Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZKJYjdtKGSpS20p89fDLAesZeds.roa
File: ZKJYjdtKGSpS20p89fDLAesZeds.roa (raw, json)
Hash identifier: PSmaqrcIAY1f2LBny1trgBiPFp0J/Wa8legTvpmyyAk=
Subject key identifier: 64:A2:58:8D:DB:4A:19:2A:52:DB:4A:7C:F5:F0:CB:01:EB:19:79:DB
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 030205CD
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZKJYjdtKGSpS20p89fDLAesZeds.roa
Signing time: Wed 22 Jun 2022 14:29:32 +0000
ROA not before: Wed 22 Jun 2022 14:29:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 109.105.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50464205 (0x30205cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 22 14:29:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64a2588ddb4a192a52db4a7cf5f0cb01eb1979db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:44:30:5a:28:65:8a:b4:ff:3c:b2:37:04:1b:
61:30:f9:3b:f6:81:04:1b:88:4b:1a:52:91:26:11:
e1:0c:e3:46:4c:03:c3:43:5d:4b:b4:f5:9e:d2:dc:
25:2d:72:b6:ba:04:48:24:6f:6b:4a:f5:0f:bc:8e:
54:93:ed:b6:64:9c:1e:81:ea:3d:26:60:e8:2d:cb:
10:4f:5e:f6:9e:f3:e0:e4:ac:aa:e0:83:63:d1:d9:
36:11:23:7d:55:12:c4:5d:03:36:00:ac:7b:f3:cc:
3e:86:bc:90:12:0b:46:7a:b8:8b:0e:43:7c:e8:30:
4d:81:43:c5:bd:24:76:2d:72:d6:7c:b9:eb:d4:8e:
66:d6:97:b2:4c:e1:fe:66:56:00:bf:68:d7:35:cc:
76:10:78:7a:57:62:58:4a:59:a9:dd:e8:88:73:4c:
4c:4f:7d:08:55:50:1b:81:84:72:4d:3c:33:b9:34:
a3:2a:70:99:31:94:30:ad:8c:4f:ee:f4:87:6d:a5:
eb:a9:73:af:5b:c5:57:75:a1:f5:7b:01:4a:00:46:
e0:01:10:37:82:7f:43:78:bf:17:57:26:f4:97:85:
b6:29:6f:7d:2f:4d:74:a0:2e:0a:69:e8:a8:74:ef:
50:5b:17:c8:77:e9:dc:22:96:d2:af:aa:b9:84:42:
da:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A2:58:8D:DB:4A:19:2A:52:DB:4A:7C:F5:F0:CB:01:EB:19:79:DB
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZKJYjdtKGSpS20p89fDLAesZeds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.199.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:0c:b2:e7:88:02:4c:1f:f6:75:8b:c2:e5:c1:e3:0a:02:f0:
61:fd:0b:ab:a8:32:2b:55:f5:20:a5:98:e4:c7:06:6d:d5:9e:
5a:e0:02:30:7e:89:45:5f:78:5f:40:a4:e7:09:76:0c:59:ab:
b8:25:76:cd:4e:65:ae:0c:03:45:f9:3f:28:f3:b0:f2:c7:bb:
1c:2c:b9:3b:3e:a5:de:6b:47:71:aa:aa:c1:65:b3:4b:a4:d6:
29:50:3f:07:63:4c:da:4b:c2:f4:b4:4f:2c:06:13:70:db:2b:
aa:32:e6:ec:a2:57:b9:11:36:ef:28:e6:92:1e:79:48:56:07:
12:81:3f:cd:b5:da:67:17:6b:31:80:94:69:07:38:1d:19:b4:
91:2e:42:67:4c:15:08:16:e0:3c:da:e7:df:a6:8c:ab:9e:fb:
b5:11:af:a1:7d:95:ba:a5:88:53:67:ab:c5:74:09:58:2f:46:
7e:cb:77:d7:d0:db:09:de:75:6e:fa:ec:f1:db:02:d4:f4:23:
9e:12:78:db:d2:c2:49:b3:a1:33:5d:6e:a5:d3:4d:bc:8c:21:
da:56:e0:4e:2e:f2:62:de:dd:97:f1:bc:65:a4:99:25:dd:41:
35:de:de:ca:1f:b6:44:05:cb:92:a9:e1:c6:87:4e:d4:a5:45:
8b:61:c3:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwIFzTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OGM2MGEwZDJkNzBhOTMzN2QwYmRhNTZkMWFkNTk2YWMxZjY5Y2RhMB4XDTIyMDYy
MjE0MjkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRhMjU4OGRkYjRh
MTkyYTUyZGI0YTdjZjVmMGNiMDFlYjE5NzlkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtEMFooZYq0/zyyNwQbYTD5O/aBBBuISxpSkSYR4QzjRkwD
w0NdS7T1ntLcJS1ytroESCRva0r1D7yOVJPttmScHoHqPSZg6C3LEE9e9p7z4OSs
quCDY9HZNhEjfVUSxF0DNgCse/PMPoa8kBILRnq4iw5DfOgwTYFDxb0kdi1y1ny5
69SOZtaXskzh/mZWAL9o1zXMdhB4eldiWEpZqd3oiHNMTE99CFVQG4GEck08M7k0
oypwmTGUMK2MT+70h22l66lzr1vFV3Wh9XsBSgBG4AEQN4J/Q3i/F1cm9JeFtilv
fS9NdKAuCmnoqHTvUFsXyHfp3CKW0q+quYRC2gMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRkoliN20oZKlLbSnz18MsB6xl52zAfBgNVHSMEGDAWgBTYxgoNLXCpM30L
2lbRrVlqwfac2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJNWUtEUzF3cVROOUM5cFcwYTFaYXNIMm5Oby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8x
L1pLSllqZHRLR1NwUzIwcDg5ZkRMQWVzWmVkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8xLzJNWUtEUzF3cVRO
OUM5cFcwYTFaYXNIMm5Oby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1pxzANBgkqhkiG9w0BAQsFAAOC
AQEAXAyy54gCTB/2dYvC5cHjCgLwYf0Lq6gyK1X1IKWY5McGbdWeWuACMH6JRV94
X0Ck5wl2DFmruCV2zU5lrgwDRfk/KPOw8se7HCy5Oz6l3mtHcaqqwWWzS6TWKVA/
B2NM2kvC9LRPLAYTcNsrqjLm7KJXuRE27yjmkh55SFYHEoE/zbXaZxdrMYCUaQc4
HRm0kS5CZ0wVCBbgPNrn36aMq577tRGvoX2VuqWIU2erxXQJWC9Gfst319DbCd51
bvrs8dsC1PQjnhJ429LCSbOhM11updNNvIwh2lbgTi7yYt7dl/G8ZaSZJd1BNd7e
yh+2RAXLkqnhxodO1KVFi2HDqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org