Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/ZRbGEX1iViULbxm_kA6WOYsBMiU.roa
File: ZRbGEX1iViULbxm_kA6WOYsBMiU.roa (raw, json)
Hash identifier: 5AIOEpmwF/2KhBsyxFg1fOUrdCG6VLgc+x/91exTejs=
Subject key identifier: 65:16:C6:11:7D:62:56:25:0B:6F:19:BF:90:0E:96:39:8B:01:32:25
Certificate issuer: /CN=3c3f45021d6eb340a42b2e5dd1fbf721a1a66d61
Certificate serial: 016D36
Authority key identifier: 3C:3F:45:02:1D:6E:B3:40:A4:2B:2E:5D:D1:FB:F7:21:A1:A6:6D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PD9FAh1us0CkKy5d0fv3IaGmbWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/ZRbGEX1iViULbxm_kA6WOYsBMiU.roa
Signing time: Tue 26 Apr 2022 15:03:11 +0000
ROA not before: Tue 26 Apr 2022 15:03:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 91.212.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93494 (0x16d36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c3f45021d6eb340a42b2e5dd1fbf721a1a66d61
Validity
Not Before: Apr 26 15:03:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6516c6117d6256250b6f19bf900e96398b013225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:15:7d:06:4c:f1:7c:70:8f:e5:5d:98:91:
65:6b:36:d0:3c:ac:ea:c1:10:c7:d6:fa:fc:f2:03:
8d:31:91:fe:da:31:e6:0b:bf:10:61:91:56:53:98:
da:cc:e9:a1:62:5b:d0:b7:27:63:83:03:8d:2b:70:
a5:e9:70:bd:84:a3:93:ad:e4:b8:3f:88:bc:bb:5e:
a1:3b:46:84:a1:a4:70:27:01:4b:ea:21:06:27:62:
a8:53:d6:38:be:48:03:e7:06:27:5e:40:25:0a:e3:
6a:5c:2e:f6:12:14:98:c5:d0:b1:6d:b2:24:9f:ec:
85:2e:c2:8b:e0:92:51:de:13:06:d1:72:54:c9:41:
b5:02:06:05:cd:0b:81:55:a4:12:70:e9:a1:fe:50:
80:ce:92:a7:2d:7a:0f:8a:56:f6:fb:a8:22:dc:d5:
2f:2c:b6:d7:cb:28:a9:4f:0b:32:81:d5:21:ab:67:
62:6a:e7:bc:e8:4c:0e:4b:96:86:b3:4f:93:5e:a8:
b9:d4:c7:a1:5c:a7:f4:b6:0e:7c:a9:14:f3:64:80:
5f:53:cd:9b:f5:61:91:4f:ae:67:6c:38:29:27:d0:
b5:f1:70:d9:ca:50:fc:4a:06:ce:99:5c:7f:3c:00:
e4:d5:93:75:3c:cb:b5:60:c8:59:e5:5f:41:5b:7d:
98:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:16:C6:11:7D:62:56:25:0B:6F:19:BF:90:0E:96:39:8B:01:32:25
X509v3 Authority Key Identifier:
keyid:3C:3F:45:02:1D:6E:B3:40:A4:2B:2E:5D:D1:FB:F7:21:A1:A6:6D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PD9FAh1us0CkKy5d0fv3IaGmbWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/ZRbGEX1iViULbxm_kA6WOYsBMiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/PD9FAh1us0CkKy5d0fv3IaGmbWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.91.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:75:cf:70:f0:92:d7:93:0f:40:24:97:77:9c:dc:8d:d7:68:
13:2e:c9:99:fc:9f:41:df:31:a5:2b:d9:23:4e:76:38:83:b0:
6d:e0:47:ef:28:1a:92:05:bf:ac:a7:11:c8:56:50:70:cd:fe:
a8:1e:0f:94:21:dc:7a:6d:16:3e:28:23:77:81:a0:94:49:60:
73:a4:40:a9:2f:97:ec:70:31:06:3d:18:80:fd:70:b8:63:fb:
54:6f:cc:6e:a4:d6:ed:f7:f4:3d:67:c8:db:8d:d7:c4:2c:9d:
de:78:a3:41:4e:4a:5f:63:a0:27:39:79:d1:33:7f:87:00:6b:
1a:8f:7c:d1:04:67:b5:b5:17:ad:8a:71:81:36:30:fb:04:dc:
b2:4b:64:c5:ce:8b:d8:29:a4:c4:3e:72:23:2c:e8:2c:c6:46:
ff:78:8d:44:03:75:83:1a:3d:43:83:05:70:e3:b5:56:b7:89:
a1:35:3a:bc:b9:35:c0:b7:f1:f1:02:b6:2e:d1:af:4c:58:89:
fa:a2:f3:95:a3:20:a0:c7:ec:71:3f:58:71:c7:86:1e:86:e9:
da:2c:16:1d:91:bb:83:6c:14:66:8e:2a:87:e1:1a:34:24:cc:
e0:51:df:fb:50:df:14:a7:6d:15:cc:fd:20:6f:02:4d:0e:20:
04:6c:01:e5
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAW02MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNj
M2Y0NTAyMWQ2ZWIzNDBhNDJiMmU1ZGQxZmJmNzIxYTFhNjZkNjEwHhcNMjIwNDI2
MTUwMzExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2NTE2YzYxMTdkNjI1
NjI1MGI2ZjE5YmY5MDBlOTYzOThiMDEzMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApncVfQZM8Xxwj+VdmJFlazbQPKzqwRDH1vr88gONMZH+2jHm
C78QYZFWU5jazOmhYlvQtydjgwONK3Cl6XC9hKOTreS4P4i8u16hO0aEoaRwJwFL
6iEGJ2KoU9Y4vkgD5wYnXkAlCuNqXC72EhSYxdCxbbIkn+yFLsKL4JJR3hMG0XJU
yUG1AgYFzQuBVaQScOmh/lCAzpKnLXoPilb2+6gi3NUvLLbXyyipTwsygdUhq2di
aue86EwOS5aGs0+TXqi51MehXKf0tg58qRTzZIBfU82b9WGRT65nbDgpJ9C18XDZ
ylD8SgbOmVx/PADk1ZN1PMu1YMhZ5V9BW32YVQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGUWxhF9YlYlC28Zv5AOljmLATIlMB8GA1UdIwQYMBaAFDw/RQIdbrNApCsu
XdH79yGhpm1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UEQ5RkFoMXVzMENrS3k1ZDBmdjNJYUdtYldFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85My8wNTI1N2UtMWU2Ny00MTU4LThhZGItNDdkNmU0YmFlMmNmLzEv
WlJiR0VYMWlWaVVMYnhtX2tBNldPWXNCTWlVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8w
NTI1N2UtMWU2Ny00MTU4LThhZGItNDdkNmU0YmFlMmNmLzEvUEQ5RkFoMXVzMENr
S3k1ZDBmdjNJYUdtYldFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9RbMA0GCSqGSIb3DQEBCwUAA4IB
AQCkdc9w8JLXkw9AJJd3nNyN12gTLsmZ/J9B3zGlK9kjTnY4g7Bt4EfvKBqSBb+s
pxHIVlBwzf6oHg+UIdx6bRY+KCN3gaCUSWBzpECpL5fscDEGPRiA/XC4Y/tUb8xu
pNbt9/Q9Z8jbjdfELJ3eeKNBTkpfY6AnOXnRM3+HAGsaj3zRBGe1tRetinGBNjD7
BNyyS2TFzovYKaTEPnIjLOgsxkb/eI1EA3WDGj1DgwVw47VWt4mhNTq8uTXAt/Hx
ArYu0a9MWIn6ovOVoyCgx+xxP1hxx4YehunaLBYdkbuDbBRmjiqH4Ro0JMzgUd/7
UN8Up20VzP0gbwJNDiAEbAHl
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:12 2025 by rpki-client