Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ZLNUbqaUGMqqOfaV02OUAX_AcJY.roa
File: ZLNUbqaUGMqqOfaV02OUAX_AcJY.roa (raw, json)
Hash identifier: ITkcxXit0+0zljPPy70inxoQ8OjLG0C+oqWavilexQ0=
Subject key identifier: 64:B3:54:6E:A6:94:18:CA:AA:39:F6:95:D3:63:94:01:7F:C0:70:96
Certificate issuer: /CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Certificate serial: 0854CCA7
Authority key identifier: 9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ZLNUbqaUGMqqOfaV02OUAX_AcJY.roa
Signing time: Sat 01 Jan 2022 09:00:30 +0000
ROA not before: Sat 01 Jan 2022 09:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.97.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139775143 (0x854cca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e0374d71bc57db96dc393e91febb9e9d59fef9a
Validity
Not Before: Jan 1 09:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64b3546ea69418caaa39f695d36394017fc07096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:12:b0:a9:18:a2:5a:b1:fd:d9:eb:45:f1:af:
a4:5a:92:a0:cf:4b:a8:b6:55:3e:a0:6d:dd:7d:18:
7e:38:6e:8c:63:82:3b:2a:b9:0b:b2:a9:8a:98:6a:
5c:1c:40:0c:03:5c:63:38:62:e8:80:6f:b5:9c:e7:
83:20:08:67:2b:92:09:34:c2:13:ee:ed:c7:4a:6d:
17:25:bf:c2:b1:a7:ce:55:fd:d4:61:95:a7:50:d9:
79:0b:2f:fb:87:d0:35:c7:f2:4a:fb:83:47:34:bc:
cd:fb:fc:36:cd:9e:b4:83:bb:41:c6:a7:b8:be:ec:
f2:ab:a3:4b:94:22:33:83:90:ff:f4:aa:59:ed:f8:
36:fd:c6:a2:fe:f1:eb:3c:3d:5b:a2:03:a0:d1:75:
bc:e0:07:d9:d5:81:d8:e8:ff:e1:5b:9d:42:95:c7:
d4:85:73:1f:4a:cf:9d:21:b9:94:b9:4b:d9:0d:b6:
70:62:7d:78:79:34:d1:d0:81:22:39:c4:68:d4:f1:
b6:67:12:ef:19:3e:17:aa:d0:a6:29:72:20:87:e4:
7a:f6:5d:ee:6e:89:f6:c0:6b:51:f6:f6:88:82:ff:
7e:21:7a:4a:1d:9b:bf:a0:a3:80:18:fa:99:16:b4:
66:62:dc:13:aa:60:42:19:f2:55:36:bc:a6:b9:93:
f5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B3:54:6E:A6:94:18:CA:AA:39:F6:95:D3:63:94:01:7F:C0:70:96
X509v3 Authority Key Identifier:
keyid:9E:03:74:D7:1B:C5:7D:B9:6D:C3:93:E9:1F:EB:B9:E9:D5:9F:EF:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngN01xvFfbltw5PpH-u56dWf75o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ZLNUbqaUGMqqOfaV02OUAX_AcJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c43a75-a326-4c6d-87ca-817d84e53d53/1/ngN01xvFfbltw5PpH-u56dWf75o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:5c:e3:a8:73:4d:d9:70:e7:da:35:81:31:08:e1:14:a1:de:
ab:e5:f1:24:b5:e1:26:1a:29:b9:f9:9e:4c:c6:81:1e:63:0c:
8f:9e:bf:92:ab:d6:05:b0:12:53:6f:1b:e1:b2:3a:6f:be:ef:
b2:f4:48:bf:d7:64:bf:d0:ce:65:ec:9a:6f:0a:73:ea:75:42:
55:03:23:9b:55:96:79:d9:1a:f1:be:ab:53:b4:f8:e1:2b:32:
e6:eb:e1:9a:49:9f:00:00:db:9c:d1:17:31:3e:7c:ae:bb:62:
7a:3f:f9:46:13:0c:56:1d:82:83:e6:fe:f9:ab:85:85:c8:c6:
de:34:e1:22:d9:69:5c:dd:24:5c:64:f4:76:b6:60:8f:e9:24:
63:f8:17:1a:bf:d3:89:1a:6a:a0:de:5c:44:bc:8d:39:27:71:
ce:57:73:62:42:e2:82:55:e8:7c:42:ac:4a:59:99:a4:d3:91:
c5:13:24:d7:bb:5a:f7:a4:2b:ec:13:f8:e1:bc:81:a1:d7:88:
67:36:83:ea:fb:87:8a:31:dd:be:2b:58:90:94:88:af:20:ef:
72:c0:cc:d1:93:46:67:e2:c2:2e:0a:7f:9a:79:b3:28:ae:4a:
2a:67:80:07:da:c7:37:06:9c:38:b9:a9:95:e9:25:13:db:59:
23:da:a0:68
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECFTMpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZTAzNzRkNzFiYzU3ZGI5NmRjMzkzZTkxZmViYjllOWQ1OWZlZjlhMB4XDTIyMDEw
MTA5MDAzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRiMzU0NmVhNjk0
MThjYWFhMzlmNjk1ZDM2Mzk0MDE3ZmMwNzA5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKwSsKkYolqx/dnrRfGvpFqSoM9LqLZVPqBt3X0YfjhujGOC
Oyq5C7KpiphqXBxADANcYzhi6IBvtZzngyAIZyuSCTTCE+7tx0ptFyW/wrGnzlX9
1GGVp1DZeQsv+4fQNcfySvuDRzS8zfv8Ns2etIO7QcanuL7s8qujS5QiM4OQ//Sq
We34Nv3Gov7x6zw9W6IDoNF1vOAH2dWB2Oj/4VudQpXH1IVzH0rPnSG5lLlL2Q22
cGJ9eHk00dCBIjnEaNTxtmcS7xk+F6rQpilyIIfkevZd7m6J9sBrUfb2iIL/fiF6
Sh2bv6CjgBj6mRa0ZmLcE6pgQhnyVTa8prmT9WMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRks1RuppQYyqo59pXTY5QBf8BwljAfBgNVHSMEGDAWgBSeA3TXG8V9uW3D
k+kf67np1Z/vmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25nTjAxeHZGZmJsdHc1UHBILXU1NmRXZjc1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvYzQzYTc1LWEzMjYtNGM2ZC04N2NhLTgxN2Q4NGU1M2Q1My8x
L1pMTlVicWFVR01xcU9mYVYwMk9VQVhfQWNKWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
YzQzYTc1LWEzMjYtNGM2ZC04N2NhLTgxN2Q4NGU1M2Q1My8xL25nTjAxeHZGZmJs
dHc1UHBILXU1NmRXZjc1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlhCjANBgkqhkiG9w0BAQsFAAOC
AQEAGlzjqHNN2XDn2jWBMQjhFKHeq+XxJLXhJhopufmeTMaBHmMMj56/kqvWBbAS
U28b4bI6b77vsvRIv9dkv9DOZeyabwpz6nVCVQMjm1WWedka8b6rU7T44Ssy5uvh
mkmfAADbnNEXMT58rrtiej/5RhMMVh2Cg+b++auFhcjG3jThItlpXN0kXGT0drZg
j+kkY/gXGr/TiRpqoN5cRLyNOSdxzldzYkLiglXofEKsSlmZpNORxRMk17ta96Qr
7BP44byBodeIZzaD6vuHijHdvitYkJSIryDvcsDM0ZNGZ+LCLgp/mnmzKK5KKmeA
B9rHNwacOLmpleklE9tZI9qgaA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:40 2023 by rpki-client on console-ams.rpki-client.org