Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Zi-15BhLN9renWDmQVR4GTbaW_Q.roa
File: Zi-15BhLN9renWDmQVR4GTbaW_Q.roa (raw, json)
Hash identifier: loaB4YixulR1rTqvyqxIIP8N3sVIq8QMeeuT8I1aWUE=
Subject key identifier: 66:2F:B5:E4:18:4B:37:DA:DE:9D:60:E6:41:54:78:19:36:DA:5B:F4
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: B53B
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Zi-15BhLN9renWDmQVR4GTbaW_Q.roa
Signing time: Wed 26 Jan 2022 08:33:03 +0000
ROA not before: Wed 26 Jan 2022 08:33:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.63.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46395 (0xb53b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Jan 26 08:33:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=662fb5e4184b37dade9d60e64154781936da5bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4d:e1:69:e5:9b:5d:fa:5a:a3:a5:51:77:0d:
9f:bd:fb:2b:d6:24:b0:50:90:9b:bf:ee:3c:b4:ec:
b6:e9:28:7a:5a:5b:2e:2f:a6:ee:13:3a:39:af:27:
6b:a8:78:1d:c9:bf:56:51:98:b9:6e:a3:64:cd:42:
2c:35:1e:51:e9:59:63:ce:f7:e3:bc:a7:29:96:ae:
0e:6e:87:d6:3b:ea:6f:d2:0e:34:66:c7:52:6f:df:
dd:5c:b5:47:2c:ce:ad:55:8d:fa:46:66:6a:81:3f:
a2:01:95:23:75:16:8b:8f:79:87:4a:f4:a6:d0:59:
fc:20:b9:b4:ad:1c:d4:08:6a:6d:29:f4:56:2d:29:
03:49:f1:d1:6c:5f:4f:3a:9e:47:36:27:71:a4:18:
0b:10:ab:80:f6:85:e4:eb:a5:b0:bb:a2:13:b5:2d:
5b:7e:48:21:59:1e:7f:0c:41:55:93:eb:e6:83:8a:
72:45:22:5f:95:23:aa:e7:ee:c5:23:a4:24:fc:2f:
78:4c:38:ac:55:0c:bd:50:f2:0b:d6:47:27:53:a9:
ee:21:47:01:d6:4f:c3:5a:5a:10:b6:21:24:b2:e2:
69:7c:a9:c2:f5:ce:71:dd:79:7f:c2:3c:33:81:6d:
f1:66:0c:8b:c7:19:6d:d5:98:88:8f:b7:e1:07:f8:
54:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2F:B5:E4:18:4B:37:DA:DE:9D:60:E6:41:54:78:19:36:DA:5B:F4
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Zi-15BhLN9renWDmQVR4GTbaW_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.33.0/24
Signature Algorithm: sha256WithRSAEncryption
16:52:4b:fc:53:22:bb:31:3e:51:86:02:1a:fa:4b:a8:cd:8f:
f2:b5:4a:90:97:48:b6:9f:ce:78:46:89:ee:8e:b6:f8:94:b1:
45:d2:82:53:9a:bb:0b:ae:eb:bb:4b:c3:4e:96:32:b5:7f:ac:
2a:52:79:e6:94:9c:24:52:e0:7b:70:9f:88:c8:67:59:15:44:
9d:41:b9:c9:67:65:ed:f8:33:9b:9c:30:44:60:27:24:b4:92:
ea:5e:a8:b6:50:d5:60:28:88:44:3b:3c:57:7d:e4:f3:ce:48:
96:82:08:45:b9:98:cb:6c:36:1b:da:9e:08:62:19:eb:f5:d6:
21:f8:97:10:ae:ba:e4:52:ad:66:b1:6c:0b:d3:56:86:b8:89:
9a:10:d4:c0:f1:88:e5:26:de:be:6a:8d:40:d2:a5:4c:39:28:
2a:61:a6:30:a6:78:34:0e:75:01:68:45:31:28:1f:57:f3:a0:
25:b5:53:e5:9a:48:48:df:7e:38:30:2a:f4:53:fb:d2:a2:11:
de:06:3e:1a:12:6e:b1:e1:49:01:d7:17:96:fc:ca:cd:fc:1e:
5c:df:bb:c4:6a:92:04:be:ad:74:e7:1a:37:e5:dc:1a:6a:83:
22:61:4d:d3:e3:47:b1:37:ed:b4:fe:a0:30:f8:5a:b7:51:80:
b4:14:56:43
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDALU7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
ZGQxMWQzNDZiNjNiYjFlYjIyYTA3YzI2Y2MxMjkxYTJhMDY4OTUwHhcNMjIwMTI2
MDgzMzAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2NjJmYjVlNDE4NGIz
N2RhZGU5ZDYwZTY0MTU0NzgxOTM2ZGE1YmY0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAm03haeWbXfpao6VRdw2fvfsr1iSwUJCbv+48tOy26Sh6Wlsu
L6buEzo5rydrqHgdyb9WUZi5bqNkzUIsNR5R6VljzvfjvKcplq4ObofWO+pv0g40
ZsdSb9/dXLVHLM6tVY36RmZqgT+iAZUjdRaLj3mHSvSm0Fn8ILm0rRzUCGptKfRW
LSkDSfHRbF9POp5HNidxpBgLEKuA9oXk66Wwu6ITtS1bfkghWR5/DEFVk+vmg4py
RSJflSOq5+7FI6Qk/C94TDisVQy9UPIL1kcnU6nuIUcB1k/DWloQtiEksuJpfKnC
9c5x3Xl/wjwzgW3xZgyLxxlt1ZiIj7fhB/hUgQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGYvteQYSzfa3p1g5kFUeBk22lv0MB8GA1UdIwQYMBaAFLPdEdNGtjux6yKg
fCbMEpGioGiVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
czkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1LzEv
WmktMTVCaExOOXJlbldEbVFWUjRHVGJhV19RLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9h
NDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1LzEvczkwUjAwYTJPN0hy
SXFCOEpzd1NrYUtnYUpVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT8hMA0GCSqGSIb3DQEBCwUAA4IB
AQAWUkv8UyK7MT5RhgIa+kuozY/ytUqQl0i2n854Ronujrb4lLFF0oJTmrsLruu7
S8NOljK1f6wqUnnmlJwkUuB7cJ+IyGdZFUSdQbnJZ2Xt+DObnDBEYCcktJLqXqi2
UNVgKIhEOzxXfeTzzkiWgghFuZjLbDYb2p4IYhnr9dYh+JcQrrrkUq1msWwL01aG
uImaENTA8YjlJt6+ao1A0qVMOSgqYaYwpng0DnUBaEUxKB9X86AltVPlmkhI3344
MCr0U/vSohHeBj4aEm6x4UkB1xeW/MrN/B5c37vEapIEvq105xo35dwaaoMiYU3T
40exN+20/qAw+Fq3UYC0FFZD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org