Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/ZE7xPTcsvC74NADgqdEKXdFHJeA.roa
File: ZE7xPTcsvC74NADgqdEKXdFHJeA.roa (raw, json)
Hash identifier: alGSALsQ0NoPsFOuecKRHe+WqKofnyl9AahCFDolwtU=
Subject key identifier: 64:4E:F1:3D:37:2C:BC:2E:F8:34:00:E0:A9:D1:0A:5D:D1:47:25:E0
Certificate issuer: /CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Certificate serial: 045CBFE7
Authority key identifier: 93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/ZE7xPTcsvC74NADgqdEKXdFHJeA.roa
Signing time: Mon 21 Feb 2022 15:59:43 +0000
ROA not before: Mon 21 Feb 2022 15:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a01:bb24::/56 maxlen: 56
2a01:bb24:1::/48 maxlen: 56
2a01:bb22:8000::/33 maxlen: 33
2a01:bb22::/33 maxlen: 33
2a01:bb24:2::/56 maxlen: 56
2a01:bb23:8000::/33 maxlen: 33
2a01:bb23::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73187303 (0x45cbfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Validity
Not Before: Feb 21 15:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=644ef13d372cbc2ef83400e0a9d10a5dd14725e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:71:e6:d4:32:8e:99:57:19:2c:34:4e:2b:d3:
4a:52:e2:21:d1:d1:17:fd:7b:cb:e0:36:f5:4a:f3:
dd:fd:bb:c7:59:9b:c2:33:88:13:40:72:b2:6e:35:
4a:b1:78:c2:f7:c0:17:2a:1a:19:1c:bc:26:98:92:
f4:f9:8b:00:fa:33:d0:ce:e1:a9:7d:66:c2:8f:01:
c5:e7:b1:e8:ec:74:dc:9d:9b:5c:50:ce:29:88:05:
8e:1f:5c:81:c7:af:9f:75:d5:7d:06:da:3c:bc:21:
a3:b9:68:4b:47:6d:dd:48:ca:f7:bc:84:96:86:fc:
0b:fb:bb:9c:df:71:c2:16:f3:73:c4:fb:8b:ec:1b:
79:2d:74:a3:11:4d:b3:70:cb:3b:0f:71:ec:4b:9c:
27:ab:68:e1:fd:d0:e2:d8:99:f0:ad:81:42:bc:12:
8f:16:79:d8:f9:3f:8f:55:67:3b:65:cd:06:71:62:
da:3a:9b:84:86:51:32:47:76:58:2e:f0:d3:5a:b1:
e7:98:14:2c:e4:6c:fd:ac:49:ed:12:76:9c:5c:9b:
17:5e:6e:0f:14:25:fc:68:1d:1c:97:c4:c1:96:e3:
b0:b2:a1:74:e4:ac:77:9f:ca:15:f2:1c:8f:83:08:
6b:e0:bc:cb:5a:1e:70:ab:7b:93:45:92:b9:99:de:
24:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:4E:F1:3D:37:2C:BC:2E:F8:34:00:E0:A9:D1:0A:5D:D1:47:25:E0
X509v3 Authority Key Identifier:
keyid:93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/ZE7xPTcsvC74NADgqdEKXdFHJeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:bb22::-2a01:bb24:0:ff:ffff:ffff:ffff:ffff
2a01:bb24:1::-2a01:bb24:2:ff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1c:f0:4d:7e:79:c7:44:19:e0:ae:59:1d:e9:81:69:c4:74:ba:
43:8b:78:16:1c:2e:89:97:48:41:78:68:cf:57:1d:9c:ad:ea:
ba:04:de:5f:41:89:30:b8:05:57:0e:ca:71:7f:fb:b0:63:f0:
75:3c:cc:b2:34:0a:a0:d4:7c:20:45:45:cb:57:bd:f6:af:e6:
68:e3:ca:1c:e8:b0:5a:ae:47:a1:08:d7:05:42:49:b3:53:a1:
f1:17:f0:df:de:1a:51:ba:1c:55:a0:ee:00:15:08:10:fd:39:
1e:41:05:d4:33:99:dd:96:69:63:ba:ff:72:ae:88:0b:e0:93:
58:bd:61:74:54:c7:7f:5f:06:f8:f1:b1:5a:65:18:4d:1f:a3:
2a:bf:cd:8c:d1:dd:9c:8e:0b:de:4e:a9:60:d1:c2:b5:8d:df:
0e:32:09:99:76:43:79:36:41:79:c0:2a:2f:c4:01:c0:ea:ba:
67:19:d6:1b:6b:1b:1e:24:65:81:2c:32:8b:b1:6c:b1:c0:23:
3d:05:1f:11:0d:04:e9:e7:e0:80:cd:16:0d:ae:80:c7:ff:a8:
b2:40:1e:56:fe:2e:05:64:71:76:e3:82:8a:16:76:eb:d5:d3:
b5:bf:84:bc:d1:61:42:65:fb:3a:dd:bc:55:e8:c3:01:8e:e8:
13:2b:98:aa
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIEBFy/5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzUwMzA2MWUxYWU1MDNlYzYzZDk3MGIzMDg3NWRkOTNmZmFiYmRmMB4XDTIyMDIy
MTE1NTk0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjQ0ZWYxM2QzNzJj
YmMyZWY4MzQwMGUwYTlkMTBhNWRkMTQ3MjVlMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANJx5tQyjplXGSw0TivTSlLiIdHRF/17y+A29Urz3f27x1mb
wjOIE0Bysm41SrF4wvfAFyoaGRy8JpiS9PmLAPoz0M7hqX1mwo8Bxeex6Ox03J2b
XFDOKYgFjh9cgcevn3XVfQbaPLwho7loS0dt3UjK97yElob8C/u7nN9xwhbzc8T7
i+wbeS10oxFNs3DLOw9x7EucJ6to4f3Q4tiZ8K2BQrwSjxZ52Pk/j1VnO2XNBnFi
2jqbhIZRMkd2WC7w01qx55gULORs/axJ7RJ2nFybF15uDxQl/GgdHJfEwZbjsLKh
dOSsd5/KFfIcj4MIa+C8y1oecKt7k0WSuZneJAUCAwEAAaOCAiswggInMB0GA1Ud
DgQWBBRkTvE9Nyy8Lvg0AOCp0Qpd0Ucl4DAfBgNVHSMEGDAWgBSTUDBh4a5QPsY9
lwswh13ZP/q73zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2sxQXdZZUd1VUQ3R1BaY0xNSWRkMlRfNnU5OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWYvYTc2YWMxLTVmMjItNDdkMS1iOGMxLWM2MjNlZDhmMmYyOC8x
L1pFN3hQVGNzdkM3NE5BRGdxZEVLWGRGSEplQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYv
YTc2YWMxLTVmMjItNDdkMS1iOGMxLWM2MjNlZDhmMmYyOC8xL2sxQXdZZUd1VUQ3
R1BaY0xNSWRkMlRfNnU5OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBB
BggrBgEFBQcBBwEB/wQyMDAwLgQCAAIwKDARAwUBKgG7IgMIACoBuyQAAAAwEwMH
ACoBuyQAAQMIACoBuyQAAgAwDQYJKoZIhvcNAQELBQADggEBABzwTX55x0QZ4K5Z
HemBacR0ukOLeBYcLomXSEF4aM9XHZyt6roE3l9BiTC4BVcOynF/+7Bj8HU8zLI0
CqDUfCBFRctXvfav5mjjyhzosFquR6EI1wVCSbNTofEX8N/eGlG6HFWg7gAVCBD9
OR5BBdQzmd2WaWO6/3KuiAvgk1i9YXRUx39fBvjxsVplGE0foyq/zYzR3ZyOC95O
qWDRwrWN3w4yCZl2Q3k2QXnAKi/EAcDqumcZ1htrGx4kZYEsMouxbLHAIz0FHxEN
BOnn4IDNFg2ugMf/qLJAHlb+LgVkcXbjgooWduvV07W/hLzRYUJl+zrdvFXowwGO
6BMrmKo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org