Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Z5n6MGypufJqMS8QhUsv8Ru8tzE.roa
File: Z5n6MGypufJqMS8QhUsv8Ru8tzE.roa (raw, json)
Hash identifier: UODXI05/CTFFwrjS22XLSsMJktC4+Vvk7wiy6NiV91A=
Subject key identifier: 67:99:FA:30:6C:A9:B9:F2:6A:31:2F:10:85:4B:2F:F1:1B:BC:B7:31
Certificate issuer: /CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Certificate serial: 02E6F3
Authority key identifier: 08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Z5n6MGypufJqMS8QhUsv8Ru8tzE.roa
Signing time: Tue 11 Jan 2022 19:08:43 +0000
ROA not before: Tue 11 Jan 2022 19:08:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29791
IP address blocks: 185.37.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190195 (0x2e6f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Validity
Not Before: Jan 11 19:08:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6799fa306ca9b9f26a312f10854b2ff11bbcb731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:9d:b1:25:bf:b3:73:cc:2f:20:3f:32:1f:
82:84:ed:fa:59:10:13:81:57:b7:9d:c2:a5:3c:74:
57:20:1f:05:3c:37:43:7d:d8:8b:15:2e:e8:27:b0:
09:0b:7f:d7:70:2a:b6:8d:5f:f8:80:0c:66:54:a2:
4b:61:a5:1f:9f:5b:64:f8:eb:7a:0b:78:2a:70:16:
c4:67:9b:4b:7f:b1:d4:de:a5:cb:65:15:ce:ad:ef:
4e:5b:96:50:24:27:82:bf:27:55:db:63:19:75:be:
2a:4f:43:0a:a0:d0:66:c2:5f:c7:8c:dc:be:48:bc:
8a:e7:31:be:6a:a6:96:bb:73:64:c3:a2:d2:7e:88:
81:cd:37:c7:41:c1:64:5a:1b:d9:46:ac:38:28:db:
1e:71:35:76:80:ac:4e:e6:ed:61:a1:83:ec:91:55:
39:20:04:99:bf:7e:1a:7d:cd:3d:20:ff:43:5d:bb:
c1:ac:81:51:87:66:86:29:b6:6a:a6:f9:25:b6:d1:
15:43:fe:15:e1:96:df:3c:99:02:c0:c6:e8:94:89:
4f:5b:8d:72:3b:ff:d8:5d:82:e7:48:98:3c:71:01:
5b:e0:ec:c8:f7:93:f6:5c:87:1e:e3:77:df:be:01:
58:d4:7f:6c:d5:64:3b:71:d7:15:e3:18:89:fe:cc:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:99:FA:30:6C:A9:B9:F2:6A:31:2F:10:85:4B:2F:F1:1B:BC:B7:31
X509v3 Authority Key Identifier:
keyid:08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Z5n6MGypufJqMS8QhUsv8Ru8tzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/CEBZoMpgeKm3Xapm24Bv8iwOqtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.37.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ab:bd:81:1f:45:b0:66:69:c8:b7:00:8f:62:04:2a:e0:d6:
b6:bd:30:14:6a:55:21:46:dd:5d:f2:da:fb:58:87:fe:2a:67:
bf:20:29:14:de:e5:eb:5d:ce:57:a5:19:78:6f:2b:61:a0:ad:
b9:d9:de:ff:0d:a8:88:52:77:4f:ac:43:3a:4b:99:2c:53:ab:
73:59:62:b4:25:63:d1:fb:24:b5:f2:8e:79:1c:95:a4:7f:9e:
d7:91:fb:9e:ea:06:3f:40:f9:f3:75:55:c4:3e:0d:ae:6a:41:
ac:cf:77:aa:a3:d3:d4:42:76:ed:2e:9c:04:5e:64:ed:f6:f7:
78:30:6e:30:41:5e:67:23:d8:15:c0:06:ee:b8:f5:6c:fa:b8:
cc:27:4f:da:59:36:a7:a1:1b:bd:62:d9:0b:c7:4c:53:b8:a4:
c9:2a:1f:7a:9f:77:87:b9:9e:e7:53:e8:36:a3:86:10:93:dd:
97:80:f3:64:f0:cf:8c:45:f8:db:d7:08:6c:3a:46:37:c7:70:
45:4a:8b:c7:05:a5:66:fa:0a:43:55:03:0c:c5:8d:2c:16:bc:
27:e2:46:46:08:2f:59:ae:70:67:93:3f:36:2f:64:89:1f:e3:
63:04:67:53:5b:d2:31:a8:bb:21:18:5b:67:00:1f:82:74:94:
7d:74:5e:a7
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAubzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDA4
NDA1OWEwY2E2MDc4YTliNzVkYWE2NmRiODA2ZmYyMmMwZWFhZDkwHhcNMjIwMTEx
MTkwODQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2Nzk5ZmEzMDZjYTli
OWYyNmEzMTJmMTA4NTRiMmZmMTFiYmNiNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAthGdsSW/s3PMLyA/Mh+ChO36WRATgVe3ncKlPHRXIB8FPDdD
fdiLFS7oJ7AJC3/XcCq2jV/4gAxmVKJLYaUfn1tk+Ot6C3gqcBbEZ5tLf7HU3qXL
ZRXOre9OW5ZQJCeCvydV22MZdb4qT0MKoNBmwl/HjNy+SLyK5zG+aqaWu3Nkw6LS
foiBzTfHQcFkWhvZRqw4KNsecTV2gKxO5u1hoYPskVU5IASZv34afc09IP9DXbvB
rIFRh2aGKbZqpvklttEVQ/4V4ZbfPJkCwMbolIlPW41yO//YXYLnSJg8cQFb4OzI
95P2XIce43ffvgFY1H9s1WQ7cdcV4xiJ/sz8JwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGeZ+jBsqbnyajEvEIVLL/EbvLcxMB8GA1UdIwQYMBaAFAhAWaDKYHipt12q
ZtuAb/IsDqrZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Q0VCWm9NcGdlS20zWGFwbTI0QnY4aXdPcXRrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jOC9jNGM4NjEtYjMyNy00MWYyLTgyMGMtNGMwYTFjMzNmYThhLzEv
WjVuNk1HeXB1ZkpxTVM4UWhVc3Y4UnU4dHpFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9j
NGM4NjEtYjMyNy00MWYyLTgyMGMtNGMwYTFjMzNmYThhLzEvQ0VCWm9NcGdlS20z
WGFwbTI0QnY4aXdPcXRrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSUlMA0GCSqGSIb3DQEBCwUAA4IB
AQBKq72BH0WwZmnItwCPYgQq4Na2vTAUalUhRt1d8tr7WIf+Kme/ICkU3uXrXc5X
pRl4bythoK252d7/DaiIUndPrEM6S5ksU6tzWWK0JWPR+yS18o55HJWkf57Xkfue
6gY/QPnzdVXEPg2uakGsz3eqo9PUQnbtLpwEXmTt9vd4MG4wQV5nI9gVwAbuuPVs
+rjMJ0/aWTanoRu9YtkLx0xTuKTJKh96n3eHuZ7nU+g2o4YQk92XgPNk8M+MRfjb
1whsOkY3x3BFSovHBaVm+gpDVQMMxY0sFrwn4kZGCC9ZrnBnkz82L2SJH+NjBGdT
W9IxqLshGFtnAB+CdJR9dF6n
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:54 2023 by rpki-client on console-fra.rpki-client.org