Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Z9WzFE94g084E_4AoZX00WIXB00.roa
File: Z9WzFE94g084E_4AoZX00WIXB00.roa (raw, json)
Hash identifier: iOy7HnJx9W7n9elk7C2gtIpSXSGHJT2AXS8VEPsArwk=
Subject key identifier: 67:D5:B3:14:4F:78:83:4F:38:13:FE:00:A1:95:F4:D1:62:17:07:4D
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 03B14DC6
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Z9WzFE94g084E_4AoZX00WIXB00.roa
Signing time: Sat 01 Jan 2022 09:55:41 +0000
ROA not before: Sat 01 Jan 2022 09:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34820
IP address blocks: 195.146.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61951430 (0x3b14dc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 1 09:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67d5b3144f78834f3813fe00a195f4d16217074d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:e0:0b:85:be:12:db:2d:1a:63:77:fa:88:
df:63:1f:75:f8:61:c7:2b:71:44:8b:40:98:3f:25:
f8:0c:39:e1:17:3a:47:2e:70:88:d5:45:a0:19:6d:
d3:c3:42:ae:d3:6c:29:52:41:0f:2c:59:a3:02:48:
0a:3c:d6:66:bd:cd:0f:13:75:56:06:c8:63:e9:1d:
d1:03:68:c6:12:da:1a:47:c8:ac:1d:44:8e:61:fe:
7c:7b:12:84:58:64:d3:79:ef:b0:81:14:dc:ad:9d:
4f:1e:02:b3:a0:64:0f:8b:3f:57:93:14:37:85:ea:
11:85:88:44:4a:c7:92:a5:a6:20:2b:b5:61:73:28:
de:51:31:8f:52:d3:27:25:86:75:38:e3:87:4d:b1:
2d:f3:56:96:54:e8:40:4a:9d:3f:7e:e1:d5:df:ae:
8f:2e:9f:2e:79:c5:3c:12:8c:fb:1b:4e:47:00:a9:
55:28:6c:44:4c:a7:6b:8e:00:28:90:47:0b:b1:26:
63:30:ea:d9:cf:65:9c:14:3d:39:87:41:0e:93:2c:
97:0d:cd:8c:a7:d6:12:d5:bb:b6:33:74:3b:85:28:
a4:8a:fe:f3:0e:26:13:07:1e:15:80:37:f4:89:3e:
25:60:49:88:34:0b:54:0c:3e:b8:f1:ec:d0:43:dd:
31:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D5:B3:14:4F:78:83:4F:38:13:FE:00:A1:95:F4:D1:62:17:07:4D
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/Z9WzFE94g084E_4AoZX00WIXB00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.146.10.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:90:d6:3d:16:44:ed:9a:d9:35:73:a2:74:d8:aa:40:95:de:
11:2c:95:26:68:aa:2d:51:42:7e:cb:16:1f:77:ed:37:b8:17:
ac:d6:4e:0d:a9:6c:a3:b3:1d:8e:cd:fd:cb:9d:95:21:04:65:
98:57:52:6c:a6:61:90:15:fe:3a:54:d3:d3:3b:68:b6:83:7f:
cc:dd:4b:2a:ac:4f:9f:f5:da:d5:4f:39:a6:78:85:9f:f3:d0:
3a:17:94:97:fb:99:43:a7:ab:2a:c9:55:49:97:37:a3:1e:8b:
c3:4c:cf:2c:b9:4b:c1:6a:94:0d:86:5b:ec:25:e5:02:0d:f0:
6b:ea:88:5b:6b:8b:a8:59:c4:34:02:2e:f9:d6:65:20:10:f5:
59:05:93:f8:d1:0d:9a:4a:d8:63:31:85:41:ba:19:e8:7b:25:
2c:f6:37:fe:f4:b1:26:9b:6f:90:98:a3:90:1b:24:bb:1d:cd:
65:18:57:0c:ec:3d:2a:52:0b:87:0c:5c:36:5e:f1:3c:65:bd:
58:bd:d9:52:74:cc:55:03:fd:64:66:7c:7b:33:7a:1b:01:da:
72:a4:dc:13:06:54:87:d2:90:80:64:13:95:19:58:c9:21:2e:
09:23:6b:65:51:1a:b4:ad:01:ca:f1:33:c1:bb:96:bb:c3:bd:
8a:6a:9b:21
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7FNxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTYyZDVhNjdiN2EyMGY4NjVlNzUzMTYzYTZlZDBlNWYzNDdlODM5MB4XDTIyMDEw
MTA5NTU0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjdkNWIzMTQ0Zjc4
ODM0ZjM4MTNmZTAwYTE5NWY0ZDE2MjE3MDc0ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALsJ4AuFvhLbLRpjd/qI32MfdfhhxytxRItAmD8l+Aw54Rc6
Ry5wiNVFoBlt08NCrtNsKVJBDyxZowJICjzWZr3NDxN1VgbIY+kd0QNoxhLaGkfI
rB1EjmH+fHsShFhk03nvsIEU3K2dTx4Cs6BkD4s/V5MUN4XqEYWIRErHkqWmICu1
YXMo3lExj1LTJyWGdTjjh02xLfNWllToQEqdP37h1d+ujy6fLnnFPBKM+xtORwCp
VShsREyna44AKJBHC7EmYzDq2c9lnBQ9OYdBDpMslw3NjKfWEtW7tjN0O4UopIr+
8w4mEwceFYA39Ik+JWBJiDQLVAw+uPHs0EPdMbUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRn1bMUT3iDTzgT/gChlfTRYhcHTTAfBgNVHSMEGDAWgBQFYtWme3og+GXn
UxY6btDl80foOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JXTFZwbnQ2SVBobDUxTVdPbTdRNWZOSDZEay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvOGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8x
L1o5V3pGRTk0ZzA4NEVfNEFvWlgwMFdJWEIwMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
OGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8xL0JXTFZwbnQ2SVBo
bDUxTVdPbTdRNWZOSDZEay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMOSCjANBgkqhkiG9w0BAQsFAAOC
AQEATZDWPRZE7ZrZNXOidNiqQJXeESyVJmiqLVFCfssWH3ftN7gXrNZODalso7Md
js39y52VIQRlmFdSbKZhkBX+OlTT0ztotoN/zN1LKqxPn/Xa1U85pniFn/PQOheU
l/uZQ6erKslVSZc3ox6Lw0zPLLlLwWqUDYZb7CXlAg3wa+qIW2uLqFnENAIu+dZl
IBD1WQWT+NENmkrYYzGFQboZ6HslLPY3/vSxJptvkJijkBskux3NZRhXDOw9KlIL
hwxcNl7xPGW9WL3ZUnTMVQP9ZGZ8ezN6GwHacqTcEwZUh9KQgGQTlRlYySEuCSNr
ZVEatK0ByvEzwbuWu8O9imqbIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org