Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ZanjZ7qS39m9zzNfppqblg4m2sU.roa
File: ZanjZ7qS39m9zzNfppqblg4m2sU.roa (raw, json)
Hash identifier: IsHs6tniB+1ZSt1TGRjE0gTNbeGbdTT4KkzFfIvUpUo=
Subject key identifier: 65:A9:E3:67:BA:92:DF:D9:BD:CF:33:5F:A6:9A:9B:96:0E:26:DA:C5
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 0182355996ECFEF8A49D4A42567C75096163
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ZanjZ7qS39m9zzNfppqblg4m2sU.roa
Signing time: Mon 25 Jul 2022 12:33:59 +0000
ROA not before: Mon 25 Jul 2022 12:33:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 2a0a:a200:18d::/48 maxlen: 48
2a0a:a201:21c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:35:59:96:ec:fe:f8:a4:9d:4a:42:56:7c:75:09:61:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Jul 25 12:33:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a9e367ba92dfd9bdcf335fa69a9b960e26dac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:73:82:f8:c4:99:54:7a:68:50:10:82:f2:3a:
3f:88:d1:7a:0d:a4:63:17:dc:7c:f9:5b:b0:c8:2c:
13:ad:cf:2a:28:3e:98:dc:0c:18:21:51:ee:29:53:
df:5a:9e:53:06:8a:c2:75:1a:49:84:3e:ec:33:90:
ad:6c:99:7d:d0:19:21:8a:ad:a0:fc:f7:61:66:f5:
52:f8:bb:1d:3b:44:4d:48:7b:f5:05:0e:47:69:28:
dd:8c:8a:03:6e:28:29:b3:f0:26:b6:df:87:71:f8:
63:e2:a9:8f:c6:77:51:7c:32:ee:5c:7f:a4:49:3d:
f2:84:b5:a7:dd:f4:a3:b1:68:8a:49:4f:f6:44:a0:
fa:73:52:56:74:3a:b6:98:13:68:27:82:d7:a8:e1:
63:f2:e6:aa:01:b0:a1:2a:1c:ea:b6:51:33:b7:85:
1e:8e:ac:77:31:79:c2:00:3c:47:be:49:3a:ec:8c:
fc:38:34:34:88:59:b1:d5:21:e8:e9:58:15:e8:f6:
83:81:12:55:80:7c:1d:f8:05:22:fb:3f:dc:f2:61:
e6:94:92:f6:a6:d5:78:c8:1e:b4:e8:e7:5f:e0:14:
4d:99:2b:7f:01:25:f7:6e:d9:b8:c9:39:60:90:4f:
34:cf:0b:3a:c7:3b:02:0e:c4:1e:ad:7e:e1:6e:bf:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A9:E3:67:BA:92:DF:D9:BD:CF:33:5F:A6:9A:9B:96:0E:26:DA:C5
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ZanjZ7qS39m9zzNfppqblg4m2sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:a200:18d::/48
2a0a:a201:21c::/48
Signature Algorithm: sha256WithRSAEncryption
44:ef:44:5a:43:7a:ad:01:25:91:7f:3f:fe:1b:e8:0e:58:8b:
a2:30:8b:6d:63:72:c4:53:99:53:d3:c6:23:45:60:1e:2c:6f:
cf:65:c9:95:0b:64:40:73:3c:d5:7d:ae:1f:b6:69:1c:8e:62:
c6:31:dd:78:f4:95:47:24:a7:f9:8a:de:7f:08:7d:46:e2:92:
2a:1a:ec:69:0b:dd:09:1e:4e:0b:13:9a:77:87:84:b8:52:a9:
ef:fd:ed:38:d8:18:60:23:ef:b9:c3:f6:cd:36:f7:c2:cc:0f:
f8:85:8b:ae:83:46:b0:76:aa:0a:81:08:23:e7:95:66:6a:4e:
81:8b:32:9a:79:42:4f:56:40:16:77:c8:12:3b:ee:20:16:95:
a4:7a:44:ce:a7:ba:32:04:20:d3:a7:1e:1a:69:27:5a:46:33:
aa:ad:46:0a:b9:2c:21:7c:f0:6b:20:89:b9:30:98:ea:94:4e:
83:5f:50:2c:28:fb:79:3b:fa:5f:be:6a:d2:29:9d:e6:88:84:
6a:9b:82:06:8b:b6:d1:4a:fd:b5:3d:2a:38:dc:22:84:2d:3a:
35:7a:76:68:1a:cb:28:ec:79:ea:26:52:8b:03:2e:d9:4a:0e:
a1:39:b7:a5:98:2b:29:76:7e:e0:f5:99:9c:85:5b:1a:9c:f6:
f7:30:50:8f
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYI1WZbs/viknUpCVnx1CWFjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYjg0ZDlmOGY5ZTMzMTU2NTg5YTVlYmY3MjIyMDNhODk5
ZTBhNTEwHhcNMjIwNzI1MTIzMzU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWE5ZTM2N2JhOTJkZmQ5YmRjZjMzNWZhNjlhOWI5NjBlMjZkYWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3OC+MSZVHpoUBCC8jo/iNF6DaRj
F9x8+VuwyCwTrc8qKD6Y3AwYIVHuKVPfWp5TBorCdRpJhD7sM5CtbJl90Bkhiq2g
/PdhZvVS+LsdO0RNSHv1BQ5HaSjdjIoDbigps/Amtt+Hcfhj4qmPxndRfDLuXH+k
ST3yhLWn3fSjsWiKSU/2RKD6c1JWdDq2mBNoJ4LXqOFj8uaqAbChKhzqtlEzt4Ue
jqx3MXnCADxHvkk67Iz8ODQ0iFmx1SHo6VgV6PaDgRJVgHwd+AUi+z/c8mHmlJL2
ptV4yB606Odf4BRNmSt/ASX3btm4yTlgkE80zws6xzsCDsQerX7hbr9xyQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFGWp42e6kt/Zvc8zX6aam5YOJtrFMB8GA1UdIwQY
MBaAFP64TZ+PnjMVZYml6/ciIDqJngpRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3JoTm40LWVNeFZsaWFYcjl5SWdPb21lQ2xFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82MTRlNWMtMjk5Yi00ZmQ0LWEwYmMt
YWYxY2MyMzE3ZTM5LzEvWmFualo3cVMzOW05enpOZnBwcWJsZzRtMnNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82MTRlNWMtMjk5Yi00ZmQ0LWEwYmMtYWYxY2MyMzE3ZTM5
LzEvX3JoTm40LWVNeFZsaWFYcjl5SWdPb21lQ2xFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgqiAAGN
AwcAKgqiAQIcMA0GCSqGSIb3DQEBCwUAA4IBAQBE70RaQ3qtASWRfz/+G+gOWIui
MIttY3LEU5lT08YjRWAeLG/PZcmVC2RAczzVfa4ftmkcjmLGMd149JVHJKf5it5/
CH1G4pIqGuxpC90JHk4LE5p3h4S4Uqnv/e042BhgI++5w/bNNvfCzA/4hYuug0aw
dqoKgQgj55Vmak6BizKaeUJPVkAWd8gSO+4gFpWkekTOp7oyBCDTpx4aaSdaRjOq
rUYKuSwhfPBrIIm5MJjqlE6DX1AsKPt5O/pfvmrSKZ3miIRqm4IGi7bRSv21PSo4
3CKELTo1enZoGsso7HnqJlKLAy7ZSg6hObelmCspdn7g9ZmchVsanPb3MFCP
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:48 2024 by rpki-client on console-ams.rpki-client.org