Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/Zoc9MporZUIWlidicK8Chtpw44I.roa
File: Zoc9MporZUIWlidicK8Chtpw44I.roa (raw, json)
Hash identifier: VCiD3VFXvKusHUMl61+GFrrq7/v/kir1kjGY4BK72MQ=
Subject key identifier: 66:87:3D:32:9A:2B:65:42:16:96:27:62:70:AF:02:86:DA:70:E3:82
Certificate issuer: /CN=2fe17bf80ee1e2e70db3ea05dc16f304e7090cf4
Certificate serial: 0B145F31
Authority key identifier: 2F:E1:7B:F8:0E:E1:E2:E7:0D:B3:EA:05:DC:16:F3:04:E7:09:0C:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/Zoc9MporZUIWlidicK8Chtpw44I.roa
Signing time: Sat 01 Jan 2022 03:59:24 +0000
ROA not before: Sat 01 Jan 2022 03:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198380
IP address blocks: 185.153.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185884465 (0xb145f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe17bf80ee1e2e70db3ea05dc16f304e7090cf4
Validity
Not Before: Jan 1 03:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66873d329a2b65421696276270af0286da70e382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d5:ca:e6:01:29:46:76:e0:88:19:42:da:ce:
f0:58:34:bf:20:c4:9a:58:fc:3d:d4:0c:2d:ca:a4:
49:1c:45:19:c3:76:09:c1:bf:23:c8:85:2a:71:49:
4b:a8:11:d4:bf:30:a2:08:43:c7:b2:c1:06:25:e6:
42:63:7b:27:32:c7:10:8c:6b:50:90:3d:be:ad:ca:
1f:03:5c:d6:79:22:49:f0:5c:e0:6b:0b:d9:11:28:
73:ff:1a:85:5d:91:65:89:73:0f:f1:f3:32:eb:03:
e2:4b:55:17:eb:eb:e3:3b:3e:6f:33:6f:47:23:ad:
b3:34:c7:42:07:98:a7:8f:70:9b:7f:6a:87:53:aa:
28:fb:71:f1:83:8b:1d:f2:a4:27:cd:13:37:21:dd:
9e:6b:bd:ad:83:af:19:b2:5b:07:ad:a2:74:9b:f1:
d6:f1:98:c8:7a:20:26:6c:91:bf:35:3d:fa:3a:12:
07:e1:0c:7b:7c:fc:09:49:64:6a:ce:5e:2b:3d:99:
78:3a:88:66:41:12:a0:d5:7a:4e:76:3d:e7:ff:9f:
52:ec:c1:53:0f:92:e8:62:f9:8e:94:59:36:ea:e9:
28:3d:24:b1:87:2c:a7:7b:e5:a9:a0:5f:7a:d8:f0:
93:b6:f9:18:2d:fd:95:d6:f3:74:dd:c3:b5:23:e1:
47:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:87:3D:32:9A:2B:65:42:16:96:27:62:70:AF:02:86:DA:70:E3:82
X509v3 Authority Key Identifier:
keyid:2F:E1:7B:F8:0E:E1:E2:E7:0D:B3:EA:05:DC:16:F3:04:E7:09:0C:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/Zoc9MporZUIWlidicK8Chtpw44I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.76.0/22
Signature Algorithm: sha256WithRSAEncryption
67:b3:0d:ad:3f:81:f9:c4:09:97:57:0f:25:59:12:67:41:61:
fb:fc:44:24:e8:bc:59:b2:49:5e:16:97:92:4d:3f:50:6c:05:
53:79:23:de:a6:ff:84:e7:f5:60:73:73:58:f3:a1:a4:8d:ec:
b1:b7:2b:69:d4:62:78:5b:83:94:cf:49:a8:84:9a:b5:1d:05:
67:d7:64:f8:36:13:f4:3c:a2:c2:b7:1e:df:9e:80:08:41:02:
20:5d:a8:20:d0:7a:9e:5b:a1:63:61:c8:db:0c:b9:f4:41:be:
b8:2a:54:9d:f3:43:6f:2e:02:88:b1:9f:29:38:b8:7e:f1:df:
23:8b:60:de:66:83:75:e6:b3:01:f2:e8:1f:21:d9:fe:f9:03:
1c:5f:e0:43:98:16:2e:17:3c:9e:99:c8:1f:9a:77:13:42:75:
08:b8:c5:8a:49:5d:42:2f:f6:88:63:3d:ae:79:d7:6e:be:c0:
8a:69:d7:36:c7:aa:10:73:48:29:b4:75:d9:8a:17:b1:89:4e:
37:ef:35:0f:0f:e2:19:e8:b7:fe:10:07:b5:2f:92:42:c9:ab:
71:c3:ed:92:f7:63:eb:ba:2e:6c:e1:eb:fd:9d:de:5b:b9:4c:
dd:d6:da:4a:a6:eb:2e:cc:15:80:12:3c:fc:f7:0c:47:5c:8d:
b6:ab:6b:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECxRfMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZmUxN2JmODBlZTFlMmU3MGRiM2VhMDVkYzE2ZjMwNGU3MDkwY2Y0MB4XDTIyMDEw
MTAzNTkyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjY4NzNkMzI5YTJi
NjU0MjE2OTYyNzYyNzBhZjAyODZkYTcwZTM4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM/VyuYBKUZ24IgZQtrO8Fg0vyDEmlj8PdQMLcqkSRxFGcN2
CcG/I8iFKnFJS6gR1L8woghDx7LBBiXmQmN7JzLHEIxrUJA9vq3KHwNc1nkiSfBc
4GsL2REoc/8ahV2RZYlzD/HzMusD4ktVF+vr4zs+bzNvRyOtszTHQgeYp49wm39q
h1OqKPtx8YOLHfKkJ80TNyHdnmu9rYOvGbJbB62idJvx1vGYyHogJmyRvzU9+joS
B+EMe3z8CUlkas5eKz2ZeDqIZkESoNV6TnY95/+fUuzBUw+S6GL5jpRZNurpKD0k
sYcsp3vlqaBfetjwk7b5GC39ldbzdN3DtSPhRw8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRmhz0ymitlQhaWJ2JwrwKG2nDjgjAfBgNVHSMEGDAWgBQv4Xv4DuHi5w2z
6gXcFvME5wkM9DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0wtRjctQTdoNHVjTnMtb0YzQmJ6Qk9jSkRQUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvNWM0YTcxLWIzOGEtNGViNC04NjMzLTI0YjM1NzJhODNiYi8x
L1pvYzlNcG9yWlVJV2xpZGljSzhDaHRwdzQ0SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
NWM0YTcxLWIzOGEtNGViNC04NjMzLTI0YjM1NzJhODNiYi8xL0wtRjctQTdoNHVj
TnMtb0YzQmJ6Qk9jSkRQUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmZTDANBgkqhkiG9w0BAQsFAAOC
AQEAZ7MNrT+B+cQJl1cPJVkSZ0Fh+/xEJOi8WbJJXhaXkk0/UGwFU3kj3qb/hOf1
YHNzWPOhpI3ssbcradRieFuDlM9JqISatR0FZ9dk+DYT9Dyiwrce356ACEECIF2o
INB6nluhY2HI2wy59EG+uCpUnfNDby4CiLGfKTi4fvHfI4tg3maDdeazAfLoHyHZ
/vkDHF/gQ5gWLhc8npnIH5p3E0J1CLjFikldQi/2iGM9rnnXbr7AimnXNseqEHNI
KbR12YoXsYlON+81Dw/iGei3/hAHtS+SQsmrccPtkvdj67oubOHr/Z3eW7lM3dba
SqbrLswVgBI8/PcMR1yNtqtr4g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:17 2025 by rpki-client