Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/fe04ac-a190-4804-913c-ffc025831f4f/1/zxKcG6C3iGfwlBmu1dllXCKSB1E.roa
File: zxKcG6C3iGfwlBmu1dllXCKSB1E.roa (raw, json)
Hash identifier: wmf7jEdrD76szLB97XxW2AweaBGsDm9iPjqOLZWismE=
Subject key identifier: CF:12:9C:1B:A0:B7:88:67:F0:94:19:AE:D5:D9:65:5C:22:92:07:51
Certificate issuer: /CN=219885ea020e65006314ee9480def3b3efc039e3
Certificate serial: 091C1051
Authority key identifier: 21:98:85:EA:02:0E:65:00:63:14:EE:94:80:DE:F3:B3:EF:C0:39:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZiF6gIOZQBjFO6UgN7zs-_AOeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/fe04ac-a190-4804-913c-ffc025831f4f/1/zxKcG6C3iGfwlBmu1dllXCKSB1E.roa
Signing time: Sat 01 Jan 2022 06:00:55 +0000
ROA not before: Sat 01 Jan 2022 06:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203576
IP address blocks: 5.180.184.0/24 maxlen: 32
5.180.186.0/24 maxlen: 32
5.180.185.0/24 maxlen: 32
5.180.187.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152834129 (0x91c1051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219885ea020e65006314ee9480def3b3efc039e3
Validity
Not Before: Jan 1 06:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf129c1ba0b78867f09419aed5d9655c22920751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:19:d0:15:02:96:27:3d:b2:8e:5d:8b:7a:af:
bc:a4:8c:ec:5a:73:8d:e7:ca:8e:51:d3:47:f0:05:
00:b8:8d:85:af:2d:50:3a:75:a6:9d:e6:c8:2c:81:
ab:a9:bc:73:5e:59:da:a2:84:eb:5a:3f:54:d0:92:
2b:63:29:58:97:50:8a:6a:28:42:30:2f:2c:6f:e5:
13:a2:f1:5d:b2:3d:7c:fc:8a:85:f9:86:07:bf:eb:
c7:15:f7:8a:e8:56:0d:b4:ec:d3:94:25:5c:5a:c8:
91:30:31:57:b7:c9:30:dd:ea:4a:b9:3a:af:a4:74:
59:38:29:a6:16:ce:17:a9:e9:49:2c:f6:33:a9:8b:
25:d4:b0:63:b0:43:21:66:2d:72:1d:9c:43:e6:0a:
df:6d:0e:42:7b:25:58:a8:20:41:b7:79:39:16:ba:
f3:41:91:a1:cf:0f:db:26:bf:95:0e:c5:5d:f6:a6:
00:cc:2e:55:cd:1e:0e:6b:ab:02:77:51:64:9f:e5:
6b:9b:f2:a6:b6:b5:1b:d7:fa:51:d2:ed:e8:c5:bf:
94:30:00:f2:cf:9f:89:70:b4:2b:81:48:ae:ce:cb:
67:69:cf:26:2f:3a:8e:6b:e7:76:30:12:25:47:7c:
d1:66:2e:a7:67:fe:5c:7b:28:c9:59:6a:5d:a6:8e:
17:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:12:9C:1B:A0:B7:88:67:F0:94:19:AE:D5:D9:65:5C:22:92:07:51
X509v3 Authority Key Identifier:
keyid:21:98:85:EA:02:0E:65:00:63:14:EE:94:80:DE:F3:B3:EF:C0:39:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZiF6gIOZQBjFO6UgN7zs-_AOeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/fe04ac-a190-4804-913c-ffc025831f4f/1/zxKcG6C3iGfwlBmu1dllXCKSB1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/fe04ac-a190-4804-913c-ffc025831f4f/1/IZiF6gIOZQBjFO6UgN7zs-_AOeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.184.0/22
Signature Algorithm: sha256WithRSAEncryption
70:5f:6b:bc:88:68:76:44:65:97:a7:5b:93:79:ab:8c:0b:f9:
66:ca:c0:b2:b4:0f:88:20:40:1c:c0:40:10:7b:97:5f:08:88:
ce:ce:9c:7d:79:ca:37:87:b4:21:53:08:71:55:e2:ce:8c:99:
2d:00:99:c7:c5:c9:ec:59:9d:be:32:cf:35:74:ff:cc:c2:75:
57:aa:68:36:08:11:f1:01:e3:9f:ad:dd:ce:5c:33:50:d4:43:
9b:0f:75:48:07:94:2b:af:c0:6c:82:e4:de:e9:88:94:94:70:
77:51:84:f6:5f:42:7c:b2:9d:12:a6:ad:a8:e7:35:8c:d4:09:
f3:94:49:da:ef:15:b3:56:ae:ae:88:18:ba:85:7a:f5:21:cc:
08:cc:c8:4f:99:b0:85:ad:ce:8c:3f:61:54:d9:b4:eb:5e:9b:
55:18:00:3d:27:8f:e9:63:ea:06:82:49:77:f6:70:04:44:b8:
f4:eb:5b:d7:c7:67:7a:44:79:fb:1f:d9:98:bf:08:8d:d3:0b:
62:f3:46:86:68:18:53:d6:17:33:5d:52:12:48:eb:d4:c7:d5:
60:35:34:1a:c3:6f:f9:ce:1d:0c:94:5f:06:58:43:f3:ef:da:
f3:47:bf:96:29:c0:86:ca:40:95:f9:b8:1e:2c:3a:40:66:ee:
32:e2:7b:51
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECRwQUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTk4ODVlYTAyMGU2NTAwNjMxNGVlOTQ4MGRlZjNiM2VmYzAzOWUzMB4XDTIyMDEw
MTA2MDA1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2YxMjljMWJhMGI3
ODg2N2YwOTQxOWFlZDVkOTY1NWMyMjkyMDc1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJYZ0BUClic9so5di3qvvKSM7FpzjefKjlHTR/AFALiNha8t
UDp1pp3myCyBq6m8c15Z2qKE61o/VNCSK2MpWJdQimooQjAvLG/lE6LxXbI9fPyK
hfmGB7/rxxX3iuhWDbTs05QlXFrIkTAxV7fJMN3qSrk6r6R0WTgpphbOF6npSSz2
M6mLJdSwY7BDIWYtch2cQ+YK320OQnslWKggQbd5ORa680GRoc8P2ya/lQ7FXfam
AMwuVc0eDmurAndRZJ/la5vypra1G9f6UdLt6MW/lDAA8s+fiXC0K4FIrs7LZ2nP
Ji86jmvndjASJUd80WYup2f+XHsoyVlqXaaOF5UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTPEpwboLeIZ/CUGa7V2WVcIpIHUTAfBgNVHSMEGDAWgBQhmIXqAg5lAGMU
7pSA3vOz78A54zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0laaUY2Z0lPWlFCakZPNlVnTjd6cy1fQU9lTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvZmUwNGFjLWExOTAtNDgwNC05MTNjLWZmYzAyNTgzMWY0Zi8x
L3p4S2NHNkMzaUdmd2xCbXUxZGxsWENLU0IxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
ZmUwNGFjLWExOTAtNDgwNC05MTNjLWZmYzAyNTgzMWY0Zi8xL0laaUY2Z0lPWlFC
akZPNlVnTjd6cy1fQU9lTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgW0uDANBgkqhkiG9w0BAQsFAAOC
AQEAcF9rvIhodkRll6dbk3mrjAv5ZsrAsrQPiCBAHMBAEHuXXwiIzs6cfXnKN4e0
IVMIcVXizoyZLQCZx8XJ7FmdvjLPNXT/zMJ1V6poNggR8QHjn63dzlwzUNRDmw91
SAeUK6/AbILk3umIlJRwd1GE9l9CfLKdEqatqOc1jNQJ85RJ2u8Vs1aurogYuoV6
9SHMCMzIT5mwha3OjD9hVNm0616bVRgAPSeP6WPqBoJJd/ZwBES49Otb18dnekR5
+x/ZmL8IjdMLYvNGhmgYU9YXM11SEkjr1MfVYDU0GsNv+c4dDJRfBlhD8+/a80e/
linAhspAlfm4Hiw6QGbuMuJ7UQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-fra.rpki-client.org