Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZoqFOX0PMSxB-LwnL-F0M0rriVM.roa
File: ZoqFOX0PMSxB-LwnL-F0M0rriVM.roa (raw, json)
Hash identifier: p7xBzxN6TnyoqqV+xfmpKXCiJ8w+1V4NacUpLDx/fdk=
Subject key identifier: 66:8A:85:39:7D:0F:31:2C:41:F8:BC:27:2F:E1:74:33:4A:EB:89:53
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0181DEFCE0EA8E780ED23DA9ABE3B66C86F6
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZoqFOX0PMSxB-LwnL-F0M0rriVM.roa
Signing time: Fri 08 Jul 2022 18:05:23 +0000
ROA not before: Fri 08 Jul 2022 18:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205896
IP address blocks: 185.143.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:de:fc:e0:ea:8e:78:0e:d2:3d:a9:ab:e3:b6:6c:86:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jul 8 18:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=668a85397d0f312c41f8bc272fe174334aeb8953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7f:74:24:92:35:bb:e3:bc:9d:f8:b2:cf:2f:
5e:84:26:ad:fa:a7:de:1c:1b:f0:58:41:10:c1:1b:
e9:86:ba:23:9f:ae:c6:e0:63:76:60:5f:ca:62:25:
3f:9d:7e:71:71:6d:02:79:cc:82:4d:18:fe:28:52:
51:05:c7:06:94:d4:94:f9:b1:9c:90:c3:05:b0:ff:
c3:29:f5:24:fa:30:cd:88:bd:ee:c7:35:9e:3b:5d:
21:0f:ca:6f:e3:ce:dd:9c:9f:16:d9:43:73:0b:d1:
9f:2a:2b:87:c4:08:b9:81:48:bd:ff:ff:83:22:3b:
ca:2a:35:6a:f5:dd:e2:6b:e7:29:83:2c:f2:96:00:
8a:e5:a4:28:83:a4:16:65:16:81:67:e3:66:95:d0:
c0:6f:18:b0:06:c0:57:f8:dd:18:74:66:12:1e:1f:
5f:2b:57:28:a7:74:3a:6a:25:6e:43:8d:58:09:03:
9f:1f:8b:bd:cc:f5:84:28:04:f6:77:7d:d9:e5:29:
1d:49:25:08:d4:0f:7b:4e:ec:80:83:c8:c7:8c:f1:
2d:c2:d3:51:91:ed:4c:15:58:f4:82:20:68:1b:1b:
d2:83:d5:a9:5c:21:4c:73:c7:0f:e5:e4:90:01:42:
d3:33:5d:d0:d6:24:24:8e:e5:71:ea:a0:dd:ba:e8:
15:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:8A:85:39:7D:0F:31:2C:41:F8:BC:27:2F:E1:74:33:4A:EB:89:53
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZoqFOX0PMSxB-LwnL-F0M0rriVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.241.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f1:97:8c:c7:da:6a:6b:07:6a:3d:c9:68:3c:88:22:ba:07:
a9:7f:6a:6d:2c:a5:e6:2c:f7:3f:70:c4:00:bf:b8:3a:94:6b:
26:b1:b5:8e:d7:aa:b4:6a:f9:10:c6:bd:7d:46:24:11:5e:47:
62:a5:ac:f6:40:36:65:0d:0a:5f:36:3d:3b:8c:06:aa:27:c6:
62:d7:13:d7:9e:f0:01:b3:7c:2f:84:2e:dd:e2:59:db:76:da:
88:f8:1f:2a:34:8a:7c:cc:a1:aa:32:58:32:d5:a8:80:b1:8d:
74:d7:b3:ac:5b:08:ab:48:c5:7a:5e:27:12:d4:61:6a:fe:60:
40:48:51:90:17:41:69:62:1d:c7:43:40:73:7b:be:ee:ac:ff:
0f:38:46:2a:46:70:b7:f1:72:e1:84:8b:b8:4c:1c:e6:15:21:
66:fb:73:b5:00:20:75:60:63:c5:99:d2:3f:2e:a1:fd:b3:c2:
69:c1:12:9a:63:a4:9c:d8:f0:38:88:8b:ab:a8:c9:74:d1:4b:
05:e8:e1:d8:95:b4:fe:67:23:8e:33:d6:87:fc:d4:59:1a:ba:
12:34:c5:2a:97:e9:f0:28:7c:12:b0:0c:b3:72:0a:78:92:8e:
11:e8:ab:ee:f5:3f:2f:37:4c:54:61:f1:cb:64:e1:42:e9:0a:
67:91:43:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHe/ODqjngO0j2pq+O2bIb2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm
MTZhOWYwHhcNMjIwNzA4MTgwNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjhhODUzOTdkMGYzMTJjNDFmOGJjMjcyZmUxNzQzMzRhZWI4OTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg390JJI1u+O8nfiyzy9ehCat+qfe
HBvwWEEQwRvphrojn67G4GN2YF/KYiU/nX5xcW0CecyCTRj+KFJRBccGlNSU+bGc
kMMFsP/DKfUk+jDNiL3uxzWeO10hD8pv487dnJ8W2UNzC9GfKiuHxAi5gUi9//+D
IjvKKjVq9d3ia+cpgyzylgCK5aQog6QWZRaBZ+NmldDAbxiwBsBX+N0YdGYSHh9f
K1cop3Q6aiVuQ41YCQOfH4u9zPWEKAT2d33Z5SkdSSUI1A97TuyAg8jHjPEtwtNR
ke1MFVj0giBoGxvSg9WpXCFMc8cP5eSQAULTM13Q1iQkjuVx6qDduugVCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGaKhTl9DzEsQfi8Jy/hdDNK64lTMB8GA1UdIwQY
MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt
ODZhNTUxOGUyZDUyLzEvWm9xRk9YMFBNU3hCLUx3bkwtRjBNMHJyaVZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy
LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY/xMA0G
CSqGSIb3DQEBCwUAA4IBAQAl8ZeMx9pqawdqPcloPIgiugepf2ptLKXmLPc/cMQA
v7g6lGsmsbWO16q0avkQxr19RiQRXkdipaz2QDZlDQpfNj07jAaqJ8Zi1xPXnvAB
s3wvhC7d4lnbdtqI+B8qNIp8zKGqMlgy1aiAsY1017OsWwirSMV6XicS1GFq/mBA
SFGQF0FpYh3HQ0Bze77urP8POEYqRnC38XLhhIu4TBzmFSFm+3O1ACB1YGPFmdI/
LqH9s8JpwRKaY6Sc2PA4iIurqMl00UsF6OHYlbT+ZyOOM9aH/NRZGroSNMUql+nw
KHwSsAyzcgp4ko4R6Kvu9T8vN0xUYfHLZOFC6QpnkUOH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org