Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZZMb7wtH3uIbkvXIEpPnnYZcZKw.roa
File: ZZMb7wtH3uIbkvXIEpPnnYZcZKw.roa (raw, json)
Hash identifier: G8CJK/v3hPbJKoTpcUpdOmzZ8kXS/FoocbAV+BOuKMQ=
Subject key identifier: 65:93:1B:EF:0B:47:DE:E2:1B:92:F5:C8:12:93:E7:9D:86:5C:64:AC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0821287D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZZMb7wtH3uIbkvXIEpPnnYZcZKw.roa
Signing time: Sun 29 May 2022 14:35:15 +0000
ROA not before: Sun 29 May 2022 14:35:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134526
IP address blocks: 185.223.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136390781 (0x821287d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 29 14:35:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65931bef0b47dee21b92f5c81293e79d865c64ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fe:28:5d:11:d1:43:88:d9:11:bd:e2:bf:97:
25:1b:30:9c:82:d5:60:d3:7a:a2:c9:37:37:34:97:
6c:f8:74:87:36:56:0c:9b:48:ee:d1:04:43:b0:11:
af:39:32:ff:fd:c9:91:0b:32:cf:9d:12:50:3d:0e:
43:90:2d:82:a6:3d:c1:ee:f4:fa:eb:b6:ab:ed:e2:
1f:8c:75:6c:61:05:9a:e9:4a:1a:28:45:48:e5:fc:
e8:01:04:49:32:c7:91:fe:ff:07:9c:69:4b:f9:7f:
a1:3c:86:cd:2f:9c:e6:8f:d6:52:6c:53:58:e9:37:
b3:d7:0d:8e:6a:2f:17:45:ce:d4:42:fd:bb:26:3c:
12:73:54:47:b3:7f:e2:60:41:1d:63:3c:54:91:33:
68:37:04:dd:5d:72:19:67:3f:be:5d:1b:66:f2:1f:
20:1d:c2:48:06:5b:f7:8f:51:8e:2f:55:c5:df:03:
03:a7:f9:61:28:03:2a:54:23:d3:41:c5:e3:9e:d5:
98:8e:64:55:dd:b2:b3:0b:c1:e6:8c:90:70:15:3e:
92:26:ca:b4:89:1e:b1:80:f7:fc:ce:0c:bb:7a:f5:
72:2a:c9:32:ca:5c:b8:1c:cf:87:46:95:a6:bb:35:
0f:59:5f:4c:63:9e:de:7c:7d:f7:99:69:62:8c:7f:
6b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:93:1B:EF:0B:47:DE:E2:1B:92:F5:C8:12:93:E7:9D:86:5C:64:AC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ZZMb7wtH3uIbkvXIEpPnnYZcZKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.76.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:2a:7e:8b:aa:da:30:33:b6:2c:08:7c:b1:23:df:48:2f:a6:
22:ae:b4:7b:ec:5e:86:d1:b9:09:24:fd:c1:51:0e:30:2d:3e:
2b:f1:48:e8:a7:b2:b3:91:c7:30:59:c2:fa:cb:cd:1d:23:43:
8b:0c:bc:0c:00:f6:88:25:bf:3c:92:2b:bf:49:9c:26:ba:43:
67:91:4e:a8:26:9f:df:33:a5:17:35:aa:78:3b:8d:1e:96:a0:
5f:49:c0:c6:89:8f:c1:6b:f0:18:26:53:67:97:a4:74:6a:05:
95:e5:ff:94:29:d1:da:0f:6e:44:12:d3:68:88:10:21:2a:6a:
e7:61:c7:e2:1a:7c:2e:13:e0:54:9d:06:39:b2:f8:b3:83:c8:
9e:91:f8:73:b5:74:7c:ed:25:ff:f0:80:74:5b:dc:6a:52:50:
ee:5f:82:90:33:18:a3:d0:2e:8f:92:21:38:d9:09:df:09:06:
18:12:1a:67:bf:89:02:59:69:a0:26:89:b7:58:a7:ea:bf:86:
1f:06:31:aa:5a:27:bf:cb:1c:61:9f:6a:f0:32:1c:da:e1:ca:
b3:80:0c:f3:54:5e:03:d2:73:fc:c3:95:c0:75:62:ed:50:df:
a0:1e:0a:df:0a:af:16:a7:e7:26:69:8c:9d:1b:3f:24:8a:5b:
26:4e:b8:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECCEofTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUy
OTE0MzUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjU5MzFiZWYwYjQ3
ZGVlMjFiOTJmNWM4MTI5M2U3OWQ4NjVjNjRhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALj+KF0R0UOI2RG94r+XJRswnILVYNN6osk3NzSXbPh0hzZW
DJtI7tEEQ7ARrzky//3JkQsyz50SUD0OQ5AtgqY9we70+uu2q+3iH4x1bGEFmulK
GihFSOX86AEESTLHkf7/B5xpS/l/oTyGzS+c5o/WUmxTWOk3s9cNjmovF0XO1EL9
uyY8EnNUR7N/4mBBHWM8VJEzaDcE3V1yGWc/vl0bZvIfIB3CSAZb949Rji9Vxd8D
A6f5YSgDKlQj00HF457VmI5kVd2yswvB5oyQcBU+kibKtIkesYD3/M4Mu3r1cirJ
MspcuBzPh0aVprs1D1lfTGOe3nx995lpYox/a0sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRlkxvvC0fe4huS9cgSk+edhlxkrDAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1paTWI3d3RIM3VJYmt2WElFcFBubllaY1pLdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnfTDANBgkqhkiG9w0BAQsFAAOC
AQEAHyp+i6raMDO2LAh8sSPfSC+mIq60e+xehtG5CST9wVEOMC0+K/FI6Keys5HH
MFnC+svNHSNDiwy8DAD2iCW/PJIrv0mcJrpDZ5FOqCaf3zOlFzWqeDuNHpagX0nA
xomPwWvwGCZTZ5ekdGoFleX/lCnR2g9uRBLTaIgQISpq52HH4hp8LhPgVJ0GObL4
s4PInpH4c7V0fO0l//CAdFvcalJQ7l+CkDMYo9Auj5IhONkJ3wkGGBIaZ7+JAllp
oCaJt1in6r+GHwYxqlonv8scYZ9q8DIc2uHKs4AM81ReA9Jz/MOVwHVi7VDfoB4K
3wqvFqfnJmmMnRs/JIpbJk64Qg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org