0:02:ab:8c:
74:58:d8:0d:15:7b:5a:00:86:eb:c5:3d:32:69:d5:
70:67:94:02:46:76:38:92:b0:f3:47:d4:83:00:b7:
5e:3e:42:fb:e0:c0:d0:54:6b:3f:00:9f:7a:4c:1e:
42:df:6b:bf:c4:20:57:5c:dc:78:6f:ba:ea:6a:37:
f8:77:1a:0c:5a:a0:14:f8:fc:a8:65:f5:37:bb:19:
29:1e:0f:0a:f3:24:f5:94:b4:51:c3:97:5b:86:ec:
36:6a:29:db:ba:7c:dd:f1:1d:00:97:39:a1:89:59:
89:6b:87:ce:86:11:f1:b2:8d:1e:c0:3c:fc:b0:08:
3d:d5:85:57:de:a8:a8:94:04:de:fc:ec:68:21:65:
8f:e8:f2:c1:2e:15:60:dd:53:4c:03:29:b4:ed:96:
22:1c:f3:55:00:63:72:46:92:29:12:a4:f1:4b:f1:
b3:1f:9e:82:1d:92:7a:57:8a:d2:27:77:07:e0:92:
75:d1:75:c9:04:ff:76:7c:84:97:d8:f7:db:6b:b3:
b9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B0:3B:9F:2B:E6:AB:70:5A:D8:2E:44:19:88:4B:4F:71:88:05:C8
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ZrA7nyvmq3Ba2C5EGYhLT3GIBcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.204.0/22
Signature Algorithm: sha256WithRSAEncryption
80:42:c8:f4:f8:30:f1:29:6a:b3:5b:f7:fa:f7:56:56:e8:7a:
36:7f:5e:d0:09:9c:2f:31:86:f4:aa:28:09:8d:16:65:41:eb:
51:c4:3a:94:20:7a:b6:62:2f:57:93:69:01:ac:67:b6:2e:95:
53:63:99:5b:8c:31:ec:43:2f:ea:ad:1d:6e:92:05:56:8c:01:
59:93:23:05:10:40:42:2b:e4:f7:17:60:e1:7c:63:73:22:e3:
bf:9c:20:a4:83:03:2a:79:75:0a:19:f9:a2:07:61:87:e9:99:
1b:9a:5f:b2:f8:22:81:9a:ce:3b:1c:61:d3:f0:76:93:a5:6e:
dc:df:09:8c:1a:2b:4e:de:00:b3:78:d7:11:da:76:d2:c9:a7:
5f:25:d6:58:43:f1:17:01:fd:6b:c7:69:1c:80:7a:1f:04:d7:
92:a8:a5:cd:e0:8e:61:bd:78:b2:30:d7:3e:ab:85:a5:c0:8c:
12:fb:de:9c:fc:ce:fb:5d:c7:a8:d0:8b:e2:34:90:0c:78:33:
17:40:3a:41:fe:63:c8:c3:51:90:9c:90:cd:94:cf:23:f9:27:
e7:4c:55:5a:bb:96:a4:ae:71:32:35:d3:fc:0b:03:ae:10:fd:
f4:0a:86:db:78:f9:1e:58:a4:92:e2:d3:e5:1f:aa:63:f1:c7:
02:56:e2:13
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOljtxzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNjYTlmMTVlMTkyMTk1M2E2MjhjOGFkMmFjNGJlOTc3YjZjMzAzMB4XDTIyMDEw
MTE0NTYzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjZiMDNiOWYyYmU2
YWI3MDVhZDgyZTQ0MTk4ODRiNGY3MTg4MDVjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcDnfxRgMzgWRwN8VWiw2ISI58wLeVfNHULPBrKuFFLDXKr
Aot6+VGIi9phbsU9VfZapXwMy+PAAquMdFjYDRV7WgCG68U9MmnVcGeUAkZ2OJKw
80fUgwC3Xj5C++DA0FRrPwCfekweQt9rv8QgV1zceG+66mo3+HcaDFqgFPj8qGX1
N7sZKR4PCvMk9ZS0UcOXW4bsNmop27p83fEdAJc5oYlZiWuHzoYR8bKNHsA8/LAI
PdWFV96oqJQE3vzsaCFlj+jywS4VYN1TTAMptO2WIhzzVQBjckaSKRKk8Uvxsx+e
gh2SeleK0id3B+CSddF1yQT/dnyEl9j322uzuaMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRmsDufK+arcFrYLkQZiEtPcYgFyDAfBgNVHSMEGDAWgBSBzKnxXhkhlTpi
jIrSrEvpd7bDAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8x
L1pyQTdueXZtcTNCYTJDNUVHWWhMVDNHSUJjZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8xL2djeXA4VjRaSVpV
NllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgWgzDANBgkqhkiG9w0BAQsFAAOC
AQEAgELI9Pgw8Slqs1v3+vdWVuh6Nn9e0AmcLzGG9KooCY0WZUHrUcQ6lCB6tmIv
V5NpAaxnti6VU2OZW4wx7EMv6q0dbpIFVowBWZMjBRBAQivk9xdg4XxjcyLjv5wg
pIMDKnl1Chn5ogdhh+mZG5pfsvgigZrOOxxh0/B2k6Vu3N8JjBorTt4As3jXEdp2
0smnXyXWWEPxFwH9a8dpHIB6HwTXkqilzeCOYb14sjDXPquFpcCMEvvenPzO+13H
qNCL4jSQDHgzF0A6Qf5jyMNRkJyQzZTPI/kn50xVWruWpK5xMjXT/AsDrhD99AqG
23j5HlikkuLT5R+qY/HHAlbiEw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org