Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7514d6-59de-460e-8e2f-ffcee1533577/1/dZYvehSUB5hJZPSYN8P1swY7u34.roa
File: dZYvehSUB5hJZPSYN8P1swY7u34.roa (raw, json)
Hash identifier: KHaeeG0WPOFpTgDr/HlIuVTZVyjdK2DNjtnMzsKjQxE=
Subject key identifier: 75:96:2F:7A:14:94:07:98:49:64:F4:98:37:C3:F5:B3:06:3B:BB:7E
Certificate issuer: /CN=2d9ae102e6cadb471a30a0c85933e0390bf2f9ca
Certificate serial: 01821C49ED382A030B12DD70F8AD5018C57B
Authority key identifier: 2D:9A:E1:02:E6:CA:DB:47:1A:30:A0:C8:59:33:E0:39:0B:F2:F9:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZrhAubK20caMKDIWTPgOQvy-co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7514d6-59de-460e-8e2f-ffcee1533577/1/dZYvehSUB5hJZPSYN8P1swY7u34.roa
Signing time: Wed 20 Jul 2022 15:46:23 +0000
ROA not before: Wed 20 Jul 2022 15:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.21.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1c:49:ed:38:2a:03:0b:12:dd:70:f8:ad:50:18:c5:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9ae102e6cadb471a30a0c85933e0390bf2f9ca
Validity
Not Before: Jul 20 15:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75962f7a149407984964f49837c3f5b3063bbb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:91:e5:4b:af:77:1d:d6:b5:b0:2b:48:1e:bc:
af:34:eb:86:90:5c:67:ff:57:95:d6:8b:b6:18:72:
c7:a8:38:ab:40:f8:05:6e:81:65:e2:5e:06:74:f0:
94:22:0d:f6:50:c2:63:36:cd:c6:4c:5a:1b:e5:de:
00:19:38:4f:d5:5f:49:c7:a8:17:15:de:5e:2b:62:
a9:02:00:ce:65:40:14:9e:b6:33:0c:78:60:36:ec:
80:67:79:9e:45:28:f8:66:56:74:5b:5a:ae:66:df:
ab:1b:fc:df:da:16:5d:c5:9b:1f:d8:1f:01:54:d3:
61:28:79:3f:4d:4e:a5:11:82:9d:4f:fa:dc:19:0a:
66:72:b5:e3:73:c5:81:c6:c9:84:5a:ee:60:ed:43:
e1:20:eb:1f:be:79:4d:f4:37:67:d0:6f:27:1b:96:
39:e5:df:09:d3:88:b0:28:9f:d5:0c:9a:1d:fa:2a:
ee:fc:1f:84:32:52:30:32:ad:8a:1d:1c:0b:5b:4c:
35:6e:c8:8f:d8:a1:30:12:1b:40:6a:ae:ca:db:4e:
11:e6:ff:4c:3f:6c:32:df:7b:56:bc:70:88:0b:6d:
c2:b4:f6:14:85:3e:5b:ac:f0:b2:2d:35:33:c5:3a:
07:58:14:fb:2b:f0:31:83:45:d1:fd:81:04:ae:df:
a0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:96:2F:7A:14:94:07:98:49:64:F4:98:37:C3:F5:B3:06:3B:BB:7E
X509v3 Authority Key Identifier:
keyid:2D:9A:E1:02:E6:CA:DB:47:1A:30:A0:C8:59:33:E0:39:0B:F2:F9:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZrhAubK20caMKDIWTPgOQvy-co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7514d6-59de-460e-8e2f-ffcee1533577/1/dZYvehSUB5hJZPSYN8P1swY7u34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7514d6-59de-460e-8e2f-ffcee1533577/1/LZrhAubK20caMKDIWTPgOQvy-co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:a2:c6:8a:6d:ff:02:29:c3:bc:bd:b0:84:fc:86:b8:86:d0:
9d:99:5c:ea:53:f2:16:bc:7b:2a:e1:7f:89:49:9f:23:f9:33:
81:32:71:65:21:e9:e0:93:6b:a8:e2:71:7c:5a:63:ab:bb:ee:
b5:89:11:7c:d8:9b:e8:94:39:ba:f7:58:ff:d0:ea:95:57:e1:
3f:ba:d8:d6:13:11:92:4f:50:70:ac:f7:5d:ca:d4:75:11:de:
fc:00:05:3b:d6:47:35:ad:ab:5f:d1:8e:2c:9c:f4:be:47:0b:
25:d8:65:82:ac:42:15:02:26:d0:24:61:fb:01:5d:67:41:c3:
98:fa:32:bf:0b:95:0e:7d:bf:c0:7c:6c:86:d5:19:5e:81:8c:
b0:c1:04:26:82:fc:17:03:ff:18:2d:6e:ca:26:3f:b6:77:02:
e9:fc:3d:7a:5c:33:aa:2a:ed:eb:ce:5c:f9:89:ea:ba:24:5f:
7c:ab:ee:41:bc:7b:c7:e7:c8:45:62:25:1f:c2:18:d3:8c:c4:
c8:ed:c6:a4:c1:93:a4:a4:14:0c:52:b0:63:66:7b:2e:75:78:
7f:01:ca:62:dd:89:ae:09:1a:1e:30:98:e0:20:99:43:d9:0a:
37:2d:32:be:32:d0:95:d5:d3:57:b5:d0:ba:07:12:d2:1f:db:
f5:dc:82:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIcSe04KgMLEt1w+K1QGMV7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkOWFlMTAyZTZjYWRiNDcxYTMwYTBjODU5MzNlMDM5MGJm
MmY5Y2EwHhcNMjIwNzIwMTU0NjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTk2MmY3YTE0OTQwNzk4NDk2NGY0OTgzN2MzZjViMzA2M2JiYjdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgpHlS693Hda1sCtIHryvNOuGkFxn
/1eV1ou2GHLHqDirQPgFboFl4l4GdPCUIg32UMJjNs3GTFob5d4AGThP1V9Jx6gX
Fd5eK2KpAgDOZUAUnrYzDHhgNuyAZ3meRSj4ZlZ0W1quZt+rG/zf2hZdxZsf2B8B
VNNhKHk/TU6lEYKdT/rcGQpmcrXjc8WBxsmEWu5g7UPhIOsfvnlN9Ddn0G8nG5Y5
5d8J04iwKJ/VDJod+iru/B+EMlIwMq2KHRwLW0w1bsiP2KEwEhtAaq7K204R5v9M
P2wy33tWvHCIC23CtPYUhT5brPCyLTUzxToHWBT7K/Axg0XR/YEErt+gqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHWWL3oUlAeYSWT0mDfD9bMGO7t+MB8GA1UdIwQY
MBaAFC2a4QLmyttHGjCgyFkz4DkL8vnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFpyaEF1YksyMGNhTUtESVdUUGdPUXZ5LWNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83NTE0ZDYtNTlkZS00NjBlLThlMmYt
ZmZjZWUxNTMzNTc3LzEvZFpZdmVoU1VCNWhKWlBTWU44UDFzd1k3dTM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS83NTE0ZDYtNTlkZS00NjBlLThlMmYtZmZjZWUxNTMzNTc3
LzEvTFpyaEF1YksyMGNhTUtESVdUUGdPUXZ5LWNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuRVIMA0G
CSqGSIb3DQEBCwUAA4IBAQChosaKbf8CKcO8vbCE/Ia4htCdmVzqU/IWvHsq4X+J
SZ8j+TOBMnFlIengk2uo4nF8WmOru+61iRF82JvolDm691j/0OqVV+E/utjWExGS
T1BwrPddytR1Ed78AAU71kc1ratf0Y4snPS+Rwsl2GWCrEIVAibQJGH7AV1nQcOY
+jK/C5UOfb/AfGyG1RlegYywwQQmgvwXA/8YLW7KJj+2dwLp/D16XDOqKu3rzlz5
ieq6JF98q+5BvHvH58hFYiUfwhjTjMTI7cakwZOkpBQMUrBjZnsudXh/Acpi3Ymu
CRoeMJjgIJlD2Qo3LTK+MtCV1dNXtdC6BxLSH9v13ILA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:21 2024 by rpki-client on console-fra.rpki-client.org