Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/ZUNj91sdVWHZr4BeSwyZIAi_cyY.roa
File: ZUNj91sdVWHZr4BeSwyZIAi_cyY.roa (raw, json)
Hash identifier: 2ohSLipn5U/0lmj4elyls/wgLnNg83e1tySX1rZlqC0=
Subject key identifier: 65:43:63:F7:5B:1D:55:61:D9:AF:80:5E:4B:0C:99:20:08:BF:73:26
Certificate issuer: /CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Certificate serial: 01837DFBF79CBFE742857A03997AE65EDC8F
Authority key identifier: 93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/ZUNj91sdVWHZr4BeSwyZIAi_cyY.roa
Signing time: Tue 27 Sep 2022 08:06:48 +0000
ROA not before: Tue 27 Sep 2022 08:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205660
IP address blocks: 185.188.2.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:fb:f7:9c:bf:e7:42:85:7a:03:99:7a:e6:5e:dc:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Validity
Not Before: Sep 27 08:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=654363f75b1d5561d9af805e4b0c992008bf7326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1b:b1:95:bf:d0:9c:33:4f:17:f0:11:f4:1f:
0f:d5:92:a3:3e:b7:80:5d:a4:74:d1:dc:e2:2b:04:
00:ae:f7:d0:98:9c:58:0c:33:77:cb:02:e2:f6:c0:
2f:85:1b:5f:77:35:3f:38:bb:36:ec:3b:45:69:eb:
79:f7:d1:84:75:bd:fd:59:07:0f:4d:e7:8a:13:5a:
fb:12:1e:54:de:81:b7:51:cc:0a:03:e9:3d:66:0a:
65:4d:9f:68:ce:a8:2f:66:c5:4f:61:d8:b1:7f:f2:
00:de:50:5f:60:03:70:65:db:ea:f1:89:ef:08:3d:
8e:bc:e7:b6:b3:94:e7:30:89:9e:1e:9f:b7:8a:11:
2c:25:f8:db:b2:4d:5a:6d:ed:33:7e:b3:0c:f5:e8:
31:6f:c1:f2:e0:d7:8b:db:50:11:f9:07:75:dd:95:
7c:d5:9b:e9:22:33:db:b8:48:13:18:f6:43:6f:9d:
47:13:a8:7b:86:f9:ee:e2:bc:0c:4a:de:e2:50:c2:
50:cb:c7:5c:90:fd:e7:67:54:67:46:a0:47:d6:39:
e9:96:db:eb:aa:70:14:b3:17:dd:7b:9c:36:e2:fa:
63:21:34:91:a8:e5:92:32:4c:11:3d:e4:70:1f:81:
c2:7b:4c:95:a4:68:22:cd:59:47:60:8a:37:6e:44:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:43:63:F7:5B:1D:55:61:D9:AF:80:5E:4B:0C:99:20:08:BF:73:26
X509v3 Authority Key Identifier:
keyid:93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/ZUNj91sdVWHZr4BeSwyZIAi_cyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.2.0/23
Signature Algorithm: sha256WithRSAEncryption
92:46:b0:e9:cd:1e:8b:69:a0:bd:d3:81:b3:00:31:79:4d:52:
d9:c7:fa:b8:03:69:2d:4d:c4:bd:3e:38:1d:4f:a0:0f:ad:15:
5e:53:b2:39:24:e3:92:c5:92:b6:1b:79:8b:d3:5f:f5:eb:0e:
18:81:55:bc:2a:f1:07:d0:65:47:77:08:1c:59:35:bf:11:d9:
fd:6f:62:81:bf:05:19:31:dc:ab:99:92:c7:6e:d2:93:95:63:
be:7d:59:9d:65:12:ce:db:77:48:55:e6:09:df:81:47:92:d1:
b6:da:0b:60:cf:f6:cd:38:5b:5f:6d:97:00:82:03:3f:e9:26:
fa:fc:eb:3d:9a:59:9b:c8:fa:c5:91:99:ec:14:0e:2f:bf:8b:
fc:09:7c:32:76:75:b3:22:27:a1:29:b7:37:15:97:7c:14:21:
c8:f8:41:57:a6:12:a4:52:3a:20:b0:c0:cb:3a:74:36:4a:67:
b8:1c:7d:3b:dc:01:84:2d:87:d6:12:92:d5:23:c9:df:59:22:
5d:ba:d2:19:7b:80:8a:e2:97:3c:bb:20:00:41:af:bc:24:0c:
8c:58:6b:23:cf:c3:5c:45:36:58:64:2a:55:e8:42:c0:38:fe:
37:4c:13:42:83:ff:c4:9b:b1:06:1b:3f:44:a0:44:67:4b:29:
5e:a8:14:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN9+/ecv+dChXoDmXrmXtyPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZGM0NWZmZTEzZjg0MWYxODhhZjc0M2JkN2RjMzRlZDU0
ODA1ZDQwHhcNMjIwOTI3MDgwNjQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTQzNjNmNzViMWQ1NTYxZDlhZjgwNWU0YjBjOTkyMDA4YmY3MzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRuxlb/QnDNPF/AR9B8P1ZKjPreA
XaR00dziKwQArvfQmJxYDDN3ywLi9sAvhRtfdzU/OLs27DtFaet599GEdb39WQcP
TeeKE1r7Eh5U3oG3UcwKA+k9ZgplTZ9ozqgvZsVPYdixf/IA3lBfYANwZdvq8Ynv
CD2OvOe2s5TnMImeHp+3ihEsJfjbsk1abe0zfrMM9egxb8Hy4NeL21AR+Qd13ZV8
1ZvpIjPbuEgTGPZDb51HE6h7hvnu4rwMSt7iUMJQy8dckP3nZ1RnRqBH1jnpltvr
qnAUsxfde5w24vpjITSRqOWSMkwRPeRwH4HCe0yVpGgizVlHYIo3bkTwMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGVDY/dbHVVh2a+AXksMmSAIv3MmMB8GA1UdIwQY
MBaAFJPcRf/hP4QfGIr3Q719w07VSAXUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQt
MjE4OTU3MjhiYTRlLzEvWlVOajkxc2RWV0hacjRCZVN3eVpJQWlfY3lZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQtMjE4OTU3MjhiYTRl
LzEvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBubwCMA0G
CSqGSIb3DQEBCwUAA4IBAQCSRrDpzR6LaaC904GzADF5TVLZx/q4A2ktTcS9Pjgd
T6APrRVeU7I5JOOSxZK2G3mL01/16w4YgVW8KvEH0GVHdwgcWTW/Edn9b2KBvwUZ
MdyrmZLHbtKTlWO+fVmdZRLO23dIVeYJ34FHktG22gtgz/bNOFtfbZcAggM/6Sb6
/Os9mlmbyPrFkZnsFA4vv4v8CXwydnWzIiehKbc3FZd8FCHI+EFXphKkUjogsMDL
OnQ2Sme4HH073AGELYfWEpLVI8nfWSJdutIZe4CK4pc8uyAAQa+8JAyMWGsjz8Nc
RTZYZCpV6ELAOP43TBNCg//Em7EGGz9EoERnSyleqBTM
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:54 2025 by rpki-client