Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/PZiuIGiue6w8Mwt434KNSxPCUyI.roa
File: PZiuIGiue6w8Mwt434KNSxPCUyI.roa (raw, json)
Hash identifier: QaKFVSRevNSTBOFMKoQKgGB3N9v6u0Sx3jRaMCNNfG4=
Subject key identifier: 3D:98:AE:20:68:AE:7B:AC:3C:33:0B:78:DF:82:8D:4B:13:C2:53:22
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 090A1C7B
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/PZiuIGiue6w8Mwt434KNSxPCUyI.roa
Signing time: Sat 01 Jan 2022 12:59:58 +0000
ROA not before: Sat 01 Jan 2022 12:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201084
IP address blocks: 185.43.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151657595 (0x90a1c7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 12:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d98ae2068ae7bac3c330b78df828d4b13c25322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:f2:c7:ba:ff:d1:3d:58:ec:65:9c:67:9d:
a0:84:1c:e5:9f:5f:cf:f3:1b:4f:b7:c2:1d:49:34:
cc:20:f0:ab:c3:f2:2b:04:d9:25:e3:f6:52:75:10:
37:d9:e0:d8:05:e1:a9:ba:78:d7:75:70:42:a9:4b:
5a:1a:61:9e:03:ed:8b:03:72:cc:d1:9a:a5:02:4f:
66:c7:7a:8c:61:f9:60:d9:e1:13:df:44:af:e0:48:
00:55:21:bc:12:02:a8:bd:2c:41:e4:f2:6f:7e:8e:
4c:1f:a4:54:e6:7f:fd:8e:67:ab:64:7c:1b:17:62:
95:2c:b2:eb:40:31:97:17:db:3f:53:42:e4:6b:64:
07:8e:73:2f:8a:d7:25:b8:25:fd:8c:03:9c:12:ee:
5d:de:38:57:e0:20:87:22:40:12:1a:70:59:bd:23:
d5:14:95:47:f5:16:ae:9a:ce:62:b0:6d:af:cc:f6:
6c:cc:99:3d:f0:ac:d2:40:7e:2c:01:47:7d:02:d0:
e1:19:e3:c3:8a:df:06:4e:a4:b1:ca:8a:bf:2f:67:
f0:3e:3c:06:e4:e9:dc:1b:60:5d:54:66:50:8a:f7:
c4:0c:7a:b4:ef:10:bd:9f:59:05:6e:db:a9:70:e1:
f7:ae:70:72:15:3a:0b:1b:fe:14:e2:92:31:ce:ec:
df:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:98:AE:20:68:AE:7B:AC:3C:33:0B:78:DF:82:8D:4B:13:C2:53:22
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/PZiuIGiue6w8Mwt434KNSxPCUyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.68.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:09:82:4e:4b:ed:dd:12:9a:56:21:30:d3:79:8c:87:27:48:
47:ed:d1:e1:f5:ea:ea:c9:2b:8f:0a:11:51:68:2c:28:b0:40:
d3:bb:ac:d2:29:b5:43:e9:09:15:14:21:00:3b:1c:0e:d5:09:
c7:f9:7f:df:02:34:61:d0:f5:1a:87:99:28:4a:43:5b:fa:0d:
32:10:f2:ea:27:21:e2:f6:f7:7f:b5:a3:e9:64:d7:06:b2:4b:
88:43:50:c9:81:98:e0:40:61:8d:a0:45:ad:32:57:30:16:f8:
93:15:b9:22:64:ac:c5:58:aa:67:66:ab:9b:26:7c:2a:56:52:
9f:9d:8b:53:40:07:a2:19:8c:fd:d1:d2:c7:26:2f:f6:4a:f6:
f2:d4:3e:51:2d:dd:d7:da:96:56:f0:c8:2c:30:fb:1b:17:29:
57:63:e8:4e:76:33:1a:12:16:6f:3c:a1:77:79:0a:24:78:b3:
e0:5d:08:b3:f4:69:de:dc:7b:06:a2:6d:c0:59:0d:e7:47:cd:
e0:25:ec:dd:da:ae:81:a9:00:65:b7:22:36:e6:0f:d3:c8:a3:
da:64:88:a0:df:6f:02:74:fc:f8:4b:d8:3f:b9:f5:de:82:16:
24:90:55:a8:0e:c1:ff:18:8f:f4:83:98:21:d4:b4:86:96:00:
a8:db:fa:b4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQocezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
N2UyY2UzMTA5NDgwYWVlN2IzZmQyODQ2ZWM4Zjg2NDY4ODVjZGJhMB4XDTIyMDEw
MTEyNTk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2Q5OGFlMjA2OGFl
N2JhYzNjMzMwYjc4ZGY4MjhkNGIxM2MyNTMyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKOf8se6/9E9WOxlnGedoIQc5Z9fz/MbT7fCHUk0zCDwq8Py
KwTZJeP2UnUQN9ng2AXhqbp413VwQqlLWhphngPtiwNyzNGapQJPZsd6jGH5YNnh
E99Er+BIAFUhvBICqL0sQeTyb36OTB+kVOZ//Y5nq2R8GxdilSyy60AxlxfbP1NC
5GtkB45zL4rXJbgl/YwDnBLuXd44V+AghyJAEhpwWb0j1RSVR/UWrprOYrBtr8z2
bMyZPfCs0kB+LAFHfQLQ4Rnjw4rfBk6kscqKvy9n8D48BuTp3BtgXVRmUIr3xAx6
tO8QvZ9ZBW7bqXDh965wchU6Cxv+FOKSMc7s34UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ9mK4gaK57rDwzC3jfgo1LE8JTIjAfBgNVHSMEGDAWgBSn4s4xCUgK7ns/
0oRuyPhkaIXNujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3AtTE9NUWxJQ3U1N1A5S0Vic2o0WkdpRnpiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvYjYxYWRkLTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8x
L1BaaXVJR2l1ZTZ3OE13dDQzNEtOU3hQQ1V5SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
YjYxYWRkLTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8xL3AtTE9NUWxJQ3U1
N1A5S0Vic2o0WkdpRnpiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkrRDANBgkqhkiG9w0BAQsFAAOC
AQEAngmCTkvt3RKaViEw03mMhydIR+3R4fXq6skrjwoRUWgsKLBA07us0im1Q+kJ
FRQhADscDtUJx/l/3wI0YdD1GoeZKEpDW/oNMhDy6ich4vb3f7Wj6WTXBrJLiENQ
yYGY4EBhjaBFrTJXMBb4kxW5ImSsxViqZ2armyZ8KlZSn52LU0AHohmM/dHSxyYv
9kr28tQ+US3d19qWVvDILDD7GxcpV2PoTnYzGhIWbzyhd3kKJHiz4F0Is/Rp3tx7
BqJtwFkN50fN4CXs3dqugakAZbciNuYP08ij2mSIoN9vAnT8+EvYP7n13oIWJJBV
qA7B/xiP9IOYIdS0hpYAqNv6tA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:49 2025 by rpki-client