Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9Z7zUHfSixO7HADzJtg-3mZq158.roa
File: 9Z7zUHfSixO7HADzJtg-3mZq158.roa (raw, json)
Hash identifier: FoGWajPMpTDnXdHtT5ximHyKfgNFBVWzwF7ZXC50fYE=
Subject key identifier: F5:9E:F3:50:77:D2:8B:13:BB:1C:00:F3:26:D8:3E:DE:66:6A:D7:9F
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 177EC360
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9Z7zUHfSixO7HADzJtg-3mZq158.roa
Signing time: Sat 05 Mar 2022 21:46:47 +0000
ROA not before: Sat 05 Mar 2022 21:46:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59706
IP address blocks: 80.250.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394183520 (0x177ec360)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Mar 5 21:46:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f59ef35077d28b13bb1c00f326d83ede666ad79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:d4:a5:01:d2:ad:c7:82:77:91:49:9d:f9:
db:88:27:f8:14:7d:11:66:c5:68:fe:ff:c5:1e:8f:
7f:c2:b1:e9:7a:6a:22:06:f2:16:e5:11:eb:d1:49:
6f:d8:75:d9:02:d4:91:75:c8:49:a1:78:9b:ef:61:
5d:ea:a7:75:6f:ad:94:49:0a:f8:e3:c2:91:b4:0c:
53:bf:a4:8b:21:35:19:3f:c8:9c:c7:23:a5:aa:19:
f0:de:44:c9:6d:a4:f5:92:98:e4:22:d1:3f:a0:f6:
99:63:d2:f9:2a:e3:1a:e9:e0:e3:c1:09:e7:91:a9:
de:0b:07:81:96:03:f9:eb:6b:ba:48:90:83:7e:0a:
c6:22:97:c7:57:7b:36:ca:4a:0d:b8:86:9f:0a:77:
d2:4e:8d:b9:f0:86:17:7f:e3:93:f2:4a:3c:f6:9b:
9a:18:ea:37:e8:e8:1f:a8:23:0e:6c:dc:ec:50:2c:
51:97:76:1a:0d:0f:ce:06:3d:04:d0:e0:0f:31:9f:
62:1c:72:dc:30:c9:f7:5b:16:a6:88:a3:91:fd:27:
eb:d8:84:08:5d:05:f7:a2:26:23:67:cf:d7:31:32:
38:87:47:e9:d8:45:1d:94:9a:c9:41:f8:c4:7c:41:
61:3f:a8:7c:8b:19:a4:79:fb:7c:f3:99:60:68:41:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9E:F3:50:77:D2:8B:13:BB:1C:00:F3:26:D8:3E:DE:66:6A:D7:9F
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9Z7zUHfSixO7HADzJtg-3mZq158.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.165.0/24
Signature Algorithm: sha256WithRSAEncryption
14:6a:15:bb:38:1c:ba:f7:40:d8:67:e1:54:64:2c:d0:d6:e3:
c3:e6:f0:67:4f:d0:4f:7b:1b:c6:d7:db:2f:be:8b:58:c5:a6:
05:c9:00:2d:63:18:eb:7e:6a:20:47:28:fe:32:bc:72:31:67:
54:01:53:03:b7:bf:2c:f2:53:f6:24:53:68:1f:4e:2f:d6:d4:
a5:81:21:9a:af:ef:df:36:5d:51:91:70:31:d4:9d:34:41:e3:
3b:e3:21:dd:86:21:15:3a:b3:e1:3c:13:8e:07:0a:05:e0:2d:
b6:40:7a:39:d3:f7:8f:55:10:57:02:3e:18:1b:cd:d2:81:84:
1f:3f:e9:d8:5d:65:d5:20:94:a0:5a:f7:e4:a7:c4:c4:40:68:
2f:e3:bc:64:3b:3c:5d:b7:e2:3d:fe:6d:5f:69:a8:38:3e:7c:
80:f8:82:0d:c1:68:d1:f2:49:ac:11:65:72:a8:9c:b0:e7:6f:
aa:22:df:bc:b6:33:6c:f7:35:26:65:8a:70:51:f9:7f:55:82:
ca:fa:6e:4e:2f:03:3e:dc:21:ed:44:8c:c5:8f:35:c5:b7:8c:
e0:4c:e9:92:9b:e5:39:c6:49:16:e7:b3:32:ca:a8:84:36:76:
70:83:5c:d6:8f:40:37:84:15:f5:1b:4f:c4:2c:28:8a:08:b0:
f0:8e:b9:d7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF37DYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDMw
NTIxNDY0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjU5ZWYzNTA3N2Qy
OGIxM2JiMWMwMGYzMjZkODNlZGU2NjZhZDc5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALxC1KUB0q3HgneRSZ3524gn+BR9EWbFaP7/xR6Pf8Kx6Xpq
IgbyFuUR69FJb9h12QLUkXXISaF4m+9hXeqndW+tlEkK+OPCkbQMU7+kiyE1GT/I
nMcjpaoZ8N5EyW2k9ZKY5CLRP6D2mWPS+SrjGung48EJ55Gp3gsHgZYD+etrukiQ
g34KxiKXx1d7NspKDbiGnwp30k6NufCGF3/jk/JKPPabmhjqN+joH6gjDmzc7FAs
UZd2Gg0PzgY9BNDgDzGfYhxy3DDJ91sWpoijkf0n69iECF0F96ImI2fP1zEyOIdH
6dhFHZSayUH4xHxBYT+ofIsZpHn7fPOZYGhBqBcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT1nvNQd9KLE7scAPMm2D7eZmrXnzAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
LzlaN3pVSGZTaXhPN0hBRHpKdGctM21acTE1OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFD6pTANBgkqhkiG9w0BAQsFAAOC
AQEAFGoVuzgcuvdA2GfhVGQs0Nbjw+bwZ0/QT3sbxtfbL76LWMWmBckALWMY635q
IEco/jK8cjFnVAFTA7e/LPJT9iRTaB9OL9bUpYEhmq/v3zZdUZFwMdSdNEHjO+Mh
3YYhFTqz4TwTjgcKBeAttkB6OdP3j1UQVwI+GBvN0oGEHz/p2F1l1SCUoFr35KfE
xEBoL+O8ZDs8XbfiPf5tX2moOD58gPiCDcFo0fJJrBFlcqicsOdvqiLfvLYzbPc1
JmWKcFH5f1WCyvpuTi8DPtwh7USMxY81xbeM4EzpkpvlOcZJFuezMsqohDZ2cINc
1o9AN4QV9RtPxCwoigiw8I651w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org