Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3965b0-fee9-49bf-a54d-a8d838438d8a/1/Zei3NKr9BC0UdTj5n2E50TULsLg.roa
File: Zei3NKr9BC0UdTj5n2E50TULsLg.roa (raw, json)
Hash identifier: 6RT6CvvC2jOpu8JaGbYceficeeJpnzK21N0ydvA0Mdo=
Subject key identifier: 65:E8:B7:34:AA:FD:04:2D:14:75:38:F9:9F:61:39:D1:35:0B:B0:B8
Certificate issuer: /CN=4e4c1389a849ef5dccb8303703b898c91e63d14f
Certificate serial: 99150E
Authority key identifier: 4E:4C:13:89:A8:49:EF:5D:CC:B8:30:37:03:B8:98:C9:1E:63:D1:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkwTiahJ713MuDA3A7iYyR5j0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3965b0-fee9-49bf-a54d-a8d838438d8a/1/Zei3NKr9BC0UdTj5n2E50TULsLg.roa
Signing time: Sat 01 Jan 2022 02:51:42 +0000
ROA not before: Sat 01 Jan 2022 02:51:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25447
IP address blocks: 152.89.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10032398 (0x99150e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e4c1389a849ef5dccb8303703b898c91e63d14f
Validity
Not Before: Jan 1 02:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65e8b734aafd042d147538f99f6139d1350bb0b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:23:1a:21:1d:80:36:ec:82:ac:ef:96:2f:4e:
15:7f:cc:55:ca:bb:eb:0d:24:5f:8e:02:90:28:51:
f6:03:5a:10:90:95:da:0e:36:a3:1c:24:e1:6e:3d:
9f:64:82:ff:1a:3d:66:06:38:35:e1:32:cf:1c:25:
8e:ef:d5:43:2c:1a:01:23:3f:eb:d0:c3:96:c9:95:
36:f7:a1:83:65:a6:6c:04:b0:d5:29:07:22:35:a8:
66:63:cc:22:be:bf:46:4b:bb:78:9f:56:62:20:2f:
6f:77:4c:8c:c1:b9:8e:85:e3:26:f8:dd:d2:05:4e:
08:9a:07:de:3a:7e:48:41:8c:e7:55:41:39:ba:55:
c3:1e:59:7e:bf:78:3b:cf:ed:90:b7:7a:39:f8:50:
4c:27:a3:65:5f:e5:e5:80:f2:6b:f2:8c:1f:e3:60:
76:d9:cd:b0:92:5a:67:86:6b:4c:a0:74:dd:ee:e7:
f9:0b:72:af:b9:3f:d8:b4:64:26:cb:f6:e3:51:9c:
d5:82:15:83:be:d0:e4:7b:2b:5f:14:df:a4:c8:75:
98:69:f4:bf:42:a1:e8:64:02:f6:d6:39:89:0c:b3:
d3:d3:ec:f3:17:0f:f4:a0:1b:f7:b0:ed:50:5a:db:
e8:50:41:b7:42:35:46:13:88:81:85:8a:3f:50:0c:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E8:B7:34:AA:FD:04:2D:14:75:38:F9:9F:61:39:D1:35:0B:B0:B8
X509v3 Authority Key Identifier:
keyid:4E:4C:13:89:A8:49:EF:5D:CC:B8:30:37:03:B8:98:C9:1E:63:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkwTiahJ713MuDA3A7iYyR5j0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3965b0-fee9-49bf-a54d-a8d838438d8a/1/Zei3NKr9BC0UdTj5n2E50TULsLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3965b0-fee9-49bf-a54d-a8d838438d8a/1/TkwTiahJ713MuDA3A7iYyR5j0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.220.0/22
Signature Algorithm: sha256WithRSAEncryption
89:bc:69:5b:e0:62:86:ea:d9:2d:1c:b9:a3:33:12:f6:99:71:
cd:e3:ee:40:71:86:91:5c:cf:f8:74:1c:96:5b:80:00:40:72:
2f:7b:2a:06:1b:3c:f9:94:e5:cf:61:67:08:57:4e:f9:2d:0a:
98:7c:fa:f2:5f:8f:0b:f7:6e:05:f4:ef:c0:6b:a6:71:e0:0f:
93:5c:66:cf:96:90:a0:5e:e4:64:a8:b1:98:1c:cd:31:9a:60:
35:31:85:e2:fd:09:40:a9:38:52:86:89:df:df:89:56:8c:bb:
45:d5:2e:97:c2:11:20:10:e0:93:6b:50:3f:c6:bf:5a:f9:29:
da:07:ad:93:14:16:8a:a0:26:b8:6b:25:66:1d:23:a2:46:e7:
d0:82:0a:bc:2f:43:48:e2:07:9a:d7:21:49:4d:ad:3f:f6:ea:
11:fd:cd:be:c4:fe:a0:d5:d2:60:db:e8:24:56:70:d6:74:29:
37:e5:e9:55:5b:97:d0:e8:30:12:1a:e1:0f:43:25:f4:b6:fc:
e9:ae:c3:76:43:c2:b1:78:d6:29:23:86:39:61:83:aa:2f:d5:
80:4f:50:9a:8b:5f:6b:b4:3b:69:19:ec:c4:a0:4f:c9:43:91:
a8:d3:6f:4d:f1:3e:cd:ed:8e:a6:4c:c5:29:58:64:73:85:39:
57:8b:d0:4c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJkVDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZTRjMTM4OWE4NDllZjVkY2NiODMwMzcwM2I4OThjOTFlNjNkMTRmMB4XDTIyMDEw
MTAyNTE0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjVlOGI3MzRhYWZk
MDQyZDE0NzUzOGY5OWY2MTM5ZDEzNTBiYjBiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKgjGiEdgDbsgqzvli9OFX/MVcq76w0kX44CkChR9gNaEJCV
2g42oxwk4W49n2SC/xo9ZgY4NeEyzxwlju/VQywaASM/69DDlsmVNvehg2WmbASw
1SkHIjWoZmPMIr6/Rku7eJ9WYiAvb3dMjMG5joXjJvjd0gVOCJoH3jp+SEGM51VB
ObpVwx5Zfr94O8/tkLd6OfhQTCejZV/l5YDya/KMH+NgdtnNsJJaZ4ZrTKB03e7n
+Qtyr7k/2LRkJsv241Gc1YIVg77Q5HsrXxTfpMh1mGn0v0Kh6GQC9tY5iQyz09Ps
8xcP9KAb97DtUFrb6FBBt0I1RhOIgYWKP1AMupMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRl6Lc0qv0ELRR1OPmfYTnRNQuwuDAfBgNVHSMEGDAWgBROTBOJqEnvXcy4
MDcDuJjJHmPRTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Rrd1RpYWhKNzEzTXVEQTNBN2lZeVI1ajBVOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmYvMzk2NWIwLWZlZTktNDliZi1hNTRkLWE4ZDgzODQzOGQ4YS8x
L1plaTNOS3I5QkMwVWRUajVuMkU1MFRVTHNMZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYv
Mzk2NWIwLWZlZTktNDliZi1hNTRkLWE4ZDgzODQzOGQ4YS8xL1Rrd1RpYWhKNzEz
TXVEQTNBN2lZeVI1ajBVOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAphZ3DANBgkqhkiG9w0BAQsFAAOC
AQEAibxpW+BihurZLRy5ozMS9plxzePuQHGGkVzP+HQclluAAEByL3sqBhs8+ZTl
z2FnCFdO+S0KmHz68l+PC/duBfTvwGumceAPk1xmz5aQoF7kZKixmBzNMZpgNTGF
4v0JQKk4UoaJ39+JVoy7RdUul8IRIBDgk2tQP8a/Wvkp2getkxQWiqAmuGslZh0j
okbn0IIKvC9DSOIHmtchSU2tP/bqEf3NvsT+oNXSYNvoJFZw1nQpN+XpVVuX0Ogw
EhrhD0Ml9Lb86a7DdkPCsXjWKSOGOWGDqi/VgE9Qmotfa7Q7aRnsxKBPyUORqNNv
TfE+ze2OpkzFKVhkc4U5V4vQTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:19 2024 by rpki-client on console-fra.rpki-client.org