Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/d33758-4c60-4cb3-a208-c0697306f9a5/1/ZMI8Ct07yO-7Oo24koW59fQFlzM.roa
File: ZMI8Ct07yO-7Oo24koW59fQFlzM.roa (raw, json)
Hash identifier: Khjdm3/zHcBMK4ArFqGOdn/v0wnXOWcEDFGZtVSVkZI=
Subject key identifier: 64:C2:3C:0A:DD:3B:C8:EF:BB:3A:8D:B8:92:85:B9:F5:F4:05:97:33
Certificate issuer: /CN=0095a4f8f4d41888e4394c5f564979295d2f13aa
Certificate serial: 0740E03A
Authority key identifier: 00:95:A4:F8:F4:D4:18:88:E4:39:4C:5F:56:49:79:29:5D:2F:13:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJWk-PTUGIjkOUxfVkl5KV0vE6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/d33758-4c60-4cb3-a208-c0697306f9a5/1/ZMI8Ct07yO-7Oo24koW59fQFlzM.roa
Signing time: Sat 01 Jan 2022 06:02:51 +0000
ROA not before: Sat 01 Jan 2022 06:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209531
IP address blocks: 147.78.168.0/22 maxlen: 22
2a09:27c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121692218 (0x740e03a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0095a4f8f4d41888e4394c5f564979295d2f13aa
Validity
Not Before: Jan 1 06:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64c23c0add3bc8efbb3a8db89285b9f5f4059733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:5e:b3:26:17:65:f5:ee:41:87:8a:1e:92:
77:f4:e2:f6:55:8f:23:40:72:f0:e6:86:7e:75:5a:
c9:ef:2e:01:b2:c8:3f:fe:a2:44:4d:c8:0d:24:28:
36:09:bf:da:91:b3:19:97:f7:c8:c3:09:90:11:73:
33:c3:ba:2e:f4:be:f2:72:b0:da:23:a5:08:f4:64:
24:5f:31:4c:2a:5a:77:00:a8:42:49:bd:df:9b:c7:
be:13:6b:c8:26:f6:7e:39:5e:e2:d4:b5:60:8a:59:
c0:47:90:27:bb:31:76:0e:5b:88:73:b8:6d:36:f0:
bc:4b:f3:28:10:65:f9:e5:95:df:58:8c:9e:7a:e6:
94:09:75:b9:22:48:b0:66:bd:28:ff:ce:dd:18:00:
fc:3b:11:ce:7a:22:a6:1c:38:45:c1:91:af:75:ba:
f4:ee:3d:d5:ff:1e:bd:96:f2:c4:b2:13:ef:5f:bd:
0d:d3:45:37:e2:cd:21:71:8e:7f:2e:57:0c:75:37:
fb:2a:ce:2f:7d:40:dd:a5:a7:8e:2f:34:3d:6e:ec:
54:90:e6:da:1b:0c:24:24:f1:93:08:1d:07:d9:41:
bf:23:37:5b:98:e8:c7:17:42:13:7a:75:c4:fd:57:
b4:40:b0:36:7e:38:3b:5a:e5:d1:75:c6:8d:fc:57:
66:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C2:3C:0A:DD:3B:C8:EF:BB:3A:8D:B8:92:85:B9:F5:F4:05:97:33
X509v3 Authority Key Identifier:
keyid:00:95:A4:F8:F4:D4:18:88:E4:39:4C:5F:56:49:79:29:5D:2F:13:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJWk-PTUGIjkOUxfVkl5KV0vE6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d33758-4c60-4cb3-a208-c0697306f9a5/1/ZMI8Ct07yO-7Oo24koW59fQFlzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d33758-4c60-4cb3-a208-c0697306f9a5/1/AJWk-PTUGIjkOUxfVkl5KV0vE6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.168.0/22
IPv6:
2a09:27c0::/29
Signature Algorithm: sha256WithRSAEncryption
58:0c:03:42:54:0b:d7:1a:69:6d:d4:61:de:39:11:a3:d4:4a:
23:08:fa:01:3c:c5:ef:a1:fb:0a:bd:1b:1b:ce:2f:66:a3:0d:
79:6b:0f:6d:de:db:d6:34:ad:d7:03:3f:55:15:0d:5d:53:52:
43:f7:1f:51:51:f3:15:ba:a7:e0:3d:0b:17:ab:52:e3:65:31:
4d:35:78:54:a4:67:35:cb:e2:20:3c:1c:30:86:67:b9:22:5b:
24:f7:2f:dc:f9:a8:16:f6:e6:50:02:66:6e:c6:6f:0b:2f:a0:
dc:91:6c:e2:4f:34:b9:46:e9:e1:33:07:32:0e:bd:c2:e6:f3:
cf:33:63:2a:e5:88:da:2b:08:a0:7e:a8:2d:9b:a4:35:8f:dc:
c3:12:1c:38:cd:ba:77:8c:9f:e8:1e:6c:12:8f:10:57:9c:ea:
d6:f9:5b:fc:bd:18:a9:50:44:31:1e:dd:63:5c:88:27:23:f2:
63:c7:4b:ba:e5:14:83:92:2c:d2:6f:89:e6:db:fc:d8:11:4b:
ca:0a:a2:f0:6a:bd:a2:7f:de:0b:b9:07:e4:62:58:b6:58:7f:
0c:bf:51:b0:39:26:13:65:bf:40:e7:b2:89:8d:f1:3b:9c:93:
b7:0e:4f:4c:d9:ed:d7:cd:82:f6:c9:fd:67:f2:a9:f2:a5:1c:
ec:bc:f1:15
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEB0DgOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDk1YTRmOGY0ZDQxODg4ZTQzOTRjNWY1NjQ5NzkyOTVkMmYxM2FhMB4XDTIyMDEw
MTA2MDI1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRjMjNjMGFkZDNi
YzhlZmJiM2E4ZGI4OTI4NWI5ZjVmNDA1OTczMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMMyXrMmF2X17kGHih6Sd/Ti9lWPI0By8OaGfnVaye8uAbLI
P/6iRE3IDSQoNgm/2pGzGZf3yMMJkBFzM8O6LvS+8nKw2iOlCPRkJF8xTCpadwCo
Qkm935vHvhNryCb2fjle4tS1YIpZwEeQJ7sxdg5biHO4bTbwvEvzKBBl+eWV31iM
nnrmlAl1uSJIsGa9KP/O3RgA/DsRznoiphw4RcGRr3W69O491f8evZbyxLIT71+9
DdNFN+LNIXGOfy5XDHU3+yrOL31A3aWnji80PW7sVJDm2hsMJCTxkwgdB9lBvyM3
W5joxxdCE3p1xP1XtECwNn44O1rl0XXGjfxXZssCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRkwjwK3TvI77s6jbiShbn19AWXMzAfBgNVHSMEGDAWgBQAlaT49NQYiOQ5
TF9WSXkpXS8TqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FKV2stUFRVR0lqa09VeGZWa2w1S1YwdkU2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmEvZDMzNzU4LTRjNjAtNGNiMy1hMjA4LWMwNjk3MzA2ZjlhNS8x
L1pNSThDdDA3eU8tN09vMjRrb1c1OWZRRmx6TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEv
ZDMzNzU4LTRjNjAtNGNiMy1hMjA4LWMwNjk3MzA2ZjlhNS8xL0FKV2stUFRVR0lq
a09VeGZWa2w1S1YwdkU2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEApNOqDANBAIAAjAHAwUDKgknwDAN
BgkqhkiG9w0BAQsFAAOCAQEAWAwDQlQL1xppbdRh3jkRo9RKIwj6ATzF76H7Cr0b
G84vZqMNeWsPbd7b1jSt1wM/VRUNXVNSQ/cfUVHzFbqn4D0LF6tS42UxTTV4VKRn
NcviIDwcMIZnuSJbJPcv3PmoFvbmUAJmbsZvCy+g3JFs4k80uUbp4TMHMg69wubz
zzNjKuWI2isIoH6oLZukNY/cwxIcOM26d4yf6B5sEo8QV5zq1vlb/L0YqVBEMR7d
Y1yIJyPyY8dLuuUUg5Is0m+J5tv82BFLygqi8Gq9on/eC7kH5GJYtlh/DL9RsDkm
E2W/QOeyiY3xO5yTtw5PTNnt182C9sn9Z/Kp8qUc7LzxFQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:27 2023 by rpki-client on console-fra.rpki-client.org