Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/288628-2039-4085-a006-060cd9c92f26/1/zWSjgs1LlTcn0rkmJ1o6KnbL1p8.roa
File: zWSjgs1LlTcn0rkmJ1o6KnbL1p8.roa (raw, json)
Hash identifier: qeReozDyerklnZLPXCHDAF+MEpNgcXI+L7SLDVpiP1w=
Subject key identifier: CD:64:A3:82:CD:4B:95:37:27:D2:B9:26:27:5A:3A:2A:76:CB:D6:9F
Certificate issuer: /CN=fecf282821da575f68917647cf3e1898f9d0a62a
Certificate serial: 0D6CABBB
Authority key identifier: FE:CF:28:28:21:DA:57:5F:68:91:76:47:CF:3E:18:98:F9:D0:A6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_s8oKCHaV19okXZHzz4YmPnQpio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/288628-2039-4085-a006-060cd9c92f26/1/zWSjgs1LlTcn0rkmJ1o6KnbL1p8.roa
Signing time: Sat 01 Jan 2022 09:57:33 +0000
ROA not before: Sat 01 Jan 2022 09:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59560
IP address blocks: 176.116.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225225659 (0xd6cabbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fecf282821da575f68917647cf3e1898f9d0a62a
Validity
Not Before: Jan 1 09:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd64a382cd4b953727d2b926275a3a2a76cbd69f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:34:de:40:d5:38:eb:a2:5d:d2:4b:b5:0c:bb:
77:38:77:94:90:25:a9:5e:12:da:f0:2d:3b:12:8c:
7c:ce:82:35:08:f1:df:03:43:6b:9e:a3:40:18:df:
7c:13:e4:39:44:78:4e:01:79:d8:e9:b8:c5:09:28:
45:3d:51:8d:07:61:8d:35:26:46:80:5e:36:be:c4:
1c:58:8b:9e:90:9e:c8:1e:4e:80:fd:0a:13:dc:46:
ce:f7:36:b1:ce:a1:e3:04:75:af:2d:00:94:23:62:
bc:42:4f:64:c4:18:f7:83:18:72:ef:d7:6b:a6:12:
f4:25:11:4d:9f:aa:c5:62:6c:0d:36:26:ad:46:0a:
d2:ac:62:15:3b:1a:5a:33:05:a3:ad:f1:55:2a:1b:
98:ae:02:d6:81:1e:c4:70:2b:54:c9:fa:71:67:9a:
c4:14:44:8e:f1:0e:b6:0b:01:72:e6:80:1b:2e:40:
42:0a:49:e2:84:23:42:07:e1:be:19:b3:86:b0:7c:
3d:27:a5:c2:fa:a6:73:5b:3c:cf:09:51:84:61:d0:
e3:37:32:3b:66:2d:81:5b:15:67:7f:da:3b:a3:e8:
f1:65:9e:58:6a:66:73:8f:11:14:2a:5a:d5:d0:6c:
15:a3:ec:7a:6c:16:1f:96:26:93:b9:a0:32:22:76:
83:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:64:A3:82:CD:4B:95:37:27:D2:B9:26:27:5A:3A:2A:76:CB:D6:9F
X509v3 Authority Key Identifier:
keyid:FE:CF:28:28:21:DA:57:5F:68:91:76:47:CF:3E:18:98:F9:D0:A6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_s8oKCHaV19okXZHzz4YmPnQpio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/288628-2039-4085-a006-060cd9c92f26/1/zWSjgs1LlTcn0rkmJ1o6KnbL1p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/288628-2039-4085-a006-060cd9c92f26/1/_s8oKCHaV19okXZHzz4YmPnQpio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.145.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:3a:19:9a:a4:c8:a7:a1:9f:ae:72:76:1f:bc:0d:98:4f:2b:
7a:23:bf:05:96:ed:85:43:70:b3:c8:98:dd:d8:8b:70:8b:38:
62:78:2e:aa:72:35:b0:0d:2e:e3:c7:9c:f7:42:f4:0a:c2:76:
77:ee:78:91:44:d0:37:55:7d:ec:bd:5b:66:19:2f:d4:70:5c:
de:70:c8:4c:f1:12:19:8c:f7:0e:86:4b:7d:79:2c:d1:63:a3:
13:60:c8:a5:0e:75:a0:21:95:68:62:73:77:0e:8a:f3:19:97:
be:fd:7a:d6:22:cd:c1:a8:cc:aa:c4:e1:e6:14:eb:95:62:19:
f5:65:f7:c6:e4:20:bc:4d:b8:44:2a:4d:d8:99:cd:bc:dd:a2:
c4:7a:83:4b:e6:30:82:02:09:52:20:0a:e7:44:a5:a2:a2:50:
a3:b1:a4:f1:55:8a:0b:46:1c:06:b7:2e:17:a5:8b:9f:27:b1:
de:85:23:38:a4:3a:4b:d0:e6:10:a8:ee:1a:42:6e:71:b6:7c:
cc:8d:e9:f6:f1:fc:4c:e6:1a:1b:36:40:44:ab:88:dd:28:42:
2f:6b:9f:30:fc:cf:ff:fd:4c:20:2e:7f:35:f1:0c:bf:fd:bf:
6e:3c:52:2f:7b:10:b3:f6:ff:1f:57:9f:c7:29:cf:f5:7e:6c:
2f:95:9f:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDWyruzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWNmMjgyODIxZGE1NzVmNjg5MTc2NDdjZjNlMTg5OGY5ZDBhNjJhMB4XDTIyMDEw
MTA5NTczM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2Q2NGEzODJjZDRi
OTUzNzI3ZDJiOTI2Mjc1YTNhMmE3NmNiZDY5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALw03kDVOOuiXdJLtQy7dzh3lJAlqV4S2vAtOxKMfM6CNQjx
3wNDa56jQBjffBPkOUR4TgF52Om4xQkoRT1RjQdhjTUmRoBeNr7EHFiLnpCeyB5O
gP0KE9xGzvc2sc6h4wR1ry0AlCNivEJPZMQY94MYcu/Xa6YS9CURTZ+qxWJsDTYm
rUYK0qxiFTsaWjMFo63xVSobmK4C1oEexHArVMn6cWeaxBREjvEOtgsBcuaAGy5A
QgpJ4oQjQgfhvhmzhrB8PSelwvqmc1s8zwlRhGHQ4zcyO2YtgVsVZ3/aO6Po8WWe
WGpmc48RFCpa1dBsFaPsemwWH5Ymk7mgMiJ2gwMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTNZKOCzUuVNyfSuSYnWjoqdsvWnzAfBgNVHSMEGDAWgBT+zygoIdpXX2iR
dkfPPhiY+dCmKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19zOG9LQ0hhVjE5b2tYWkh6ejRZbVBuUXBpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWYvMjg4NjI4LTIwMzktNDA4NS1hMDA2LTA2MGNkOWM5MmYyNi8x
L3pXU2pnczFMbFRjbjBya21KMW82S25iTDFwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYv
Mjg4NjI4LTIwMzktNDA4NS1hMDA2LTA2MGNkOWM5MmYyNi8xL19zOG9LQ0hhVjE5
b2tYWkh6ejRZbVBuUXBpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALB0kTANBgkqhkiG9w0BAQsFAAOC
AQEAqzoZmqTIp6GfrnJ2H7wNmE8reiO/BZbthUNws8iY3diLcIs4YnguqnI1sA0u
48ec90L0CsJ2d+54kUTQN1V97L1bZhkv1HBc3nDITPESGYz3DoZLfXks0WOjE2DI
pQ51oCGVaGJzdw6K8xmXvv161iLNwajMqsTh5hTrlWIZ9WX3xuQgvE24RCpN2JnN
vN2ixHqDS+YwggIJUiAK50SloqJQo7Gk8VWKC0YcBrcuF6WLnyex3oUjOKQ6S9Dm
EKjuGkJucbZ8zI3p9vH8TOYaGzZARKuI3ShCL2ufMPzP//1MIC5/NfEMv/2/bjxS
L3sQs/b/H1efxynP9X5sL5Wf4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:33 2024 by rpki-client on console-ams.rpki-client.org