Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jzzTtbOzFhsvrK1wJs5oe9fwEi0.roa
File: jzzTtbOzFhsvrK1wJs5oe9fwEi0.roa (raw, json)
Hash identifier: e27UBXcz0BKlfx9TN9ygRP37F0Ga2IvLSK5eizA/JnM=
Subject key identifier: 8F:3C:D3:B5:B3:B3:16:1B:2F:AC:AD:70:26:CE:68:7B:D7:F0:12:2D
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AAB2A80
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jzzTtbOzFhsvrK1wJs5oe9fwEi0.roa
Signing time: Sat 01 Jan 2022 16:03:01 +0000
ROA not before: Sat 01 Jan 2022 16:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31307
IP address blocks: 212.252.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447425152 (0x1aab2a80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f3cd3b5b3b3161b2facad7026ce687bd7f0122d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cd:08:f9:1b:58:e2:7a:61:c4:c1:e5:50:fe:
23:b3:42:d4:db:d1:ce:55:38:32:f2:56:36:2d:14:
d7:ae:67:de:6e:cb:bd:ae:88:7a:f0:e6:cd:b1:f6:
87:02:e5:e1:91:63:9b:19:f3:57:5e:6d:05:d8:af:
4d:7c:66:47:84:75:89:ce:bf:e4:0e:5e:b7:e8:22:
83:ba:2d:06:1a:68:7b:e5:17:9c:ad:d8:3c:fe:f7:
61:aa:75:f6:c7:3a:56:55:1b:b8:e9:51:3e:38:88:
ed:a1:0a:bc:88:4f:b2:5c:7a:e4:1b:23:19:2f:9d:
0f:28:0c:d5:8c:d6:4c:e1:91:47:b6:10:e9:1d:fb:
a3:b7:5f:85:1b:fc:96:00:ee:46:5c:12:45:5c:1e:
f4:e6:df:77:d5:27:74:3a:5f:5a:6e:86:c8:f6:76:
0c:ed:0c:9e:97:85:81:b0:02:42:a0:f3:d0:19:8c:
35:85:44:09:3e:ce:5b:28:08:8b:6e:60:69:63:97:
9c:7b:18:2b:c0:db:52:3f:aa:68:9d:86:21:2b:65:
93:b8:8d:12:38:43:a7:65:68:ac:f9:1f:52:af:3c:
87:14:b6:1f:72:cb:10:cf:9d:8f:0c:a4:f5:ca:c2:
7f:a9:d8:8c:8f:4d:e3:c4:7a:44:bf:17:ae:fb:52:
9a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3C:D3:B5:B3:B3:16:1B:2F:AC:AD:70:26:CE:68:7B:D7:F0:12:2D
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jzzTtbOzFhsvrK1wJs5oe9fwEi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.252.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:88:55:fb:f0:f0:2d:56:47:8c:0d:b4:fe:99:b2:cd:2a:b3:
2d:d7:a0:ae:61:14:4f:d0:5f:6e:8c:ce:25:50:17:b4:53:54:
f9:3a:1f:f2:43:80:d8:ca:f7:df:c1:b2:e3:0c:84:bf:29:ad:
21:73:1f:e8:76:02:af:54:08:67:2a:6b:82:69:3a:7f:19:70:
8c:2d:35:f0:44:54:33:56:2d:04:3b:50:17:64:59:a3:d5:c8:
87:0a:5b:f3:14:5e:7c:09:ca:10:23:4c:8f:af:db:2d:7a:0c:
ae:53:0b:d6:f8:77:e1:b5:be:ab:ae:fc:a1:8c:6b:61:5d:fe:
58:84:54:bd:1a:01:a2:8c:e4:3b:3c:dd:ee:7a:68:65:18:1a:
37:f2:5a:76:e3:f8:60:f1:2d:49:02:fd:4c:90:99:9a:ff:a4:
6c:a5:20:ea:15:85:04:8e:57:47:b0:e3:33:29:c7:e6:26:05:
59:0f:fd:f9:64:25:80:79:25:8c:2b:b4:d0:0d:da:63:ff:fd:
04:c9:83:b8:55:d3:1e:81:bd:90:ef:96:fa:f6:45:35:e7:ba:
4e:3f:26:2b:db:d0:22:1b:c1:6d:d4:eb:cf:2d:db:a2:ec:8c:
38:28:96:9b:76:84:b7:2e:1f:75:df:34:57:fe:c8:89:b3:99:
db:0a:e2:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGqsqgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDU5YzQzMjNmNzY3Y2U0ZmZjODVkYWFkMjA4YjkwYzA0ZmJkM2U5MB4XDTIyMDEw
MTE2MDMwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGYzY2QzYjViM2Iz
MTYxYjJmYWNhZDcwMjZjZTY4N2JkN2YwMTIyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvNCPkbWOJ6YcTB5VD+I7NC1NvRzlU4MvJWNi0U165n3m7L
va6IevDmzbH2hwLl4ZFjmxnzV15tBdivTXxmR4R1ic6/5A5et+gig7otBhpoe+UX
nK3YPP73Yap19sc6VlUbuOlRPjiI7aEKvIhPslx65BsjGS+dDygM1YzWTOGRR7YQ
6R37o7dfhRv8lgDuRlwSRVwe9Obfd9UndDpfWm6GyPZ2DO0MnpeFgbACQqDz0BmM
NYVECT7OWygIi25gaWOXnHsYK8DbUj+qaJ2GIStlk7iNEjhDp2VorPkfUq88hxS2
H3LLEM+djwyk9crCf6nYjI9N48R6RL8XrvtSmqsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSPPNO1s7MWGy+srXAmzmh71/ASLTAfBgNVHSMEGDAWgBSNWcQyP3Z85P/I
XarSCLkMBPvT6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pWbkVNajkyZk9UX3lGMnEwZ2k1REFUNzAtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8x
L2p6elR0Yk96RmhzdnJLMXdKczVvZTlmd0VpMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8xL2pWbkVNajkyZk9U
X3lGMnEwZ2k1REFUNzAtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANT8xDANBgkqhkiG9w0BAQsFAAOC
AQEAGohV+/DwLVZHjA20/pmyzSqzLdegrmEUT9BfbozOJVAXtFNU+Tof8kOA2Mr3
38Gy4wyEvymtIXMf6HYCr1QIZyprgmk6fxlwjC018ERUM1YtBDtQF2RZo9XIhwpb
8xRefAnKECNMj6/bLXoMrlML1vh34bW+q678oYxrYV3+WIRUvRoBoozkOzzd7npo
ZRgaN/JaduP4YPEtSQL9TJCZmv+kbKUg6hWFBI5XR7DjMynH5iYFWQ/9+WQlgHkl
jCu00A3aY//9BMmDuFXTHoG9kO+W+vZFNee6Tj8mK9vQIhvBbdTrzy3bouyMOCiW
m3aEty4fdd80V/7IibOZ2wrihA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org