Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/zBWyNfAYM8xUlDWjH41GhkWsjy0.roa
File: zBWyNfAYM8xUlDWjH41GhkWsjy0.roa (raw, json)
Hash identifier: JOcym6Ahr0zzQJSKMowgLBQM/SuZsnOUtYbVJ4vZKtQ=
Subject key identifier: CC:15:B2:35:F0:18:33:CC:54:94:35:A3:1F:8D:46:86:45:AC:8F:2D
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 0184964504C40B8A54D0979CB2BEACBA1FD6
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/zBWyNfAYM8xUlDWjH41GhkWsjy0.roa
Signing time: Sun 20 Nov 2022 18:20:16 +0000
ROA not before: Sun 20 Nov 2022 18:20:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202613
IP address blocks: 91.230.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:96:45:04:c4:0b:8a:54:d0:97:9c:b2:be:ac:ba:1f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Nov 20 18:20:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc15b235f01833cc549435a31f8d468645ac8f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cb:7e:96:fe:b8:4a:77:e1:50:45:70:ca:2e:
73:16:93:c8:81:e6:3f:63:f0:a8:8e:6c:27:cc:2d:
09:32:81:4e:fa:c7:da:ab:43:b1:8a:b4:a6:e2:71:
14:5b:b1:53:b6:6c:a9:b3:c7:eb:0f:27:6d:fb:19:
82:51:1b:48:15:6f:00:5a:9c:10:23:34:dc:f5:bf:
9d:6f:7a:e2:34:99:6b:90:76:0c:bb:f6:0c:d6:ec:
ac:5f:11:37:8b:52:b7:9a:07:36:c0:17:f8:ba:16:
ee:82:42:2d:8e:2c:48:ce:cf:2b:ef:2f:7c:bd:85:
15:72:ef:98:c0:78:8a:37:d2:0d:55:0e:b0:4b:c9:
8c:da:08:32:48:33:70:06:81:ee:56:18:c3:1b:da:
c7:74:2b:ba:85:1d:2e:6b:cb:36:a2:a3:9b:19:5b:
15:a4:1f:cd:f4:c9:91:d5:2c:c9:82:5d:be:13:51:
cf:91:f0:82:6d:17:de:7d:3d:18:42:f4:5e:3a:9b:
e0:ed:d6:e9:59:11:96:13:47:47:0a:27:1f:40:9d:
bb:24:29:59:68:1f:c2:75:83:48:d2:cc:91:88:1f:
51:92:a5:cd:46:d2:ad:27:f3:44:82:aa:1e:4e:f2:
ad:4f:f9:37:a8:df:3c:02:e1:e5:60:c7:55:77:3c:
82:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:15:B2:35:F0:18:33:CC:54:94:35:A3:1F:8D:46:86:45:AC:8F:2D
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/zBWyNfAYM8xUlDWjH41GhkWsjy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.247.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:af:ac:0e:6a:d6:25:c9:8c:a1:af:91:75:d4:28:d7:77:92:
25:7b:0a:bd:0a:d7:cf:f8:69:4e:82:02:36:a8:8b:c2:ea:a0:
06:56:e2:ea:b3:60:6b:3e:ba:53:a3:68:24:12:cb:bc:3f:02:
69:fc:89:1d:12:0a:9c:09:40:a2:ea:20:11:93:de:e4:e5:d1:
97:1f:da:84:1b:25:b2:fa:04:92:f3:50:59:d1:9b:cf:5f:af:
cb:43:ba:5d:ab:f6:aa:1a:72:13:f7:3b:4d:4e:51:e7:ad:63:
b2:5c:18:54:e7:0b:e1:6a:fb:24:e0:c4:9a:91:8c:7d:b4:9d:
ba:27:32:35:0d:c3:3e:d1:f6:8f:1e:64:6e:ea:93:2e:07:48:
c6:c2:be:13:82:e9:47:53:db:59:1e:02:3a:85:47:1c:2c:2f:
c0:b4:cd:00:92:c5:30:9f:ed:37:53:61:ea:91:79:d3:8f:b8:
8c:ad:ab:83:49:7e:95:24:cf:2c:7c:69:15:54:6c:8c:d7:4d:
11:38:c7:c9:f6:23:19:9d:3b:e1:2e:a4:5a:c0:b3:1f:76:8a:
5b:8d:bf:2c:a9:9a:9e:e7:71:26:78:e3:df:88:b4:a8:d9:88:
f7:a3:a5:77:de:4c:0f:34:32:5c:40:65:5c:e2:16:37:80:5e:
15:49:05:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSWRQTEC4pU0Jecsr6suh/WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3
NmFlYjIwHhcNMjIxMTIwMTgyMDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzE1YjIzNWYwMTgzM2NjNTQ5NDM1YTMxZjhkNDY4NjQ1YWM4ZjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvct+lv64SnfhUEVwyi5zFpPIgeY/
Y/CojmwnzC0JMoFO+sfaq0OxirSm4nEUW7FTtmyps8frDydt+xmCURtIFW8AWpwQ
IzTc9b+db3riNJlrkHYMu/YM1uysXxE3i1K3mgc2wBf4uhbugkItjixIzs8r7y98
vYUVcu+YwHiKN9INVQ6wS8mM2ggySDNwBoHuVhjDG9rHdCu6hR0ua8s2oqObGVsV
pB/N9MmR1SzJgl2+E1HPkfCCbRfefT0YQvReOpvg7dbpWRGWE0dHCicfQJ27JClZ
aB/CdYNI0syRiB9RkqXNRtKtJ/NEgqoeTvKtT/k3qN88AuHlYMdVdzyCZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwVsjXwGDPMVJQ1ox+NRoZFrI8tMB8GA1UdIwQY
MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt
N2UwNWFkMDE5MGNlLzEvekJXeU5mQVlNOHhVbERXakg0MUdoa1dzankwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl
LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+b3MA0G
CSqGSIb3DQEBCwUAA4IBAQBtr6wOatYlyYyhr5F11CjXd5Ilewq9CtfP+GlOggI2
qIvC6qAGVuLqs2BrPrpTo2gkEsu8PwJp/IkdEgqcCUCi6iARk97k5dGXH9qEGyWy
+gSS81BZ0ZvPX6/LQ7pdq/aqGnIT9ztNTlHnrWOyXBhU5wvhavsk4MSakYx9tJ26
JzI1DcM+0faPHmRu6pMuB0jGwr4TgulHU9tZHgI6hUccLC/AtM0AksUwn+03U2Hq
kXnTj7iMrauDSX6VJM8sfGkVVGyM100ROMfJ9iMZnTvhLqRawLMfdopbjb8sqZqe
53EmeOPfiLSo2Yj3o6V33kwPNDJcQGVc4hY3gF4VSQXf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org