Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/ec3b5a-2143-48ee-8daa-4d88a83e8b7a/1/SHZOF-6xbNlXh-139br1XieXAHE.roa
File: SHZOF-6xbNlXh-139br1XieXAHE.roa (raw, json)
Hash identifier: zLljI9NdMKMSvHlYPMb5AX9gkePcmESjbgndfkcQqYU=
Subject key identifier: 48:76:4E:17:EE:B1:6C:D9:57:87:ED:77:F5:BA:F5:5E:27:97:00:71
Certificate issuer: /CN=1274b215c6f64e38f7ab57bf1cbce4849c853dac
Certificate serial: 0571853B
Authority key identifier: 12:74:B2:15:C6:F6:4E:38:F7:AB:57:BF:1C:BC:E4:84:9C:85:3D:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EnSyFcb2Tjj3q1e_HLzkhJyFPaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/ec3b5a-2143-48ee-8daa-4d88a83e8b7a/1/SHZOF-6xbNlXh-139br1XieXAHE.roa
Signing time: Sat 01 Jan 2022 08:57:27 +0000
ROA not before: Sat 01 Jan 2022 08:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35132
IP address blocks: 188.119.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91325755 (0x571853b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1274b215c6f64e38f7ab57bf1cbce4849c853dac
Validity
Not Before: Jan 1 08:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48764e17eeb16cd95787ed77f5baf55e27970071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fe:f6:ea:06:ee:63:6b:6f:e1:f3:2b:69:e7:
33:82:44:06:e1:55:47:10:0c:9c:ae:85:a9:fb:26:
cb:2e:8a:3c:54:7b:fb:68:c6:75:4d:0f:ce:5f:81:
10:2e:d2:30:3c:0d:11:5e:bc:bb:0b:9a:15:79:08:
b3:98:6e:a3:72:48:01:14:f9:57:94:61:02:2a:15:
b1:68:aa:f4:42:ae:0b:92:a8:e3:37:47:7b:d5:c2:
22:bb:ed:84:45:36:a9:bc:9d:05:cc:af:ac:b1:29:
c0:ef:fd:1e:11:20:47:24:32:d8:ea:03:a5:3f:33:
9a:3f:20:b7:7e:7e:64:b9:30:73:4e:93:1e:60:ec:
cb:15:0a:b3:06:4c:02:45:70:23:5e:c2:05:3d:df:
2f:09:5e:dd:80:2f:f4:c6:51:15:e7:eb:98:1b:06:
71:43:25:79:f2:09:e8:d7:f4:ea:73:c4:05:91:be:
ca:e8:b6:01:a1:04:01:7e:f1:75:4c:1b:47:93:34:
8a:97:5e:85:5e:07:bf:7e:aa:45:c3:f4:b8:ce:31:
f3:bf:d4:fd:10:cb:ea:92:76:f6:48:d0:d9:0a:c6:
86:88:da:59:8e:eb:e6:8a:c6:fc:a4:50:6e:14:dd:
2f:26:d4:98:aa:8f:9f:02:47:4d:d7:5c:8c:98:44:
0f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:76:4E:17:EE:B1:6C:D9:57:87:ED:77:F5:BA:F5:5E:27:97:00:71
X509v3 Authority Key Identifier:
keyid:12:74:B2:15:C6:F6:4E:38:F7:AB:57:BF:1C:BC:E4:84:9C:85:3D:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EnSyFcb2Tjj3q1e_HLzkhJyFPaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ec3b5a-2143-48ee-8daa-4d88a83e8b7a/1/SHZOF-6xbNlXh-139br1XieXAHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ec3b5a-2143-48ee-8daa-4d88a83e8b7a/1/EnSyFcb2Tjj3q1e_HLzkhJyFPaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:d8:39:12:ae:c3:4a:b9:42:fe:7a:b0:b6:24:9e:3c:38:63:
ab:bc:27:d1:68:38:2d:99:d8:af:2a:10:2c:65:12:21:9b:c8:
49:ea:f5:be:7f:97:e1:8f:45:7e:7a:d6:4e:ce:4a:9c:17:c8:
79:d2:d2:f4:64:07:5f:50:ba:65:27:b4:40:ce:a0:ad:67:48:
2f:5a:1b:3e:c6:cc:77:09:65:45:db:14:12:5d:65:8e:74:c6:
a3:a2:68:2f:1e:43:6a:e3:86:93:17:4d:7e:84:13:3e:da:c8:
4a:b4:83:71:27:21:f3:13:e6:b1:da:32:fd:27:5c:ab:00:10:
f6:69:e1:4a:32:19:da:8a:6b:00:2a:b8:9d:95:06:dd:16:1e:
e8:f9:4b:5d:f9:2a:14:55:d1:4b:8c:6e:f6:18:96:74:a8:97:
02:82:b8:c4:dc:f9:b1:86:94:a2:72:6f:9c:af:14:30:11:56:
9f:5c:ee:63:2b:06:4e:44:9b:62:ce:e4:7a:b3:63:c6:a1:93:
a4:66:7e:83:91:2f:31:39:b2:6b:1e:19:53:2d:78:fe:0f:4a:
3f:41:57:11:72:1f:4b:af:46:fb:08:06:ab:d3:3a:9a:5a:bb:
61:f7:10:78:12:0c:77:4b:96:ee:be:da:66:bd:9d:b5:8f:93:
9d:7d:07:0a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBXGFOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Mjc0YjIxNWM2ZjY0ZTM4ZjdhYjU3YmYxY2JjZTQ4NDljODUzZGFjMB4XDTIyMDEw
MTA4NTcyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDg3NjRlMTdlZWIx
NmNkOTU3ODdlZDc3ZjViYWY1NWUyNzk3MDA3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALP+9uoG7mNrb+HzK2nnM4JEBuFVRxAMnK6Fqfsmyy6KPFR7
+2jGdU0Pzl+BEC7SMDwNEV68uwuaFXkIs5huo3JIART5V5RhAioVsWiq9EKuC5Ko
4zdHe9XCIrvthEU2qbydBcyvrLEpwO/9HhEgRyQy2OoDpT8zmj8gt35+ZLkwc06T
HmDsyxUKswZMAkVwI17CBT3fLwle3YAv9MZRFefrmBsGcUMlefIJ6Nf06nPEBZG+
yui2AaEEAX7xdUwbR5M0ipdehV4Hv36qRcP0uM4x87/U/RDL6pJ29kjQ2QrGhoja
WY7r5orG/KRQbhTdLybUmKqPnwJHTddcjJhEDw8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRIdk4X7rFs2VeH7Xf1uvVeJ5cAcTAfBgNVHSMEGDAWgBQSdLIVxvZOOPer
V78cvOSEnIU9rDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VuU3lGY2IyVGpqM3ExZV9ITHpraEp5RlBhdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvZWMzYjVhLTIxNDMtNDhlZS04ZGFhLTRkODhhODNlOGI3YS8x
L1NIWk9GLTZ4Yk5sWGgtMTM5YnIxWGllWEFIRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
ZWMzYjVhLTIxNDMtNDhlZS04ZGFhLTRkODhhODNlOGI3YS8xL0VuU3lGY2IyVGpq
M3ExZV9ITHpraEp5RlBhdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArx3UDANBgkqhkiG9w0BAQsFAAOC
AQEAS9g5Eq7DSrlC/nqwtiSePDhjq7wn0Wg4LZnYryoQLGUSIZvISer1vn+X4Y9F
fnrWTs5KnBfIedLS9GQHX1C6ZSe0QM6grWdIL1obPsbMdwllRdsUEl1ljnTGo6Jo
Lx5DauOGkxdNfoQTPtrISrSDcSch8xPmsdoy/SdcqwAQ9mnhSjIZ2oprACq4nZUG
3RYe6PlLXfkqFFXRS4xu9hiWdKiXAoK4xNz5sYaUonJvnK8UMBFWn1zuYysGTkSb
Ys7kerNjxqGTpGZ+g5EvMTmyax4ZUy14/g9KP0FXEXIfS69G+wgGq9M6mlq7YfcQ
eBIMd0uW7r7aZr2dtY+TnX0HCg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:29 2023 by rpki-client on console-ams.rpki-client.org