Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/6453c4-6687-4ef9-9fdc-a88bb7805b09/1/Z0QPsGmQf1pgT7NRRbFbZMCO_10.roa
File: Z0QPsGmQf1pgT7NRRbFbZMCO_10.roa (raw, json)
Hash identifier: +0He4Z3MCEnTzanLzsGeVRjxQiGXqhBgF1v0++EMDgY=
Subject key identifier: 67:44:0F:B0:69:90:7F:5A:60:4F:B3:51:45:B1:5B:64:C0:8E:FF:5D
Certificate issuer: /CN=d2ef46a4134194e72423d572a1b66d4a9d2e4c13
Certificate serial: 03D83B84
Authority key identifier: D2:EF:46:A4:13:41:94:E7:24:23:D5:72:A1:B6:6D:4A:9D:2E:4C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0u9GpBNBlOckI9VyobZtSp0uTBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/6453c4-6687-4ef9-9fdc-a88bb7805b09/1/Z0QPsGmQf1pgT7NRRbFbZMCO_10.roa
Signing time: Sat 01 Jan 2022 08:06:02 +0000
ROA not before: Sat 01 Jan 2022 08:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202629
IP address blocks: 185.235.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64502660 (0x3d83b84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ef46a4134194e72423d572a1b66d4a9d2e4c13
Validity
Not Before: Jan 1 08:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67440fb069907f5a604fb35145b15b64c08eff5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3c:5a:9b:a6:8e:26:50:dd:64:7c:47:09:1e:
39:41:1b:42:86:c2:f5:29:9e:e6:e1:35:4b:77:be:
90:23:8f:f7:3e:19:e5:97:2b:98:69:59:db:13:a2:
74:d1:1b:51:08:28:dd:e6:1e:0b:2a:89:fa:5a:d6:
a8:d5:db:b6:07:06:af:ab:bb:67:ba:7f:e8:d5:90:
45:9b:55:98:eb:86:4a:fc:3f:42:73:04:29:d0:14:
f6:5d:09:c8:ec:e9:50:45:50:2d:92:5a:60:a4:de:
3c:93:4b:b7:7c:ae:46:48:d3:87:00:91:1e:3c:fe:
db:9e:4b:43:c3:d6:37:4b:a4:50:c9:7b:bb:99:64:
84:78:45:b5:0d:1b:20:e9:55:3d:fc:1e:7f:e0:a6:
ba:40:da:4b:04:de:cf:2a:07:1d:f4:50:62:79:3d:
fc:e3:ea:3a:dd:2f:14:0a:68:cc:31:e4:65:d2:38:
72:7e:fe:35:d9:74:f4:2a:41:16:78:e8:3f:cb:64:
c0:df:70:08:ab:d5:0c:f2:55:9d:b3:08:e9:16:b1:
20:68:6c:64:a8:b7:27:23:6d:da:87:2f:91:1a:96:
e9:f7:8f:3e:6f:03:9a:ee:6a:68:f3:77:e1:ad:f1:
33:50:e8:cc:a8:d3:cc:28:94:cb:4f:5b:6d:c6:36:
b9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:44:0F:B0:69:90:7F:5A:60:4F:B3:51:45:B1:5B:64:C0:8E:FF:5D
X509v3 Authority Key Identifier:
keyid:D2:EF:46:A4:13:41:94:E7:24:23:D5:72:A1:B6:6D:4A:9D:2E:4C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0u9GpBNBlOckI9VyobZtSp0uTBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6453c4-6687-4ef9-9fdc-a88bb7805b09/1/Z0QPsGmQf1pgT7NRRbFbZMCO_10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6453c4-6687-4ef9-9fdc-a88bb7805b09/1/0u9GpBNBlOckI9VyobZtSp0uTBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.28.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:9f:31:f7:31:ab:3e:d1:ca:17:86:0a:bd:70:da:fa:7e:81:
7d:2a:7a:34:a1:7a:48:41:f7:2c:f4:8c:98:25:4a:44:44:7f:
b8:9b:57:1d:5e:84:1f:f3:58:d7:10:b6:fc:b8:da:22:73:c1:
9a:05:38:01:5f:de:3f:13:83:85:b9:5d:02:3c:59:76:c6:42:
f5:92:ee:20:29:c4:0e:37:43:08:ef:a9:74:5d:46:7a:1f:0e:
4c:18:f4:ed:86:f5:3a:28:f0:35:42:fd:c0:99:f9:ab:af:f3:
98:cd:95:85:51:2d:12:bc:ce:c5:b9:64:99:14:0a:80:0e:25:
c1:21:78:5e:ce:5e:33:53:1a:33:53:d4:9e:70:dc:0e:73:7d:
0f:3b:13:aa:c7:f6:04:70:02:e7:f8:6e:61:2a:53:f4:e3:0b:
b0:10:62:1c:be:d6:e6:51:6e:f3:f9:3e:1e:d6:20:e1:ea:a6:
d9:3c:ed:54:4d:77:d2:c9:03:eb:5d:ac:3c:fc:72:08:2a:32:
70:ac:5e:8a:d8:a4:05:20:33:e3:93:36:a5:63:77:ba:36:59:
46:bb:cc:e1:85:15:02:9f:71:b5:1b:53:84:6d:8b:e4:41:93:
e4:28:08:53:a7:8f:9c:84:60:24:a8:ed:80:87:fa:2a:9c:3d:
ca:62:fa:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9g7hDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmVmNDZhNDEzNDE5NGU3MjQyM2Q1NzJhMWI2NmQ0YTlkMmU0YzEzMB4XDTIyMDEw
MTA4MDYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc0NDBmYjA2OTkw
N2Y1YTYwNGZiMzUxNDViMTViNjRjMDhlZmY1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ88WpumjiZQ3WR8RwkeOUEbQobC9Sme5uE1S3e+kCOP9z4Z
5ZcrmGlZ2xOidNEbUQgo3eYeCyqJ+lrWqNXbtgcGr6u7Z7p/6NWQRZtVmOuGSvw/
QnMEKdAU9l0JyOzpUEVQLZJaYKTePJNLt3yuRkjThwCRHjz+255LQ8PWN0ukUMl7
u5lkhHhFtQ0bIOlVPfwef+CmukDaSwTezyoHHfRQYnk9/OPqOt0vFApozDHkZdI4
cn7+Ndl09CpBFnjoP8tkwN9wCKvVDPJVnbMI6RaxIGhsZKi3JyNt2ocvkRqW6feP
Pm8Dmu5qaPN34a3xM1DozKjTzCiUy09bbcY2ud8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnRA+waZB/WmBPs1FFsVtkwI7/XTAfBgNVHSMEGDAWgBTS70akE0GU5yQj
1XKhtm1KnS5MEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzB1OUdwQk5CbE9ja0k5VnlvYlp0U3AwdVRCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvNjQ1M2M0LTY2ODctNGVmOS05ZmRjLWE4OGJiNzgwNWIwOS8x
L1owUVBzR21RZjFwZ1Q3TlJSYkZiWk1DT18xMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
NjQ1M2M0LTY2ODctNGVmOS05ZmRjLWE4OGJiNzgwNWIwOS8xLzB1OUdwQk5CbE9j
a0k5VnlvYlp0U3AwdVRCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnrHDANBgkqhkiG9w0BAQsFAAOC
AQEAqp8x9zGrPtHKF4YKvXDa+n6BfSp6NKF6SEH3LPSMmCVKRER/uJtXHV6EH/NY
1xC2/LjaInPBmgU4AV/ePxODhbldAjxZdsZC9ZLuICnEDjdDCO+pdF1Geh8OTBj0
7Yb1OijwNUL9wJn5q6/zmM2VhVEtErzOxblkmRQKgA4lwSF4Xs5eM1MaM1PUnnDc
DnN9DzsTqsf2BHAC5/huYSpT9OMLsBBiHL7W5lFu8/k+HtYg4eqm2TztVE130skD
612sPPxyCCoycKxeitikBSAz45M2pWN3ujZZRrvM4YUVAp9xtRtThG2L5EGT5CgI
U6ePnIRgJKjtgIf6Kpw9ymL6zQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org