Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ed5da-85cf-449f-bd85-628b0fbcd0b6/1/Z1GWWWq12yyJ7s0_iEtqas9mpck.roa
File: Z1GWWWq12yyJ7s0_iEtqas9mpck.roa (raw, json)
Hash identifier: y8Pp0jWMukEl7KNwrWblBD7rRasovamUY9VH4cU35RI=
Subject key identifier: 67:51:96:59:6A:B5:DB:2C:89:EE:CD:3F:88:4B:6A:6A:CF:66:A5:C9
Certificate issuer: /CN=03820e964dfd3d281420afda20ce949e60d4cc44
Certificate serial: 080B15E5
Authority key identifier: 03:82:0E:96:4D:FD:3D:28:14:20:AF:DA:20:CE:94:9E:60:D4:CC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A4IOlk39PSgUIK_aIM6UnmDUzEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ed5da-85cf-449f-bd85-628b0fbcd0b6/1/Z1GWWWq12yyJ7s0_iEtqas9mpck.roa
Signing time: Sat 01 Jan 2022 15:06:26 +0000
ROA not before: Sat 01 Jan 2022 15:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199165
IP address blocks: 91.241.56.0/24 maxlen: 24
2001:67c:2e7c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134944229 (0x80b15e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03820e964dfd3d281420afda20ce949e60d4cc44
Validity
Not Before: Jan 1 15:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=675196596ab5db2c89eecd3f884b6a6acf66a5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:dc:15:a6:fd:6e:24:58:d2:92:c7:b1:09:
34:ce:57:bd:3e:aa:aa:4e:3e:e0:90:46:11:47:5f:
92:7a:77:20:19:29:8f:d9:2f:79:92:61:e4:df:35:
af:62:da:4f:cf:58:79:85:64:2b:f7:0f:0f:4c:5f:
76:22:bf:9e:3c:54:b8:14:2c:c9:2a:3a:a2:ee:99:
d5:d7:2b:1b:47:a8:96:8e:8f:f5:15:1b:ca:86:68:
7e:aa:5c:ca:99:19:d1:61:2b:52:af:25:a2:86:ce:
00:d7:15:75:1b:94:a2:c3:3e:53:8a:b8:bf:96:0d:
ed:98:93:8d:64:83:04:67:c5:a1:4a:ab:d9:ea:6e:
46:e5:92:55:c2:dc:08:44:c1:b1:d2:1d:52:ad:0e:
f7:c4:3f:1f:18:c2:50:94:f0:ee:20:0b:99:3d:c1:
3d:ce:f9:ed:10:de:b6:4b:c2:2e:3a:31:d3:7a:bb:
18:5e:3c:93:db:2e:5b:4d:0d:1a:75:cc:3b:d2:f6:
71:12:d5:5b:4b:c0:91:a8:51:51:b9:6c:23:47:1d:
bd:41:ad:09:62:7a:33:a6:ea:47:90:2f:a5:95:03:
5f:af:d4:ab:5f:ad:04:29:db:fc:a3:13:38:20:4c:
7c:01:48:9b:cf:89:31:1c:d3:86:06:9c:77:7b:51:
bc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:51:96:59:6A:B5:DB:2C:89:EE:CD:3F:88:4B:6A:6A:CF:66:A5:C9
X509v3 Authority Key Identifier:
keyid:03:82:0E:96:4D:FD:3D:28:14:20:AF:DA:20:CE:94:9E:60:D4:CC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A4IOlk39PSgUIK_aIM6UnmDUzEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ed5da-85cf-449f-bd85-628b0fbcd0b6/1/Z1GWWWq12yyJ7s0_iEtqas9mpck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ed5da-85cf-449f-bd85-628b0fbcd0b6/1/A4IOlk39PSgUIK_aIM6UnmDUzEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.56.0/24
IPv6:
2001:67c:2e7c::/48
Signature Algorithm: sha256WithRSAEncryption
09:34:7a:b7:f0:65:d5:3e:0f:a3:45:ca:34:a5:21:a7:c3:7d:
f8:ab:56:23:d8:df:83:e3:05:8e:8d:92:43:e9:c6:5f:80:b9:
34:7d:af:a7:e9:5d:7a:35:20:f4:68:53:15:ac:56:05:45:75:
2f:9e:ca:4c:37:31:e7:60:8b:5f:6c:a5:43:af:a9:c8:ec:75:
a9:45:03:35:92:b2:ff:c4:8b:3d:ba:71:b1:a7:bd:28:64:b6:
81:3c:e3:07:78:99:11:8d:fd:44:e3:80:ab:a0:1f:97:37:ad:
43:53:dd:38:66:03:a4:c8:a9:51:4c:cc:5d:29:f0:13:8b:a1:
ff:8e:fe:ed:be:6b:d0:5f:ea:f1:7a:fd:c8:6f:68:12:f4:bf:
f1:5d:db:57:c3:5b:74:c9:8e:e4:11:e0:bf:bb:7a:b5:4a:e2:
1e:1d:05:56:5f:24:42:33:fe:38:54:19:64:d7:ba:71:9b:cd:
d8:c0:15:db:93:1d:0d:fa:d2:b8:37:f2:4e:4f:a2:d9:37:b9:
93:41:b2:bb:bc:2b:41:de:ba:1b:d2:ce:30:e5:4a:19:11:19:
05:f0:44:a3:62:4b:fb:70:73:35:9a:db:f0:01:13:c7:25:89:
3e:b6:ba:14:e4:e6:e4:3c:6c:89:9a:cb:2b:02:55:53:47:4a:
2b:cf:bb:51
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECAsV5TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MzgyMGU5NjRkZmQzZDI4MTQyMGFmZGEyMGNlOTQ5ZTYwZDRjYzQ0MB4XDTIyMDEw
MTE1MDYyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc1MTk2NTk2YWI1
ZGIyYzg5ZWVjZDNmODg0YjZhNmFjZjY2YTVjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMoU3BWm/W4kWNKSx7EJNM5XvT6qqk4+4JBGEUdfknp3IBkp
j9kveZJh5N81r2LaT89YeYVkK/cPD0xfdiK/njxUuBQsySo6ou6Z1dcrG0eolo6P
9RUbyoZofqpcypkZ0WErUq8loobOANcVdRuUosM+U4q4v5YN7ZiTjWSDBGfFoUqr
2epuRuWSVcLcCETBsdIdUq0O98Q/HxjCUJTw7iALmT3BPc757RDetkvCLjox03q7
GF48k9suW00NGnXMO9L2cRLVW0vAkahRUblsI0cdvUGtCWJ6M6bqR5AvpZUDX6/U
q1+tBCnb/KMTOCBMfAFIm8+JMRzThgacd3tRvM8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRnUZZZarXbLInuzT+IS2pqz2alyTAfBgNVHSMEGDAWgBQDgg6WTf09KBQg
r9ogzpSeYNTMRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0E0SU9sazM5UFNnVUlLX2FJTTZVbm1EVXpFUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTUvMmVkNWRhLTg1Y2YtNDQ5Zi1iZDg1LTYyOGIwZmJjZDBiNi8x
L1oxR1dXV3ExMnl5SjdzMF9pRXRxYXM5bXBjay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUv
MmVkNWRhLTg1Y2YtNDQ5Zi1iZDg1LTYyOGIwZmJjZDBiNi8xL0E0SU9sazM5UFNn
VUlLX2FJTTZVbm1EVXpFUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvxODAPBAIAAjAJAwcAIAEGfC58
MA0GCSqGSIb3DQEBCwUAA4IBAQAJNHq38GXVPg+jRco0pSGnw334q1Yj2N+D4wWO
jZJD6cZfgLk0fa+n6V16NSD0aFMVrFYFRXUvnspMNzHnYItfbKVDr6nI7HWpRQM1
krL/xIs9unGxp70oZLaBPOMHeJkRjf1E44CroB+XN61DU904ZgOkyKlRTMxdKfAT
i6H/jv7tvmvQX+rxev3Ib2gS9L/xXdtXw1t0yY7kEeC/u3q1SuIeHQVWXyRCM/44
VBlk17pxm83YwBXbkx0N+tK4N/JOT6LZN7mTQbK7vCtB3rob0s4w5UoZERkF8ESj
Ykv7cHM1mtvwARPHJYk+troU5ObkPGyJmssrAlVTR0orz7tR
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:43 2025 by rpki-client