Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/rz_UwZmU3pt_yM4HRGqmPGDATeU.roa
File: rz_UwZmU3pt_yM4HRGqmPGDATeU.roa (raw, json)
Hash identifier: nwQcNx+qsRuebLsmXAQ5qS0UY9FTC8HSRtbxwnr8Mxs=
Subject key identifier: AF:3F:D4:C1:99:94:DE:9B:7F:C8:CE:07:44:6A:A6:3C:60:C0:4D:E5
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 05211077
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/rz_UwZmU3pt_yM4HRGqmPGDATeU.roa
Signing time: Sat 01 Jan 2022 05:01:49 +0000
ROA not before: Sat 01 Jan 2022 05:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208306
IP address blocks: 176.222.63.0/24 maxlen: 24
176.222.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86052983 (0x5211077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Jan 1 05:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af3fd4c19994de9b7fc8ce07446aa63c60c04de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:36:2b:91:53:2e:97:b3:1d:0c:ea:3a:ef:ed:
e0:86:cd:bd:28:17:2f:45:10:a1:ac:18:14:15:62:
21:f5:ef:0c:7a:9c:dd:ff:e9:cf:c5:b0:d9:55:54:
13:a7:a4:2e:e2:20:76:64:44:f0:d7:8f:dd:3e:cc:
26:df:0e:42:d7:e8:28:70:e8:47:df:58:e7:11:65:
d2:8d:2a:4d:95:2f:4f:af:b4:39:58:b4:9e:7a:7b:
22:8a:ab:89:5e:1f:9c:76:09:94:6c:f1:81:bf:9d:
5c:df:8b:e3:55:ad:f7:74:84:a4:90:0a:3d:56:90:
47:a9:07:d8:4e:27:2f:88:98:e6:19:21:26:c1:a6:
b4:75:dc:47:28:75:c9:fd:df:c4:5c:f9:46:db:41:
7f:92:42:8b:6c:25:f2:d1:85:05:29:64:03:99:14:
8a:e7:5e:ea:3a:ba:2d:ee:b9:0c:60:a1:f9:47:93:
4d:86:7b:db:21:84:4c:36:be:94:1c:b9:94:6a:c5:
3e:c4:39:2f:64:64:b7:6d:fd:d5:44:a4:f4:4a:af:
d1:26:56:f6:b3:9b:7e:07:6c:3c:81:b6:ab:3a:a1:
17:9c:b6:91:16:98:8f:4f:3e:48:dd:86:ab:7f:f6:
99:d2:81:0c:e2:76:02:ad:9f:97:98:38:25:6e:b8:
b3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3F:D4:C1:99:94:DE:9B:7F:C8:CE:07:44:6A:A6:3C:60:C0:4D:E5
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/rz_UwZmU3pt_yM4HRGqmPGDATeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.60.0/24
176.222.63.0/24
Signature Algorithm: sha256WithRSAEncryption
25:d5:35:cb:63:39:26:1e:90:fc:2f:bb:33:c3:2c:70:a9:04:
9d:1b:96:e0:44:7f:3e:c7:5c:1e:5d:5c:af:4a:80:a3:61:5f:
93:2c:ed:eb:e2:ca:7c:55:2a:cf:f4:41:67:53:be:28:b3:18:
3c:90:7a:ea:f0:55:81:c4:3b:54:46:3c:2e:c9:ac:12:b7:95:
53:4f:db:2a:94:e1:f8:62:d1:d0:50:06:0e:3f:c1:b9:3a:39:
17:f1:8f:84:4b:48:14:c2:23:c6:01:23:fa:8f:f6:14:be:93:
97:9c:f9:ac:e8:81:3b:f7:b7:54:f8:50:55:b3:36:f4:f4:0f:
e3:ed:a7:c1:27:9a:97:b7:4e:e5:92:24:fd:c6:18:b7:3d:79:
a4:b4:52:0a:0c:53:b0:f4:39:01:51:44:09:1d:f4:3f:a6:89:
2f:1e:93:e2:5f:c0:c5:ef:c9:b7:88:18:1e:a0:63:1f:ec:17:
b0:80:3b:ad:d6:66:a9:23:3d:5e:f2:a2:2c:c3:cc:a2:d4:8f:
4e:94:dc:5b:8c:68:28:fa:9e:f5:df:5b:55:63:d7:20:71:5b:
6d:7e:ee:8e:e8:9a:4e:92:93:4f:4f:af:33:5a:e3:b1:56:b0:
9b:ad:33:3c:f9:58:70:b7:2f:2a:bc:ef:67:a4:18:ee:13:a5:
8b:e8:b8:02
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBSEQdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MGE0ZmMyYWYzOGFmNWI0ZjU4NjFlMjdmZDAwN2U2MjRiNWY5YjAyMB4XDTIyMDEw
MTA1MDE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWYzZmQ0YzE5OTk0
ZGU5YjdmYzhjZTA3NDQ2YWE2M2M2MGMwNGRlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOw2K5FTLpezHQzqOu/t4IbNvSgXL0UQoawYFBViIfXvDHqc
3f/pz8Ww2VVUE6ekLuIgdmRE8NeP3T7MJt8OQtfoKHDoR99Y5xFl0o0qTZUvT6+0
OVi0nnp7IoqriV4fnHYJlGzxgb+dXN+L41Wt93SEpJAKPVaQR6kH2E4nL4iY5hkh
JsGmtHXcRyh1yf3fxFz5RttBf5JCi2wl8tGFBSlkA5kUiude6jq6Le65DGCh+UeT
TYZ72yGETDa+lBy5lGrFPsQ5L2Rkt2391USk9Eqv0SZW9rObfgdsPIG2qzqhF5y2
kRaYj08+SN2Gq3/2mdKBDOJ2Aq2fl5g4JW64szUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSvP9TBmZTem3/IzgdEaqY8YMBN5TAfBgNVHSMEGDAWgBSwpPwq84r1tPWG
Hif9AH5iS1+bAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NLVDhLdk9LOWJUMWhoNG5fUUItWWt0Zm13SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvYTgwZGJmLTVjYjQtNGUyNi1hZGFmLTY4ZmUwODYyMjYxNC8x
L3J6X1V3Wm1VM3B0X3lNNEhSR3FtUEdEQVRlVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
YTgwZGJmLTVjYjQtNGUyNi1hZGFmLTY4ZmUwODYyMjYxNC8xL3NLVDhLdk9LOWJU
MWhoNG5fUUItWWt0Zm13SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALDePAMEALDePzANBgkqhkiG9w0B
AQsFAAOCAQEAJdU1y2M5Jh6Q/C+7M8MscKkEnRuW4ER/PsdcHl1cr0qAo2Ffkyzt
6+LKfFUqz/RBZ1O+KLMYPJB66vBVgcQ7VEY8LsmsEreVU0/bKpTh+GLR0FAGDj/B
uTo5F/GPhEtIFMIjxgEj+o/2FL6Tl5z5rOiBO/e3VPhQVbM29PQP4+2nwSeal7dO
5ZIk/cYYtz15pLRSCgxTsPQ5AVFECR30P6aJLx6T4l/Axe/Jt4gYHqBjH+wXsIA7
rdZmqSM9XvKiLMPMotSPTpTcW4xoKPqe9d9bVWPXIHFbbX7ujuiaTpKTT0+vM1rj
sVawm60zPPlYcLcvKrzvZ6QY7hOli+i4Ag==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:41 2024 by rpki-client on console-ams.rpki-client.org