Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZKLVXCLQScP7P0rrYt70MFOMDVI.roa
File: ZKLVXCLQScP7P0rrYt70MFOMDVI.roa (raw, json)
Hash identifier: t/xtRnIuQ02rktN70A8QwC1SODsHkp2L5dY+vwKcNq4=
Subject key identifier: 64:A2:D5:5C:22:D0:49:C3:FB:3F:4A:EB:62:DE:F4:30:53:8C:0D:52
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01823A491D01D71979F72009C13FC52AF04F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZKLVXCLQScP7P0rrYt70MFOMDVI.roa
Signing time: Tue 26 Jul 2022 11:34:06 +0000
ROA not before: Tue 26 Jul 2022 11:34:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208695
IP address blocks: 201.49.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:49:1d:01:d7:19:79:f7:20:09:c1:3f:c5:2a:f0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 26 11:34:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64a2d55c22d049c3fb3f4aeb62def430538c0d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:37:f7:21:09:6b:62:99:42:90:29:20:21:1f:
d7:e6:4c:56:dd:94:07:09:60:27:88:4d:4a:34:e2:
c9:55:b7:17:5f:9f:f8:d3:4c:be:6d:ad:14:db:8b:
bf:6e:3b:b1:d7:d0:04:45:82:f9:c4:96:12:b5:a2:
bc:4b:78:40:c9:b9:b7:05:a3:a8:c9:22:a6:c3:7e:
35:ac:10:6c:6b:fc:d2:09:fe:61:52:3e:c6:42:34:
49:4d:91:a8:62:3f:2e:b0:46:14:56:d5:4a:9d:94:
da:16:b9:4d:fd:2b:b8:9d:3f:4a:91:a8:6f:b3:ec:
3c:e3:1a:31:b4:38:fa:11:a1:90:45:d5:01:52:73:
e1:d5:6f:48:2e:e7:4b:14:b8:23:7d:0b:26:9f:bf:
f5:14:d7:19:e3:1b:b3:f1:9e:98:b4:75:32:e8:83:
26:56:11:8d:60:86:75:ad:9a:63:b1:96:85:5b:b2:
c8:c0:fe:5a:e3:ee:8f:4e:1e:4d:47:78:04:38:d7:
ab:45:cb:c4:63:0e:60:c8:d8:d0:a0:7d:6b:0c:52:
4c:1e:84:ea:d9:c3:a4:fe:22:28:ce:db:ce:30:2c:
21:b0:fe:f3:ad:e2:a5:de:df:3a:4e:09:6a:fb:25:
8d:29:fe:ce:c9:db:a3:ad:00:87:9a:40:05:ce:87:
b8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A2:D5:5C:22:D0:49:C3:FB:3F:4A:EB:62:DE:F4:30:53:8C:0D:52
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZKLVXCLQScP7P0rrYt70MFOMDVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.49.188.0/24
Signature Algorithm: sha256WithRSAEncryption
94:57:c1:f9:f6:b6:bd:49:83:82:96:3f:d6:a3:68:6a:56:be:
bc:7b:6f:09:0f:c2:bb:a3:86:13:2a:65:80:9e:95:dd:53:54:
fd:3f:9c:23:2d:00:1f:af:66:2a:ba:4e:8e:87:4a:79:23:64:
62:e8:d2:64:96:de:e3:1d:33:33:c8:f2:4d:6d:d2:f0:48:94:
99:aa:e1:29:cd:69:2c:c1:13:c7:c0:82:19:9a:63:ce:36:7e:
cc:8d:37:a1:f9:5c:cd:7c:07:c0:5b:fd:08:e0:0b:74:f7:0c:
e3:d8:6f:fc:05:3d:f9:ea:5b:e7:73:e4:76:5a:25:7b:c4:00:
bc:08:03:b9:e2:89:dd:dc:81:7a:08:63:81:ba:00:8d:a4:8d:
59:4d:a2:db:be:3b:3f:63:33:a3:35:a5:fb:c1:ce:fc:8f:a0:
1a:10:eb:e9:4b:8f:80:36:55:5f:10:e0:08:3d:06:58:20:a2:
7c:10:62:64:5a:c1:29:f5:db:18:8c:86:0f:e8:71:e2:3a:8a:
c7:9b:13:28:9f:ab:eb:fd:78:2d:0b:f1:27:15:db:af:e5:ec:
f8:4f:05:a3:11:73:9f:e0:4b:0f:34:b6:6f:8c:2a:eb:4f:ae:
89:89:f0:2e:be:f2:78:55:84:17:de:cb:f6:6e:e5:a0:b2:bc:
48:2a:89:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI6SR0B1xl59yAJwT/FKvBPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjIwNzI2MTEzNDA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGEyZDU1YzIyZDA0OWMzZmIzZjRhZWI2MmRlZjQzMDUzOGMwZDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTf3IQlrYplCkCkgIR/X5kxW3ZQH
CWAniE1KNOLJVbcXX5/400y+ba0U24u/bjux19AERYL5xJYStaK8S3hAybm3BaOo
ySKmw341rBBsa/zSCf5hUj7GQjRJTZGoYj8usEYUVtVKnZTaFrlN/Su4nT9Kkahv
s+w84xoxtDj6EaGQRdUBUnPh1W9ILudLFLgjfQsmn7/1FNcZ4xuz8Z6YtHUy6IMm
VhGNYIZ1rZpjsZaFW7LIwP5a4+6PTh5NR3gEONerRcvEYw5gyNjQoH1rDFJMHoTq
2cOk/iIoztvOMCwhsP7zreKl3t86Tglq+yWNKf7OydujrQCHmkAFzoe4ZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSi1Vwi0EnD+z9K62Le9DBTjA1SMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvWktMVlhDTFFTY1A3UDBycll0NzBNRk9NRFZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyTG8MA0G
CSqGSIb3DQEBCwUAA4IBAQCUV8H59ra9SYOClj/Wo2hqVr68e28JD8K7o4YTKmWA
npXdU1T9P5wjLQAfr2Yquk6Oh0p5I2Ri6NJklt7jHTMzyPJNbdLwSJSZquEpzWks
wRPHwIIZmmPONn7MjTeh+VzNfAfAW/0I4At09wzj2G/8BT356lvnc+R2WiV7xAC8
CAO54ond3IF6CGOBugCNpI1ZTaLbvjs/YzOjNaX7wc78j6AaEOvpS4+ANlVfEOAI
PQZYIKJ8EGJkWsEp9dsYjIYP6HHiOorHmxMon6vr/XgtC/EnFduv5ez4TwWjEXOf
4EsPNLZvjCrrT66JifAuvvJ4VYQX3sv2buWgsrxIKomy
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org