Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f7e6e9-c121-4064-8ad5-07c17fe374a6/1/CzFCp7-1trzKVc-8m_KoP87S500.roa
File: CzFCp7-1trzKVc-8m_KoP87S500.roa (raw, json)
Hash identifier: FhRYFDzKtd02NM80fGxLokx61qYNV8pC2IXWUqhjWXk=
Subject key identifier: 0B:31:42:A7:BF:B5:B6:BC:CA:55:CF:BC:9B:F2:A8:3F:CE:D2:E7:4D
Certificate issuer: /CN=1ac06cf2c9e957537439734f0584a8204a7b8311
Certificate serial: 106DE33B
Authority key identifier: 1A:C0:6C:F2:C9:E9:57:53:74:39:73:4F:05:84:A8:20:4A:7B:83:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GsBs8snpV1N0OXNPBYSoIEp7gxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f7e6e9-c121-4064-8ad5-07c17fe374a6/1/CzFCp7-1trzKVc-8m_KoP87S500.roa
Signing time: Sat 01 Jan 2022 02:01:17 +0000
ROA not before: Sat 01 Jan 2022 02:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.110.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275637051 (0x106de33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ac06cf2c9e957537439734f0584a8204a7b8311
Validity
Not Before: Jan 1 02:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b3142a7bfb5b6bcca55cfbc9bf2a83fced2e74d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:61:35:80:2d:b9:94:36:dd:15:de:43:2a:cf:
eb:cb:91:1e:5f:dd:15:83:69:df:17:b4:b8:00:14:
fd:cc:ac:f5:a1:2d:d8:4c:65:8b:ed:78:17:35:42:
18:92:4e:41:52:1d:e3:22:81:69:7d:24:c3:85:5f:
fb:69:19:d3:31:fd:f4:d0:32:e6:2d:a9:e9:40:a0:
d1:62:22:98:da:51:c0:48:e8:2c:01:f4:b6:11:ed:
96:e4:4e:49:f2:0b:da:d1:4b:74:8b:04:d4:a5:75:
4b:02:98:8b:fb:ce:ce:c1:2c:84:6d:16:11:eb:c1:
82:fc:a5:e3:b7:71:2c:cb:86:aa:52:65:d1:ff:45:
01:cd:a8:ab:51:64:a8:7b:6c:55:fc:e9:80:3e:c4:
a8:d4:24:dc:fe:d7:6c:11:3d:05:90:6a:e9:2e:b9:
4b:ce:37:84:23:db:0a:86:87:fa:10:e4:f3:e5:d4:
cd:59:03:ab:8d:9d:21:24:43:45:d9:0f:aa:7d:41:
e6:4f:79:ad:0a:26:f7:09:4d:c2:ed:29:40:76:2b:
4b:07:cb:f1:39:4d:41:8e:76:02:45:82:43:91:44:
bb:89:40:42:56:9d:a4:85:7e:40:a0:0d:54:66:5b:
6a:a6:36:5a:fa:64:56:0c:01:ad:8c:31:ac:01:42:
bc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:31:42:A7:BF:B5:B6:BC:CA:55:CF:BC:9B:F2:A8:3F:CE:D2:E7:4D
X509v3 Authority Key Identifier:
keyid:1A:C0:6C:F2:C9:E9:57:53:74:39:73:4F:05:84:A8:20:4A:7B:83:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GsBs8snpV1N0OXNPBYSoIEp7gxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f7e6e9-c121-4064-8ad5-07c17fe374a6/1/CzFCp7-1trzKVc-8m_KoP87S500.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f7e6e9-c121-4064-8ad5-07c17fe374a6/1/GsBs8snpV1N0OXNPBYSoIEp7gxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2e:0c:b7:a9:05:cc:ac:a4:82:a1:0d:8e:35:d6:b2:f4:ea:7f:
98:c1:50:e8:ad:02:f8:e1:ae:8c:b6:4d:e5:9c:4d:25:50:1c:
c4:18:86:41:c3:e5:f9:30:56:3b:f7:50:a0:95:d9:d3:19:e9:
55:c8:3b:84:2e:f4:d3:1d:29:b5:17:2b:55:a4:31:b8:f2:e2:
fb:c0:f4:c2:8d:52:4e:24:d0:45:2d:75:04:4b:43:ad:98:d1:
f3:6c:df:c6:16:bf:5d:45:23:32:fc:d4:7c:af:43:14:29:ed:
73:c6:b3:97:a0:eb:63:4f:c3:29:c1:ec:74:9e:5e:93:d8:0b:
0b:4b:a9:de:da:52:bf:21:60:2d:d5:52:fa:45:b8:9e:23:88:
24:87:6a:2f:0c:08:a3:84:02:8a:54:f2:7a:07:92:b2:3b:a3:
53:bd:c6:cc:a3:13:b9:88:0f:0b:25:c6:98:aa:42:57:a4:46:
02:99:4f:fd:bc:62:d2:ab:69:6d:55:ef:c7:97:59:b4:1c:43:
3c:be:66:c1:7a:72:1a:d6:dc:d2:50:49:e2:f0:f3:e3:11:f8:
ad:eb:49:3c:28:78:86:34:8d:07:6b:86:ad:ea:75:01:bd:18:
25:bb:5f:5f:4d:c6:a0:38:e6:a5:74:bb:90:5f:d8:2e:fa:5c:
86:27:6c:c9
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEEG3jOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YWMwNmNmMmM5ZTk1NzUzNzQzOTczNGYwNTg0YTgyMDRhN2I4MzExMB4XDTIyMDEw
MTAyMDExN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGIzMTQyYTdiZmI1
YjZiY2NhNTVjZmJjOWJmMmE4M2ZjZWQyZTc0ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVhNYAtuZQ23RXeQyrP68uRHl/dFYNp3xe0uAAU/cys9aEt
2Exli+14FzVCGJJOQVId4yKBaX0kw4Vf+2kZ0zH99NAy5i2p6UCg0WIimNpRwEjo
LAH0thHtluROSfIL2tFLdIsE1KV1SwKYi/vOzsEshG0WEevBgvyl47dxLMuGqlJl
0f9FAc2oq1FkqHtsVfzpgD7EqNQk3P7XbBE9BZBq6S65S843hCPbCoaH+hDk8+XU
zVkDq42dISRDRdkPqn1B5k95rQom9wlNwu0pQHYrSwfL8TlNQY52AkWCQ5FEu4lA
QladpIV+QKANVGZbaqY2WvpkVgwBrYwxrAFCvK8CAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBQLMUKnv7W2vMpVz7yb8qg/ztLnTTAfBgNVHSMEGDAWgBQawGzyyelXU3Q5
c08FhKggSnuDETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dzQnM4c25wVjFOME9YTlBCWVNvSUVwN2d4RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTcvZjdlNmU5LWMxMjEtNDA2NC04YWQ1LTA3YzE3ZmUzNzRhNi8x
L0N6RkNwNy0xdHJ6S1ZjLThtX0tvUDg3UzUwMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcv
ZjdlNmU5LWMxMjEtNDA2NC04YWQ1LTA3YzE3ZmUzNzRhNi8xL0dzQnM4c25wVjFO
ME9YTlBCWVNvSUVwN2d4RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIZuMA0GCSqGSIb3DQEBCwUAA4IB
AQAuDLepBcyspIKhDY411rL06n+YwVDorQL44a6Mtk3lnE0lUBzEGIZBw+X5MFY7
91CgldnTGelVyDuELvTTHSm1FytVpDG48uL7wPTCjVJOJNBFLXUES0OtmNHzbN/G
Fr9dRSMy/NR8r0MUKe1zxrOXoOtjT8Mpwex0nl6T2AsLS6ne2lK/IWAt1VL6Rbie
I4gkh2ovDAijhAKKVPJ6B5KyO6NTvcbMoxO5iA8LJcaYqkJXpEYCmU/9vGLSq2lt
Ve/Hl1m0HEM8vmbBenIa1tzSUEni8PPjEfit60k8KHiGNI0Ha4at6nUBvRglu19f
TcagOOaldLuQX9gu+lyGJ2zJ
-----END CERTIFICATE-----
Generated at Mon Apr 14 14:11:28 2025 by rpki-client