Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/Zp-C5U8aj9QTYCiYUsisforUPUg.roa
File: Zp-C5U8aj9QTYCiYUsisforUPUg.roa (raw, json)
Hash identifier: Vu81K6KR/Q/bKwU5JMCwwvk7BNOqHhMeyHCd7ZJj9iQ=
Subject key identifier: 66:9F:82:E5:4F:1A:8F:D4:13:60:28:98:52:C8:AC:7E:8A:D4:3D:48
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: 0F2FFC
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/Zp-C5U8aj9QTYCiYUsisforUPUg.roa
Signing time: Mon 10 Jan 2022 15:12:31 +0000
ROA not before: Mon 10 Jan 2022 15:12:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 995324 (0xf2ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Jan 10 15:12:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=669f82e54f1a8fd41360289852c8ac7e8ad43d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:73:65:94:59:69:69:7f:fb:a5:7f:17:38:1a:
c0:b5:43:07:ad:1d:63:1b:9b:5e:97:df:d5:ef:2c:
91:0c:8c:83:b9:3c:92:b6:49:bc:4b:af:5a:18:f9:
a4:c5:2c:33:c6:96:39:30:d9:32:c7:d5:be:f7:05:
2b:7f:83:1a:69:2f:c2:22:9d:70:65:7a:28:02:36:
06:7f:12:80:b2:10:0b:44:83:0d:2c:f4:4e:88:75:
39:97:6c:f0:09:10:30:56:6f:cd:88:70:b4:be:03:
a4:d3:b3:6b:60:a0:01:36:67:21:b4:8d:88:55:24:
14:c0:cb:4c:96:59:0f:22:f2:03:18:fc:49:cd:82:
1b:34:53:ce:75:93:f1:e9:76:b9:3d:ae:ec:8c:5b:
52:c9:55:0f:d3:3a:da:6f:3c:94:9f:40:2d:6a:0b:
dc:69:65:1a:ee:45:32:eb:e9:e8:77:2c:a6:0d:ba:
76:4d:04:87:ee:60:c1:ef:c1:f6:05:f9:aa:e7:17:
49:cf:5a:bf:be:7c:c4:87:78:58:51:3b:e9:ea:56:
aa:7c:3c:c7:1f:80:82:5c:b5:b0:27:8e:ba:2a:76:
85:75:02:24:5c:52:5b:dc:7c:47:1b:fb:1c:13:fe:
e2:cc:a0:64:c7:f6:07:ef:80:15:b4:5a:3c:2f:95:
06:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:9F:82:E5:4F:1A:8F:D4:13:60:28:98:52:C8:AC:7E:8A:D4:3D:48
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/Zp-C5U8aj9QTYCiYUsisforUPUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
38:ae:d9:52:fb:4d:37:62:e4:78:17:df:40:6d:d7:51:b7:46:
c5:4f:4f:28:6c:4d:8e:80:0a:fc:63:38:da:b9:d8:47:bd:7e:
bc:46:88:3c:3b:75:e7:9e:64:0e:58:58:c5:6e:76:e9:9c:47:
ff:4a:95:d7:43:2a:d3:b7:4a:70:9f:45:f9:31:4c:31:1c:58:
96:3b:70:59:06:05:dd:5e:cd:d0:9c:f7:30:90:46:c5:a1:41:
e2:9a:74:95:ee:d9:f3:c0:6d:59:03:ae:5a:a0:f4:30:76:bf:
74:24:e4:92:27:54:ae:1d:fe:32:d2:65:3e:70:3b:98:9e:c3:
44:dc:79:46:15:31:21:9a:8f:bf:88:96:9a:d9:8d:55:30:86:
01:97:db:a5:8c:fd:c0:1c:a8:d8:6a:75:50:3a:29:f2:cc:ab:
26:80:21:ce:b1:df:0c:25:d0:f4:e5:e0:90:6d:67:fe:b7:e6:
43:4b:e1:20:dd:88:d1:50:02:f2:d9:50:1f:b9:fc:7e:f7:a5:
20:96:a7:80:28:f7:1a:f8:70:24:32:c4:24:27:d8:60:38:ef:
78:d1:33:fe:f7:f8:10:cc:05:7a:42:99:b3:ea:b1:ef:30:c4:
ba:61:4e:46:be:ed:3d:1c:95:c1:98:fd:78:26:cf:1b:1b:a0:
a6:81:07:fc
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDDy/8MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNj
ZWQ5OTIwMzA1MzFlN2U4YjUxOGFlZmQ5ZTI2N2NjNTI4ZWRhOWEwHhcNMjIwMTEw
MTUxMjMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2NjlmODJlNTRmMWE4
ZmQ0MTM2MDI4OTg1MmM4YWM3ZThhZDQzZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnHNllFlpaX/7pX8XOBrAtUMHrR1jG5tel9/V7yyRDIyDuTyS
tkm8S69aGPmkxSwzxpY5MNkyx9W+9wUrf4MaaS/CIp1wZXooAjYGfxKAshALRIMN
LPROiHU5l2zwCRAwVm/NiHC0vgOk07NrYKABNmchtI2IVSQUwMtMllkPIvIDGPxJ
zYIbNFPOdZPx6Xa5Pa7sjFtSyVUP0zrabzyUn0AtagvcaWUa7kUy6+nodyymDbp2
TQSH7mDB78H2Bfmq5xdJz1q/vnzEh3hYUTvp6laqfDzHH4CCXLWwJ466KnaFdQIk
XFJb3HxHG/scE/7izKBkx/YH74AVtFo8L5UG1wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGafguVPGo/UE2AomFLIrH6K1D1IMB8GA1UdIwQYMBaAFMztmSAwUx5+i1GK
79niZ8xSjtqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ek8yWklEQlRIbjZMVVlydjJlSm56RktPMnBvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Mi9hMDVlNzctZjMwMS00MTI1LTkxMTgtZTRkMWYwYTI3YjIxLzEv
WnAtQzVVOGFqOVFUWUNpWVVzaXNmb3JVUFVnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9h
MDVlNzctZjMwMS00MTI1LTkxMTgtZTRkMWYwYTI3YjIxLzEvek8yWklEQlRIbjZM
VVlydjJlSm56RktPMnBvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw6qjMA0GCSqGSIb3DQEBCwUAA4IB
AQA4rtlS+003YuR4F99AbddRt0bFT08obE2OgAr8YzjaudhHvX68Rog8O3XnnmQO
WFjFbnbpnEf/SpXXQyrTt0pwn0X5MUwxHFiWO3BZBgXdXs3QnPcwkEbFoUHimnSV
7tnzwG1ZA65aoPQwdr90JOSSJ1SuHf4y0mU+cDuYnsNE3HlGFTEhmo+/iJaa2Y1V
MIYBl9uljP3AHKjYanVQOinyzKsmgCHOsd8MJdD05eCQbWf+t+ZDS+Eg3YjRUALy
2VAfufx+96UglqeAKPca+HAkMsQkJ9hgOO940TP+9/gQzAV6Qpmz6rHvMMS6YU5G
vu09HJXBmP14Js8bG6CmgQf8
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org