Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/9esJ9pZbdfijF2DszkbBe7lZ_zs.roa
File: 9esJ9pZbdfijF2DszkbBe7lZ_zs.roa (raw, json)
Hash identifier: QBvTPlfM3G0Rl7ewZyk3idEheedllylrroVJqsSgOzQ=
Subject key identifier: F5:EB:09:F6:96:5B:75:F8:A3:17:60:EC:CE:46:C1:7B:B9:59:FF:3B
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 02F3C909
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/9esJ9pZbdfijF2DszkbBe7lZ_zs.roa
Signing time: Tue 07 Jun 2022 17:02:25 +0000
ROA not before: Tue 07 Jun 2022 17:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.22.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49531145 (0x2f3c909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jun 7 17:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5eb09f6965b75f8a31760ecce46c17bb959ff3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a6:c6:2d:22:00:e1:1c:71:9a:76:04:b1:c1:
10:a3:9f:8c:78:65:44:bd:9b:34:44:76:3a:58:14:
69:f0:71:e4:22:df:91:8d:9b:4b:05:4e:cc:e6:7e:
d1:92:b8:88:2f:6f:75:91:b5:dd:6d:b6:52:07:76:
aa:d2:5b:bf:07:8d:e4:6e:10:a2:89:49:85:69:c8:
ca:41:80:11:80:a5:5e:56:c3:ed:df:9f:d6:63:cd:
41:c9:06:c1:e7:0d:e9:eb:ab:a3:c2:2e:05:d8:41:
db:c9:f9:37:a8:ef:16:a5:58:4d:0f:62:b2:a2:bb:
81:13:a3:87:70:5e:01:37:5b:f5:bf:c7:59:41:7a:
56:17:e7:e4:c1:65:ec:4a:04:ae:b6:90:f7:5e:94:
af:ae:d1:c4:f9:be:93:17:2c:e8:39:7f:13:b6:7d:
0c:1c:da:8b:99:df:5a:aa:1b:d9:b9:21:13:b1:bd:
d0:6a:e3:77:e9:5b:20:70:a4:9b:a9:aa:cd:f3:44:
b0:e1:9a:18:d7:22:84:58:d8:28:f9:fe:95:63:44:
a5:1e:f3:b5:92:0b:ed:7b:8b:30:99:0e:44:19:24:
5d:9e:84:07:ea:07:50:4c:bd:2b:70:b3:57:7c:a1:
c4:d1:88:75:f5:1b:a4:b6:40:6c:ec:4e:72:63:3b:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EB:09:F6:96:5B:75:F8:A3:17:60:EC:CE:46:C1:7B:B9:59:FF:3B
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/9esJ9pZbdfijF2DszkbBe7lZ_zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.57.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3d:a3:5f:c1:fa:73:a3:b9:0f:69:cc:fd:9c:01:f9:b6:3f:
5a:87:cd:6b:00:d0:ab:65:a3:8c:c8:17:ef:3e:ca:9a:3d:27:
8d:70:33:7b:c6:59:79:5c:7c:38:a3:c9:bf:47:61:99:b8:aa:
69:d9:51:10:4a:ed:06:14:ff:05:83:74:fa:2c:ce:32:30:93:
05:3c:67:79:1e:bc:19:d1:f3:0f:ee:7f:c6:de:7b:96:a9:91:
99:f6:b8:73:04:2e:b0:94:1c:fb:7a:4f:7a:7e:b0:c3:48:04:
17:55:da:4a:b6:f0:08:bb:3b:e3:ff:99:67:3d:94:5d:7b:4b:
77:1e:cb:e5:58:7e:c7:9d:f7:60:53:10:5e:d7:c0:81:2c:37:
49:c2:6c:4d:24:7c:a7:e6:ab:c1:2a:f9:19:92:e7:df:99:6d:
75:6e:d7:f4:64:ce:aa:57:e9:7e:b5:8d:1f:28:79:7e:5c:1b:
33:d4:1e:c6:bd:21:28:a6:d8:64:80:50:ad:11:d6:a5:1b:cb:
4f:e5:7c:82:43:94:ff:22:26:55:e2:76:b6:9d:d1:59:f4:3e:
d0:b5:8b:72:c0:33:fa:90:d1:bf:85:b7:90:f2:d8:ec:91:ec:
ad:f8:6a:16:2f:6a:cf:8d:1f:ff:4d:f7:6b:73:09:4b:2d:10:
61:5b:22:68
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAvPJCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWMyYzFhZmQ0YmRlYzk4MDUwNmZhMDdkZjdjODY2MmQ1NTRmYTQ2MB4XDTIyMDYw
NzE3MDIyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjVlYjA5ZjY5NjVi
NzVmOGEzMTc2MGVjY2U0NmMxN2JiOTU5ZmYzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGmxi0iAOEccZp2BLHBEKOfjHhlRL2bNER2OlgUafBx5CLf
kY2bSwVOzOZ+0ZK4iC9vdZG13W22Ugd2qtJbvweN5G4QoolJhWnIykGAEYClXlbD
7d+f1mPNQckGwecN6euro8IuBdhB28n5N6jvFqVYTQ9isqK7gROjh3BeATdb9b/H
WUF6Vhfn5MFl7EoErraQ916Ur67RxPm+kxcs6Dl/E7Z9DBzai5nfWqob2bkhE7G9
0Grjd+lbIHCkm6mqzfNEsOGaGNcihFjYKPn+lWNEpR7ztZIL7XuLMJkORBkkXZ6E
B+oHUEy9K3CzV3yhxNGIdfUbpLZAbOxOcmM70S0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT16wn2llt1+KMXYOzORsF7uVn/OzAfBgNVHSMEGDAWgBTqwsGv1L3smAUG
+gfffIZi1VT6RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZzTEJyOVM5N0pnRkJ2b0gzM3lHWXRWVS1rWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvNTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8x
Lzllc0o5cFpiZGZpakYyRHN6a2JCZTdsWl96cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
NTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8xLzZzTEJyOVM5N0pn
RkJ2b0gzM3lHWXRWVS1rWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkWOTANBgkqhkiG9w0BAQsFAAOC
AQEAWD2jX8H6c6O5D2nM/ZwB+bY/WofNawDQq2WjjMgX7z7Kmj0njXAze8ZZeVx8
OKPJv0dhmbiqadlREErtBhT/BYN0+izOMjCTBTxneR68GdHzD+5/xt57lqmRmfa4
cwQusJQc+3pPen6ww0gEF1XaSrbwCLs74/+ZZz2UXXtLdx7L5Vh+x533YFMQXtfA
gSw3ScJsTSR8p+arwSr5GZLn35ltdW7X9GTOqlfpfrWNHyh5flwbM9Qexr0hKKbY
ZIBQrRHWpRvLT+V8gkOU/yImVeJ2tp3RWfQ+0LWLcsAz+pDRv4W3kPLY7JHsrfhq
Fi9qz40f/033a3MJSy0QYVsiaA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org