Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ZpSyPcovZUhNTyPMDNAo_onnFlg.roa
File: ZpSyPcovZUhNTyPMDNAo_onnFlg.roa (raw, json)
Hash identifier: jDgUQmib1X5O5dEoziDbk6PhWa/riC2CNk5932wyF4M=
Subject key identifier: 66:94:B2:3D:CA:2F:65:48:4D:4F:23:CC:0C:D0:28:FE:89:E7:16:58
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A9154E6
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ZpSyPcovZUhNTyPMDNAo_onnFlg.roa
Signing time: Sat 01 Jan 2022 04:52:13 +0000
ROA not before: Sat 01 Jan 2022 04:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205355
IP address blocks: 88.220.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982602982 (0x3a9154e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6694b23dca2f65484d4f23cc0cd028fe89e71658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3e:6b:d5:cc:7f:0b:94:0a:e1:af:84:30:30:
0b:82:4e:e7:d8:bb:97:82:12:a2:38:a1:1f:fe:ca:
29:90:4a:e6:60:8e:95:95:3d:b6:55:6a:28:aa:98:
f6:7f:cb:61:c6:10:bb:af:53:d6:de:7b:29:ed:e3:
18:b3:24:12:5f:64:f0:22:d1:94:44:79:5c:89:08:
ed:04:ac:23:dc:16:8c:77:16:3b:3f:93:ea:9f:9f:
96:19:dd:fa:5b:18:86:88:66:d4:66:fa:2b:fe:cc:
60:a2:4a:d7:81:41:30:57:c6:8e:0d:b4:f5:dd:d0:
f5:bd:13:70:d3:1f:4d:4c:7d:62:d8:49:9b:81:ea:
c8:00:2b:21:3a:5a:75:ea:50:5b:17:db:dc:49:bd:
64:ae:57:95:2b:a2:0e:3d:ed:9a:3e:26:ef:6c:c5:
81:f9:73:ff:58:93:51:62:b1:f8:bd:b4:4f:ee:b5:
4c:90:c8:d4:f8:90:ec:13:7a:14:29:75:59:ec:34:
2b:33:cd:dd:da:cb:d6:39:09:22:02:c5:7d:49:da:
52:64:1b:f2:ff:50:7b:7f:70:ae:76:5a:2c:1c:bd:
82:bf:ea:70:33:ff:af:74:6d:d7:aa:b9:6e:41:7c:
fd:66:a3:32:6a:29:9c:97:c5:72:9c:67:1f:ae:4b:
20:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:94:B2:3D:CA:2F:65:48:4D:4F:23:CC:0C:D0:28:FE:89:E7:16:58
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/ZpSyPcovZUhNTyPMDNAo_onnFlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.94.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:59:09:35:f2:f7:db:a5:d5:39:f0:3f:d6:0e:90:6d:09:4b:
b3:5a:ea:d6:8f:f8:64:e9:f0:9e:5a:75:8f:cf:2d:fd:fb:ac:
02:c6:5e:cb:78:7d:13:cd:5c:df:bb:10:09:5f:62:0e:20:e1:
74:4d:05:a0:d2:09:6b:8e:9d:67:21:f4:49:d3:cc:ce:66:8d:
74:de:81:93:32:71:6f:f0:b5:6c:4d:8b:17:97:9b:3b:cc:ac:
74:b4:73:37:75:8b:06:a5:43:59:18:7b:49:0c:a1:2b:f7:c7:
a4:6e:99:93:2f:e2:10:f4:22:4d:d0:38:44:b6:f6:3b:e7:1b:
28:6a:16:e1:8d:d1:dc:bb:35:ec:f0:d2:50:0e:61:59:b1:49:
68:11:c8:17:e4:1a:4b:ca:fc:e7:eb:2a:b3:c5:18:03:35:7a:
43:52:46:59:d6:44:e9:07:ff:0b:e3:fb:b9:57:ae:4d:4f:12:
bb:54:82:79:61:c1:2e:b6:0f:f0:48:cf:a0:3c:b1:03:89:34:
c8:39:31:0c:25:2c:5f:7a:0f:30:ff:c7:ef:b0:c9:a0:e9:e2:
86:f0:cb:90:4f:5b:22:66:e8:18:4d:e2:be:6d:bd:9b:2e:32:
b6:83:65:ac:f2:65:6a:70:e6:a7:c9:7d:d9:91:31:1d:19:0b:
cc:b4:4b:e3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOpFU5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjY5NGIyM2RjYTJm
NjU0ODRkNGYyM2NjMGNkMDI4ZmU4OWU3MTY1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOE+a9XMfwuUCuGvhDAwC4JO59i7l4ISojihH/7KKZBK5mCO
lZU9tlVqKKqY9n/LYcYQu69T1t57Ke3jGLMkEl9k8CLRlER5XIkI7QSsI9wWjHcW
Oz+T6p+flhnd+lsYhohm1Gb6K/7MYKJK14FBMFfGjg209d3Q9b0TcNMfTUx9YthJ
m4HqyAArITpadepQWxfb3Em9ZK5XlSuiDj3tmj4m72zFgflz/1iTUWKx+L20T+61
TJDI1PiQ7BN6FCl1Wew0KzPN3drL1jkJIgLFfUnaUmQb8v9Qe39wrnZaLBy9gr/q
cDP/r3Rt16q5bkF8/WajMmopnJfFcpxnH65LICcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRmlLI9yi9lSE1PI8wM0Cj+iecWWDAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
L1pwU3lQY292WlVoTlR5UE1ETkFvX29ubkZsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFjcXjANBgkqhkiG9w0BAQsFAAOC
AQEAalkJNfL326XVOfA/1g6QbQlLs1rq1o/4ZOnwnlp1j88t/fusAsZey3h9E81c
37sQCV9iDiDhdE0FoNIJa46dZyH0SdPMzmaNdN6BkzJxb/C1bE2LF5ebO8ysdLRz
N3WLBqVDWRh7SQyhK/fHpG6Zky/iEPQiTdA4RLb2O+cbKGoW4Y3R3Ls17PDSUA5h
WbFJaBHIF+QaS8r85+sqs8UYAzV6Q1JGWdZE6Qf/C+P7uVeuTU8Su1SCeWHBLrYP
8EjPoDyxA4k0yDkxDCUsX3oPMP/H77DJoOnihvDLkE9bImboGE3ivm29my4ytoNl
rPJlanDmp8l92ZExHRkLzLRL4w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org