Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/rz2lGJtDuOX14OQsH9fIfcl5RBU.roa
File: rz2lGJtDuOX14OQsH9fIfcl5RBU.roa (raw, json)
Hash identifier: WtqbBYMmkn07gSCAtcIUkhuL7sNX3SS0x4BWm34lpZw=
Subject key identifier: AF:3D:A5:18:9B:43:B8:E5:F5:E0:E4:2C:1F:D7:C8:7D:C9:79:44:15
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 075A39
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/rz2lGJtDuOX14OQsH9fIfcl5RBU.roa
Signing time: Thu 28 Apr 2022 11:32:56 +0000
ROA not before: Thu 28 Apr 2022 11:32:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56947
IP address blocks: 185.7.116.0/23 maxlen: 24
91.229.108.0/22 maxlen: 24
188.68.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481849 (0x75a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Apr 28 11:32:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af3da5189b43b8e5f5e0e42c1fd7c87dc9794415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:46:a4:5f:3b:73:a2:f0:e4:da:98:7b:a6:
7e:a3:81:22:e5:0f:35:16:f3:c2:68:d1:ee:c0:17:
34:36:18:dc:8b:79:d1:b1:81:0d:fd:81:b5:38:21:
48:74:98:3b:37:a4:4b:dc:14:c6:7b:0e:53:a3:6d:
23:4c:12:3a:ad:25:5d:ed:1b:eb:5d:88:73:bc:83:
87:97:6e:31:e7:22:77:b1:c0:a4:2f:cc:7f:86:96:
41:33:db:93:62:0c:b2:52:33:a6:ce:04:86:ee:36:
eb:b9:22:b3:18:83:79:d1:85:a2:8b:c3:9d:e8:49:
8f:17:ba:fb:cd:d7:d9:81:8a:3a:68:af:e4:2c:f4:
5b:cc:9e:ef:f1:33:57:68:0b:bf:c6:8b:db:8f:51:
6f:6e:60:8e:f5:21:6c:9f:65:4c:9b:c5:2a:d0:56:
bb:e1:fb:01:6f:a5:4f:07:f8:cc:88:4a:5f:12:a0:
b6:f7:17:9e:ce:70:75:4a:2a:6f:fe:5c:2a:cf:e5:
86:b2:2d:53:5c:01:cd:65:b9:4a:cf:92:57:36:8f:
70:13:02:75:1e:81:d9:f4:2a:c0:d8:08:7e:9e:6c:
c8:72:5a:2d:81:ac:f4:80:60:3c:cb:9a:4b:ae:af:
9f:74:30:87:c6:2b:0f:2d:97:fb:88:86:5f:ac:c9:
8a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3D:A5:18:9B:43:B8:E5:F5:E0:E4:2C:1F:D7:C8:7D:C9:79:44:15
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/rz2lGJtDuOX14OQsH9fIfcl5RBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.108.0/22
185.7.116.0/23
188.68.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:8d:32:6a:6b:db:ba:e3:04:e0:2d:de:2a:cd:f3:00:2d:22:
5d:7d:a2:41:74:88:f7:2f:cc:8a:e8:e8:1a:29:f0:fd:2c:8d:
1b:46:34:8b:9a:80:1a:5e:ac:33:d0:fe:77:89:3f:54:63:87:
0a:c9:7c:02:21:78:63:5b:cf:1b:0e:f9:c1:2b:c1:60:ba:a5:
93:dd:e0:d1:0f:74:11:d7:68:87:ff:20:0a:47:a2:43:54:eb:
28:d5:3f:33:15:eb:5f:df:bd:03:d6:94:3e:af:96:d6:13:0b:
cd:07:22:f9:85:10:f9:14:07:4e:14:95:12:91:6e:a0:af:e9:
2e:d6:b4:d7:85:13:48:9f:91:58:73:80:bc:0a:1a:ef:cf:ae:
03:e9:41:86:df:36:00:19:21:4d:4e:fe:03:4f:01:5c:07:12:
50:69:00:20:a4:95:73:6b:16:23:0a:e1:b5:89:de:5f:bb:a9:
99:93:30:dc:87:82:d3:b6:63:38:35:19:fd:03:9e:27:95:4c:
f5:8d:01:51:2b:4a:79:23:c3:fd:0d:2b:4d:90:2f:93:41:fe:
40:7d:13:65:96:70:bb:2b:ed:df:23:5c:50:0b:da:28:b6:e4:
26:b6:15:24:ee:0c:f8:f3:4d:29:0d:cb:cd:71:9e:e1:2a:7f:
0d:f9:11:21
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIDB1o5MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZk
YmQ1MTU3NmI0YTkzNDYwYTQ2NWFmMzVlNmJmNTUwZjU1NDg4OTQwHhcNMjIwNDI4
MTEzMjU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhZjNkYTUxODliNDNi
OGU1ZjVlMGU0MmMxZmQ3Yzg3ZGM5Nzk0NDE1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtVFGpF87c6Lw5NqYe6Z+o4Ei5Q81FvPCaNHuwBc0Nhjci3nR
sYEN/YG1OCFIdJg7N6RL3BTGew5To20jTBI6rSVd7RvrXYhzvIOHl24x5yJ3scCk
L8x/hpZBM9uTYgyyUjOmzgSG7jbruSKzGIN50YWii8Od6EmPF7r7zdfZgYo6aK/k
LPRbzJ7v8TNXaAu/xovbj1FvbmCO9SFsn2VMm8Uq0Fa74fsBb6VPB/jMiEpfEqC2
9xeeznB1Sipv/lwqz+WGsi1TXAHNZblKz5JXNo9wEwJ1HoHZ9CrA2Ah+nmzIclot
gaz0gGA8y5pLrq+fdDCHxisPLZf7iIZfrMmKjQIDAQABo4ICFTCCAhEwHQYDVR0O
BBYEFK89pRibQ7jl9eDkLB/XyH3JeUQVMB8GA1UdIwQYMBaAFG29UVdrSpNGCkZa
815r9VD1VIiUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
YmIxUlYydEtrMFlLUmxyelhtdjFVUFZVaUpRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84MS84ZmY1MzctNzFlMC00MDNiLTk3OWUtMWVmN2VmMTdmYTQzLzEv
cnoybEdKdER1T1gxNE9Rc0g5ZklmY2w1UkJVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84
ZmY1MzctNzFlMC00MDNiLTk3OWUtMWVmN2VmMTdmYTQzLzEvYmIxUlYydEtrMFlL
UmxyelhtdjFVUFZVaUpRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsG
CCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW+VsAwQBuQd0AwQAvERRMA0GCSqG
SIb3DQEBCwUAA4IBAQCnjTJqa9u64wTgLd4qzfMALSJdfaJBdIj3L8yK6OgaKfD9
LI0bRjSLmoAaXqwz0P53iT9UY4cKyXwCIXhjW88bDvnBK8FguqWT3eDRD3QR12iH
/yAKR6JDVOso1T8zFetf370D1pQ+r5bWEwvNByL5hRD5FAdOFJUSkW6gr+ku1rTX
hRNIn5FYc4C8Chrvz64D6UGG3zYAGSFNTv4DTwFcBxJQaQAgpJVzaxYjCuG1id5f
u6mZkzDch4LTtmM4NRn9A54nlUz1jQFRK0p5I8P9DStNkC+TQf5AfRNllnC7K+3f
I1xQC9ootuQmthUk7gz4800pDcvNcZ7hKn8N+REh
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-ams.rpki-client.org