Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/ZbpN0jvoa_NdCM01exY9bkvo8yI.roa
File: ZbpN0jvoa_NdCM01exY9bkvo8yI.roa (raw, json)
Hash identifier: +PJt2nOszJf8FeUR3aFUE3ThDfrMbmECTZAG2BrPPNo=
Subject key identifier: 65:BA:4D:D2:3B:E8:6B:F3:5D:08:CD:35:7B:16:3D:6E:4B:E8:F3:22
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 03A09E26
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/ZbpN0jvoa_NdCM01exY9bkvo8yI.roa
Signing time: Sat 01 Jan 2022 12:04:20 +0000
ROA not before: Sat 01 Jan 2022 12:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39247
IP address blocks: 195.72.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60857894 (0x3a09e26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Jan 1 12:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65ba4dd23be86bf35d08cd357b163d6e4be8f322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:7b:98:b0:13:77:b9:da:5e:b6:48:38:20:
42:1a:e5:d6:96:d5:64:cc:92:1e:df:98:af:43:5a:
96:ba:91:82:65:48:3e:0e:99:82:50:d6:28:1a:12:
9c:05:45:e8:3f:d1:e9:86:b0:47:df:06:85:73:1f:
59:cd:61:58:81:07:21:fe:5d:e5:c9:ae:0e:62:cc:
d1:e8:5f:e9:c7:24:48:9f:a5:cd:6f:64:11:d6:fc:
07:22:14:4c:7d:20:1a:c0:6a:98:53:0c:0c:17:5f:
54:cb:85:84:f3:4b:8f:70:60:a4:e0:8d:3c:95:ef:
ad:ea:98:16:6a:5a:8d:fb:02:3c:fe:65:1f:36:3a:
a1:08:81:7f:4d:34:92:25:bf:b7:68:ab:43:52:d1:
7a:5d:4c:e5:94:da:f5:66:1c:c4:be:b1:1f:30:8f:
28:ac:f3:bd:f3:da:20:25:57:e7:4f:82:55:ec:9d:
10:51:e2:81:75:0d:96:51:bc:2c:d0:9b:bf:90:55:
3b:aa:73:26:6d:69:28:6a:09:12:06:23:38:72:e5:
a7:42:f9:43:fb:4a:fc:50:e8:4a:47:de:46:68:66:
c2:b3:4f:72:28:d2:02:f3:2f:17:00:a1:67:6f:e3:
e0:b8:3c:f7:b9:24:92:ee:83:50:51:25:79:65:73:
e5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BA:4D:D2:3B:E8:6B:F3:5D:08:CD:35:7B:16:3D:6E:4B:E8:F3:22
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/ZbpN0jvoa_NdCM01exY9bkvo8yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.72.147.0/24
Signature Algorithm: sha256WithRSAEncryption
24:40:d8:bd:f1:39:83:d1:15:96:23:4f:89:2a:74:fa:07:5a:
4b:b5:4b:40:19:5f:75:07:1e:93:1a:53:e6:09:18:23:fe:28:
6f:93:d9:fc:07:e0:9a:a9:e6:bf:ce:64:5d:48:67:11:62:db:
42:8c:09:d0:b5:91:b0:14:a6:1d:61:33:74:36:fe:65:d1:9e:
e4:ef:8f:d7:ed:36:7a:07:2d:c0:5a:16:43:a0:cc:25:b8:e5:
2f:18:c3:c6:93:2f:71:12:4e:c5:91:35:ba:40:b4:01:7c:3a:
36:ba:ea:15:6b:6a:fd:ca:b1:1e:45:4e:47:93:57:ab:73:2a:
bb:56:96:48:0d:b7:05:7a:41:89:71:62:a3:80:0d:a8:cf:e8:
35:d9:80:48:ae:c0:cb:3d:66:a3:75:e3:30:0d:bd:bd:5e:3a:
6d:e4:be:3e:71:aa:c9:4b:ea:bd:1a:aa:8f:b6:b2:b5:11:ef:
7b:46:09:c6:2c:8b:44:41:1c:11:62:7f:de:a8:b3:0e:bb:2f:
29:45:ab:be:b6:7b:9e:cb:e8:f9:60:61:48:be:95:12:9b:66:
1c:5c:95:f9:e2:1d:31:e3:d7:c5:b8:49:e6:45:5d:7c:28:f9:
09:7e:ca:1e:4c:bd:1c:74:ba:44:c8:9d:ea:e1:12:a3:2c:8f:
5b:42:b3:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA6CeJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Y2Y1MzQwMmZhNzZmYTA2Mzc2Y2RlYTZiY2QzOTVlMTgwMDc5ZGI3MB4XDTIyMDEw
MTEyMDQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjViYTRkZDIzYmU4
NmJmMzVkMDhjZDM1N2IxNjNkNmU0YmU4ZjMyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQle5iwE3e52l62SDggQhrl1pbVZMySHt+Yr0NalrqRgmVI
Pg6ZglDWKBoSnAVF6D/R6YawR98GhXMfWc1hWIEHIf5d5cmuDmLM0ehf6cckSJ+l
zW9kEdb8ByIUTH0gGsBqmFMMDBdfVMuFhPNLj3BgpOCNPJXvreqYFmpajfsCPP5l
HzY6oQiBf000kiW/t2irQ1LRel1M5ZTa9WYcxL6xHzCPKKzzvfPaICVX50+CVeyd
EFHigXUNllG8LNCbv5BVO6pzJm1pKGoJEgYjOHLlp0L5Q/tK/FDoSkfeRmhmwrNP
cijSAvMvFwChZ2/j4Lg897kkku6DUFEleWVz5ZECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRluk3SO+hr810IzTV7Fj1uS+jzIjAfBgNVHSMEGDAWgBT89TQC+nb6Bjds
3qa805XhgAedtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19QVTBBdnAyLWdZM2JONm12Tk9WNFlBSG5iYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTYvOGM4MzEzLWVkMWMtNDE0Yi1iNGNjLTVlZDA1NzAyNTUxNi8x
L1picE4wanZvYV9OZENNMDFleFk5Ymt2bzh5SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTYv
OGM4MzEzLWVkMWMtNDE0Yi1iNGNjLTVlZDA1NzAyNTUxNi8xL19QVTBBdnAyLWdZ
M2JONm12Tk9WNFlBSG5iYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNIkzANBgkqhkiG9w0BAQsFAAOC
AQEAJEDYvfE5g9EVliNPiSp0+gdaS7VLQBlfdQcekxpT5gkYI/4ob5PZ/Afgmqnm
v85kXUhnEWLbQowJ0LWRsBSmHWEzdDb+ZdGe5O+P1+02egctwFoWQ6DMJbjlLxjD
xpMvcRJOxZE1ukC0AXw6NrrqFWtq/cqxHkVOR5NXq3Mqu1aWSA23BXpBiXFio4AN
qM/oNdmASK7Ayz1mo3XjMA29vV46beS+PnGqyUvqvRqqj7aytRHve0YJxiyLREEc
EWJ/3qizDrsvKUWrvrZ7nsvo+WBhSL6VEptmHFyV+eIdMePXxbhJ5kVdfCj5CX7K
Hky9HHS6RMid6uESoyyPW0KzGw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:52 2025 by rpki-client