Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z0Ilg5bvOfVRayC0IDti10-F3Jo.roa
File: Z0Ilg5bvOfVRayC0IDti10-F3Jo.roa (raw, json)
Hash identifier: vme9RvQT1M9ZEXQN6H4+Pg5anWGk5CItw1/FIm5J8CY=
Subject key identifier: 67:42:25:83:96:EF:39:F5:51:6B:20:B4:20:3B:62:D7:4F:85:DC:9A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 281F7397
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z0Ilg5bvOfVRayC0IDti10-F3Jo.roa
Signing time: Sat 01 Jan 2022 16:09:39 +0000
ROA not before: Sat 01 Jan 2022 16:09:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201012
IP address blocks: 146.158.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 673149847 (0x281f7397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6742258396ef39f5516b20b4203b62d74f85dc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d2:e7:ab:9b:0a:7e:1d:81:1f:8e:3a:41:f7:
cf:a6:bb:8d:62:ff:49:2b:4e:8b:07:24:11:dc:a7:
10:e4:41:50:3f:25:0d:02:7b:fa:24:ca:a1:9e:93:
fc:64:0b:20:9d:58:84:2a:13:8c:26:a0:3c:3f:d5:
25:d7:99:01:d2:49:f1:4a:65:2d:af:fc:32:c4:1e:
e2:30:03:1a:67:ce:bf:6e:ad:1d:6d:5e:4c:11:2b:
05:cb:8c:72:e5:f4:2b:95:3f:db:d2:18:ff:2e:99:
a0:ea:24:3f:96:9e:d9:60:60:5f:a9:53:38:85:23:
50:02:03:97:5e:3c:e1:7e:0e:96:56:a4:87:6e:10:
fd:ef:55:b4:fc:4b:b8:ef:49:23:44:cf:4d:ab:86:
1a:68:c2:61:95:c0:d5:27:da:eb:e5:94:68:af:67:
d3:18:fe:32:ff:ef:41:ca:d0:02:ed:e3:36:e1:fe:
66:68:62:11:e1:f6:a6:d3:61:9c:d1:1c:36:c2:c6:
f1:79:50:9b:67:79:3d:f6:49:7c:a4:48:ca:37:fa:
b7:45:bf:dc:83:06:58:de:02:8d:4e:fc:70:19:41:
db:65:00:f0:3c:15:d6:aa:b7:cb:fb:b0:61:92:24:
37:35:59:2a:82:7e:ee:14:96:3b:c5:cd:db:ae:cd:
92:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:42:25:83:96:EF:39:F5:51:6B:20:B4:20:3B:62:D7:4F:85:DC:9A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z0Ilg5bvOfVRayC0IDti10-F3Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.158.48.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:e0:e1:c9:39:db:98:23:b1:36:93:d4:bb:54:c2:ae:3a:66:
2d:d5:6c:8f:2a:ad:b3:c4:d5:ef:a7:05:31:8d:f1:fb:ff:89:
66:40:eb:6a:9c:3f:34:82:9f:33:1b:c0:1a:c0:33:bc:f6:d4:
c7:1d:b8:26:1c:83:73:0f:6f:9a:8e:99:db:b4:95:70:05:a6:
c4:24:f0:c9:e2:4f:d4:c2:09:5d:b7:94:57:10:cc:e9:e6:11:
aa:d4:12:0f:ee:ed:42:ea:5c:54:72:07:aa:29:16:12:78:01:
84:dd:58:d9:5c:58:61:5a:b1:b5:28:0c:7c:ba:1f:05:f5:83:
29:a1:6d:c0:e0:11:80:18:98:22:cc:9c:36:a2:c2:79:b4:06:
2b:40:50:7f:1f:15:09:d3:a4:37:8b:68:19:c9:67:b8:70:1c:
fb:b3:e0:01:32:73:b2:f6:62:01:18:67:4d:19:9d:f3:90:ab:
dd:e7:cf:26:dc:7f:99:63:23:d3:6e:fe:6a:9b:cc:3a:c8:19:
47:42:6e:fb:68:93:76:00:75:33:ed:58:a9:4e:08:3c:d1:c2:
e3:11:fb:4d:42:d2:23:a6:3c:28:66:f7:1a:f7:eb:25:a6:d1:
c7:1f:ff:dd:2a:b1:0b:64:e8:ef:8d:67:85:f0:ea:3d:35:ef:
4f:71:e2:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKB9zlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc0MjI1ODM5NmVm
MzlmNTUxNmIyMGI0MjAzYjYyZDc0Zjg1ZGM5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMfS56ubCn4dgR+OOkH3z6a7jWL/SStOiwckEdynEORBUD8l
DQJ7+iTKoZ6T/GQLIJ1YhCoTjCagPD/VJdeZAdJJ8UplLa/8MsQe4jADGmfOv26t
HW1eTBErBcuMcuX0K5U/29IY/y6ZoOokP5ae2WBgX6lTOIUjUAIDl1484X4Ollak
h24Q/e9VtPxLuO9JI0TPTauGGmjCYZXA1Sfa6+WUaK9n0xj+Mv/vQcrQAu3jNuH+
ZmhiEeH2ptNhnNEcNsLG8XlQm2d5PfZJfKRIyjf6t0W/3IMGWN4CjU78cBlB22UA
8DwV1qq3y/uwYZIkNzVZKoJ+7hSWO8XN267Nkk0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnQiWDlu859VFrILQgO2LXT4XcmjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L1owSWxnNWJ2T2ZWUmF5QzBJRHRpMTAtRjNKby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA5KeMDANBgkqhkiG9w0BAQsFAAOC
AQEAjuDhyTnbmCOxNpPUu1TCrjpmLdVsjyqts8TV76cFMY3x+/+JZkDrapw/NIKf
MxvAGsAzvPbUxx24JhyDcw9vmo6Z27SVcAWmxCTwyeJP1MIJXbeUVxDM6eYRqtQS
D+7tQupcVHIHqikWEngBhN1Y2VxYYVqxtSgMfLofBfWDKaFtwOARgBiYIsycNqLC
ebQGK0BQfx8VCdOkN4toGclnuHAc+7PgATJzsvZiARhnTRmd85Cr3efPJtx/mWMj
027+apvMOsgZR0Ju+2iTdgB1M+1YqU4IPNHC4xH7TULSI6Y8KGb3GvfrJabRxx//
3SqxC2To741nhfDqPTXvT3HiUg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org