Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/Zv0g2iwrdJ6EmakvpuoNHcPBis4.roa
File: Zv0g2iwrdJ6EmakvpuoNHcPBis4.roa (raw, json)
Hash identifier: bKvtZi80TBHI2FLiet1DGwEOpOjW3CKHc+KulG7VEGA=
Subject key identifier: 66:FD:20:DA:2C:2B:74:9E:84:99:A9:2F:A6:EA:0D:1D:C3:C1:8A:CE
Certificate issuer: /CN=af4ef4a8ed3711b6acd68c0f48f621831fd5aaae
Certificate serial: 01847A184DA6B0F327AC1555B94082DBFB43
Authority key identifier: AF:4E:F4:A8:ED:37:11:B6:AC:D6:8C:0F:48:F6:21:83:1F:D5:AA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r070qO03Ebas1owPSPYhgx_Vqq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/Zv0g2iwrdJ6EmakvpuoNHcPBis4.roa
Signing time: Tue 15 Nov 2022 07:02:03 +0000
ROA not before: Tue 15 Nov 2022 07:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39650
IP address blocks: 185.164.254.0/24 maxlen: 24
185.164.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:18:4d:a6:b0:f3:27:ac:15:55:b9:40:82:db:fb:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af4ef4a8ed3711b6acd68c0f48f621831fd5aaae
Validity
Not Before: Nov 15 07:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66fd20da2c2b749e8499a92fa6ea0d1dc3c18ace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:d2:4f:2b:88:39:3e:8c:b8:2f:44:b6:68:
57:c3:17:18:55:a2:d8:b4:e5:05:43:0d:7c:24:0c:
d5:09:46:73:95:74:75:bc:77:41:20:ed:ab:6a:53:
d7:c3:e0:1f:98:b5:1d:52:4e:14:ee:d5:64:a2:6e:
49:1c:76:43:bd:73:85:44:ca:ad:7f:b3:7b:32:53:
56:f6:be:5b:5e:d0:ba:12:93:19:fd:8a:c0:00:be:
97:f1:f0:e4:8e:e6:84:33:5f:f4:06:78:8b:a2:45:
b0:33:52:df:e3:56:52:f1:80:96:48:e2:26:26:e6:
1e:28:bd:98:37:6a:91:5c:2e:1b:6b:d8:ff:0c:ef:
03:1d:ee:3b:a6:ec:db:f0:5f:7a:4e:28:f8:83:88:
36:fe:63:62:14:a2:22:13:46:ff:32:b1:1c:74:25:
94:e2:89:f5:6c:f7:c3:2b:2e:0c:38:45:98:ba:2c:
91:d7:8a:cb:fe:98:71:c2:ce:63:3d:51:15:c5:e0:
a4:0d:a0:4e:16:fd:b4:15:23:df:7d:3a:9a:c9:a8:
a1:e0:dc:ee:e9:ec:68:cd:0b:15:a3:dc:cc:f9:ba:
7c:16:db:b7:8f:88:86:c4:38:4e:64:3d:22:b5:b9:
ed:e2:8d:6a:98:a9:8b:fa:9d:10:f9:49:2a:0c:42:
01:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FD:20:DA:2C:2B:74:9E:84:99:A9:2F:A6:EA:0D:1D:C3:C1:8A:CE
X509v3 Authority Key Identifier:
keyid:AF:4E:F4:A8:ED:37:11:B6:AC:D6:8C:0F:48:F6:21:83:1F:D5:AA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r070qO03Ebas1owPSPYhgx_Vqq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/Zv0g2iwrdJ6EmakvpuoNHcPBis4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/e8f4b3-2120-4ecb-9609-cb9c58f510cb/1/r070qO03Ebas1owPSPYhgx_Vqq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.254.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:f8:b6:30:0e:c0:c7:a9:8e:41:c0:00:4c:99:83:2f:3e:7a:
05:88:43:2c:cb:e0:63:76:62:64:4c:12:de:9b:a7:09:07:66:
17:62:64:87:f5:07:7f:32:50:41:4b:03:81:ba:45:54:56:89:
0e:17:f4:90:6d:e5:5b:15:9a:ba:f6:0d:3a:99:c7:a7:08:a6:
02:ae:f5:46:7d:6d:1c:01:98:e8:f8:05:66:aa:3a:33:e9:90:
7f:1d:8a:df:b0:0a:dd:08:18:a5:0f:20:b9:d5:c0:6d:c4:6d:
3a:73:6e:a7:d9:93:2a:0a:50:ac:cd:6a:87:cb:4d:1f:58:ce:
0e:27:89:34:bb:e9:c1:85:8c:ec:9a:98:8c:57:e0:db:5e:10:
df:ca:2d:c8:f4:1d:c2:58:e3:f4:ce:c6:0e:6f:d2:bd:f8:06:
33:78:16:c4:0f:ba:51:7e:d3:6e:28:15:79:bb:20:3f:f2:0f:
b1:97:c9:6e:d5:ea:d1:80:08:4e:0a:2d:b2:25:b3:98:8d:e1:
dd:cc:a7:1d:50:2f:31:0e:86:55:89:62:f5:99:f2:0b:1f:d4:
c2:58:1f:a6:21:a9:4e:5d:1e:3a:8b:00:50:43:bb:b4:f9:6c:
1f:2d:8d:56:38:14:06:69:57:a6:ad:81:73:2f:41:88:92:14:
35:ba:59:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR6GE2msPMnrBVVuUCC2/tDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNGVmNGE4ZWQzNzExYjZhY2Q2OGMwZjQ4ZjYyMTgzMWZk
NWFhYWUwHhcNMjIxMTE1MDcwMjAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmZkMjBkYTJjMmI3NDllODQ5OWE5MmZhNmVhMGQxZGMzYzE4YWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr97STyuIOT6MuC9EtmhXwxcYVaLY
tOUFQw18JAzVCUZzlXR1vHdBIO2ralPXw+AfmLUdUk4U7tVkom5JHHZDvXOFRMqt
f7N7MlNW9r5bXtC6EpMZ/YrAAL6X8fDkjuaEM1/0BniLokWwM1Lf41ZS8YCWSOIm
JuYeKL2YN2qRXC4ba9j/DO8DHe47puzb8F96Tij4g4g2/mNiFKIiE0b/MrEcdCWU
4on1bPfDKy4MOEWYuiyR14rL/phxws5jPVEVxeCkDaBOFv20FSPffTqayaih4Nzu
6exozQsVo9zM+bp8Ftu3j4iGxDhOZD0itbnt4o1qmKmL+p0Q+UkqDEIBIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGb9INosK3SehJmpL6bqDR3DwYrOMB8GA1UdIwQY
MBaAFK9O9KjtNxG2rNaMD0j2IYMf1aquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjA3MHFPMDNFYmFzMW93UFNQWWhneF9WcXE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9lOGY0YjMtMjEyMC00ZWNiLTk2MDkt
Y2I5YzU4ZjUxMGNiLzEvWnYwZzJpd3JkSjZFbWFrdnB1b05IY1BCaXM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9lOGY0YjMtMjEyMC00ZWNiLTk2MDktY2I5YzU4ZjUxMGNi
LzEvcjA3MHFPMDNFYmFzMW93UFNQWWhneF9WcXE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuaT+MA0G
CSqGSIb3DQEBCwUAA4IBAQB8+LYwDsDHqY5BwABMmYMvPnoFiEMsy+BjdmJkTBLe
m6cJB2YXYmSH9Qd/MlBBSwOBukVUVokOF/SQbeVbFZq69g06mcenCKYCrvVGfW0c
AZjo+AVmqjoz6ZB/HYrfsArdCBilDyC51cBtxG06c26n2ZMqClCszWqHy00fWM4O
J4k0u+nBhYzsmpiMV+DbXhDfyi3I9B3CWOP0zsYOb9K9+AYzeBbED7pRftNuKBV5
uyA/8g+xl8lu1erRgAhOCi2yJbOYjeHdzKcdUC8xDoZViWL1mfILH9TCWB+mIalO
XR46iwBQQ7u0+WwfLY1WOBQGaVemrYFzL0GIkhQ1ull0
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:23 2023 by rpki-client on console-fra.rpki-client.org