Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/ZLFAZRcOM66Zhb7AO6zb-S3bIbI.roa
File: ZLFAZRcOM66Zhb7AO6zb-S3bIbI.roa (raw, json)
Hash identifier: rVj9+5Pqa/MTc0szvvL4rov1ZI7yEodiz6iTOPJvThQ=
Subject key identifier: 64:B1:40:65:17:0E:33:AE:99:85:BE:C0:3B:AC:DB:F9:2D:DB:21:B2
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16D01AA4
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/ZLFAZRcOM66Zhb7AO6zb-S3bIbI.roa
Signing time: Sat 01 Jan 2022 12:01:30 +0000
ROA not before: Sat 01 Jan 2022 12:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42484
IP address blocks: 141.101.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382737060 (0x16d01aa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64b14065170e33ae9985bec03bacdbf92ddb21b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:65:c3:20:c8:6c:97:6a:c2:01:b7:7b:b9:f9:
b7:a7:91:cc:51:7b:44:f2:ce:3c:7e:00:1d:8e:0d:
71:bf:15:6e:52:78:26:49:6c:90:bd:3f:20:09:e5:
17:72:6c:b9:d4:a8:27:d4:22:fd:d9:96:a0:b1:e5:
91:13:33:b9:ab:40:f2:84:cf:05:0c:a6:ee:dc:fc:
22:4d:e5:46:35:ee:76:db:ec:08:06:c9:1c:53:d6:
4c:80:8f:7c:2f:0a:27:bb:34:5c:c8:1e:e0:75:c6:
5c:6d:0e:f6:91:0a:f2:40:04:84:ef:b0:96:41:08:
e9:73:34:4f:0e:7c:98:00:3e:7b:e3:eb:fe:71:90:
c5:41:42:0e:9a:1b:2d:21:d8:19:9e:7b:86:b2:05:
39:2a:6e:c5:66:27:9e:af:32:8c:45:a3:45:36:68:
a7:61:6d:e1:e5:3b:f8:7d:a8:02:5b:f0:02:96:0c:
71:82:0a:bf:82:b7:82:1a:ba:c2:ad:a6:7c:b5:a4:
aa:06:fd:eb:9c:67:d2:96:ac:0d:75:58:e9:54:e6:
c2:27:ed:7f:98:8b:67:81:3a:b1:32:1b:a4:ac:21:
7f:ef:62:03:b0:45:63:e8:0d:84:f2:e2:32:f3:2d:
2c:fb:5c:f8:36:eb:5f:35:a1:81:c1:d7:c7:7b:a3:
29:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B1:40:65:17:0E:33:AE:99:85:BE:C0:3B:AC:DB:F9:2D:DB:21:B2
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/ZLFAZRcOM66Zhb7AO6zb-S3bIbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.175.0/24
Signature Algorithm: sha256WithRSAEncryption
15:af:41:5e:b6:2e:f1:25:60:1c:28:eb:12:7b:9c:ba:bd:47:
8d:8e:c8:ac:9d:ff:a8:12:2c:71:97:e7:40:15:9b:fe:bb:23:
4c:e1:4f:c4:85:01:63:0d:5b:4c:e6:29:1c:a6:b6:ab:8f:a5:
9e:b3:e2:6b:cc:e0:8b:a2:7b:23:4f:ba:b4:8c:a3:a4:5a:1a:
a0:37:45:d9:64:ec:1e:1c:35:b0:5f:06:89:6e:b5:88:fd:56:
75:bf:35:82:27:b8:f3:00:b7:e2:50:e9:af:75:9a:70:d6:04:
eb:ce:7c:a0:de:9d:c0:1a:a6:56:06:30:03:dd:b0:e2:d2:50:
ee:2c:d9:c7:50:12:61:3c:83:71:af:7b:00:b1:12:40:16:b1:
9f:4d:74:d1:67:05:da:4b:b6:ea:50:b7:de:73:1d:99:87:58:
75:21:8f:41:37:e0:d6:72:e2:c8:05:e5:70:58:83:f2:ca:0b:
06:e6:c5:a9:42:0b:e1:3f:b0:77:f4:81:ab:a2:c9:57:30:16:
74:cb:88:49:c0:69:f9:74:28:2b:40:fe:bc:71:03:ed:01:74:
da:5d:bc:3e:31:e5:e2:f3:97:ea:81:77:9f:94:0e:35:7a:7a:
a2:50:0b:5f:b0:22:33:4b:01:d6:18:0a:cd:8d:81:60:e3:16:
8e:13:51:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFtAapDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODg1ZTg4NGMyZmM3YTc1ZDEyZGQxZGVhNDljZTIzNDljNDcwNjdlMB4XDTIyMDEw
MTEyMDEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjRiMTQwNjUxNzBl
MzNhZTk5ODViZWMwM2JhY2RiZjkyZGRiMjFiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANplwyDIbJdqwgG3e7n5t6eRzFF7RPLOPH4AHY4Ncb8VblJ4
JklskL0/IAnlF3JsudSoJ9Qi/dmWoLHlkRMzuatA8oTPBQym7tz8Ik3lRjXudtvs
CAbJHFPWTICPfC8KJ7s0XMge4HXGXG0O9pEK8kAEhO+wlkEI6XM0Tw58mAA+e+Pr
/nGQxUFCDpobLSHYGZ57hrIFOSpuxWYnnq8yjEWjRTZop2Ft4eU7+H2oAlvwApYM
cYIKv4K3ghq6wq2mfLWkqgb965xn0pasDXVY6VTmwiftf5iLZ4E6sTIbpKwhf+9i
A7BFY+gNhPLiMvMtLPtc+DbrXzWhgcHXx3ujKRcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRksUBlFw4zrpmFvsA7rNv5LdshsjAfBgNVHSMEGDAWgBRYheiEwvx6ddEt
0d6knOI0nEcGfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dJWG9oTUw4ZW5YUkxkSGVwSnppTkp4SEJuNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvNmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8x
L1pMRkFaUmNPTTY2WmhiN0FPNnpiLVMzYkliSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
NmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8xL1dJWG9oTUw4ZW5Y
UkxkSGVwSnppTkp4SEJuNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI1lrzANBgkqhkiG9w0BAQsFAAOC
AQEAFa9BXrYu8SVgHCjrEnucur1HjY7IrJ3/qBIscZfnQBWb/rsjTOFPxIUBYw1b
TOYpHKa2q4+lnrPia8zgi6J7I0+6tIyjpFoaoDdF2WTsHhw1sF8GiW61iP1Wdb81
gie48wC34lDpr3WacNYE6858oN6dwBqmVgYwA92w4tJQ7izZx1ASYTyDca97ALES
QBaxn0100WcF2ku26lC33nMdmYdYdSGPQTfg1nLiyAXlcFiD8soLBubFqUIL4T+w
d/SBq6LJVzAWdMuIScBp+XQoK0D+vHED7QF02l28PjHl4vOX6oF3n5QONXp6olAL
X7AiM0sB1hgKzY2BYOMWjhNRjg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:55 2023 by rpki-client on console-fra.rpki-client.org