Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZGYK-m0sVrZvEyJI6jWxqOh7M9w.roa
File: ZGYK-m0sVrZvEyJI6jWxqOh7M9w.roa (raw, json)
Hash identifier: OxzSloeTh/3CIAeC2x0zuo2UM3Vy4eSJZwTKLzOtnsk=
Subject key identifier: 64:66:0A:FA:6D:2C:56:B6:6F:13:22:48:EA:35:B1:A8:E8:7B:33:DC
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 0182869933B750F6160963FF35A2DDD78078
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZGYK-m0sVrZvEyJI6jWxqOh7M9w.roa
Signing time: Wed 10 Aug 2022 07:12:43 +0000
ROA not before: Wed 10 Aug 2022 07:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45012
IP address blocks: 194.34.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:86:99:33:b7:50:f6:16:09:63:ff:35:a2:dd:d7:80:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Aug 10 07:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64660afa6d2c56b66f132248ea35b1a8e87b33dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:39:8a:5e:a8:75:ac:66:37:b7:b5:9f:7b:bd:
a1:c5:e9:90:34:4b:89:c2:07:89:95:bb:6d:8b:3d:
76:46:04:ae:d8:56:e9:f0:69:2e:bc:ca:68:4f:1a:
f0:bf:ac:c2:d5:a4:b0:14:0f:76:08:1f:d4:bd:6e:
98:a6:3a:26:ec:7b:c9:c4:81:3f:70:0b:0f:09:2a:
13:05:48:d0:d7:fc:1b:a6:00:fc:24:27:9b:fc:a1:
6c:13:fe:72:d5:9c:10:aa:f9:3c:07:a2:04:f1:67:
49:a1:93:66:27:eb:be:29:2a:fb:53:ae:c4:5a:c6:
e3:fa:08:ff:aa:ba:d0:e6:d2:95:7b:ac:47:de:da:
a5:88:74:57:62:40:f2:e9:44:a2:4a:c4:34:f2:f7:
22:39:44:d8:ad:18:81:6f:20:04:d9:86:c9:43:31:
f7:95:a2:d9:a3:6e:3d:af:80:82:f8:46:1d:99:8d:
83:cf:63:80:2c:58:59:7a:2f:df:ef:47:3e:08:50:
bf:e2:91:7b:62:c2:9f:81:6b:29:ad:a4:bf:9e:47:
d2:2c:42:a0:3e:c1:ba:89:8b:04:d7:8c:78:a8:fc:
00:b3:0a:b3:eb:66:2a:de:ea:eb:8d:fc:d5:14:08:
0d:be:6c:99:8e:c9:00:f1:a5:80:e7:d6:f7:a8:99:
03:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:66:0A:FA:6D:2C:56:B6:6F:13:22:48:EA:35:B1:A8:E8:7B:33:DC
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZGYK-m0sVrZvEyJI6jWxqOh7M9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.225.0/24
Signature Algorithm: sha256WithRSAEncryption
87:95:93:11:5c:2d:cc:64:87:2e:ba:29:0e:7b:d6:50:61:35:
fd:e7:3e:f0:ba:b6:ba:b8:1a:f4:f3:a0:83:c5:57:41:38:12:
58:3f:28:48:f2:fa:f9:3d:43:b2:a1:8c:3c:e7:18:67:ad:c3:
7d:b6:e6:7f:4b:64:2f:46:93:77:7f:e5:09:13:1f:9c:e2:b4:
2c:db:04:95:be:9f:f7:7e:95:89:72:56:c6:e8:e0:85:94:28:
b2:11:e3:f9:55:10:8f:f8:50:e2:95:48:29:fb:c7:fd:df:b7:
0f:21:85:0b:17:eb:12:ff:73:3d:06:24:05:7c:0f:9c:8f:88:
e2:fb:50:87:b8:e9:c4:dd:aa:f5:31:b9:03:71:8f:1f:4e:5e:
90:55:c9:c3:a8:a2:6a:0f:67:a9:60:13:c4:28:97:aa:1f:51:
a5:28:2b:89:44:8e:76:b1:ef:59:8a:e6:16:bc:fb:87:be:4f:
59:9e:dd:ca:bb:7d:11:9e:74:b4:4a:3c:60:0b:79:87:c0:49:
26:5d:87:0c:e5:c4:b1:12:fe:33:6b:43:26:3b:51:04:ec:a3:
18:e9:44:88:88:92:c5:94:8e:d1:59:50:cf:b2:fd:72:b3:c1:
8d:b3:6c:ee:e3:d7:49:57:4c:20:28:3f:d6:d7:0c:e0:7a:e5:
08:8c:9c:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKGmTO3UPYWCWP/NaLd14B4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0M2UxYmE5MWM1NjlhOGIyMWE2ZDJkNjdmNWRiYmQ2YzA0
ZTQzZWEwHhcNMjIwODEwMDcxMjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDY2MGFmYTZkMmM1NmI2NmYxMzIyNDhlYTM1YjFhOGU4N2IzM2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDmKXqh1rGY3t7Wfe72hxemQNEuJ
wgeJlbttiz12RgSu2Fbp8GkuvMpoTxrwv6zC1aSwFA92CB/UvW6Ypjom7HvJxIE/
cAsPCSoTBUjQ1/wbpgD8JCeb/KFsE/5y1ZwQqvk8B6IE8WdJoZNmJ+u+KSr7U67E
Wsbj+gj/qrrQ5tKVe6xH3tqliHRXYkDy6USiSsQ08vciOUTYrRiBbyAE2YbJQzH3
laLZo249r4CC+EYdmY2Dz2OALFhZei/f70c+CFC/4pF7YsKfgWspraS/nkfSLEKg
PsG6iYsE14x4qPwAswqz62Yq3urrjfzVFAgNvmyZjskA8aWA59b3qJkDeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGRmCvptLFa2bxMiSOo1sajoezPcMB8GA1UdIwQY
MBaAFGQ+G6kcVpqLIabS1n9du9bATkPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAt
ZmVhMGFmZjM1OWY1LzEvWkdZSy1tMHNWclp2RXlKSTZqV3hxT2g3TTl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAtZmVhMGFmZjM1OWY1
LzEvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiLhMA0G
CSqGSIb3DQEBCwUAA4IBAQCHlZMRXC3MZIcuuikOe9ZQYTX95z7wura6uBr086CD
xVdBOBJYPyhI8vr5PUOyoYw85xhnrcN9tuZ/S2QvRpN3f+UJEx+c4rQs2wSVvp/3
fpWJclbG6OCFlCiyEeP5VRCP+FDilUgp+8f937cPIYULF+sS/3M9BiQFfA+cj4ji
+1CHuOnE3ar1MbkDcY8fTl6QVcnDqKJqD2epYBPEKJeqH1GlKCuJRI52se9ZiuYW
vPuHvk9Znt3Ku30RnnS0SjxgC3mHwEkmXYcM5cSxEv4za0MmO1EE7KMY6USIiJLF
lI7RWVDPsv1ys8GNs2zu49dJV0wgKD/W1wzgeuUIjJzj
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org