Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/ZldS76xQQHrFSw6n6zKCM8VG09Q.roa
File: ZldS76xQQHrFSw6n6zKCM8VG09Q.roa (raw, json)
Hash identifier: IgyfihnQwV+CjcmveBUwhN+wV5XvoCCKR+T8ZX2fK24=
Subject key identifier: 66:57:52:EF:AC:50:40:7A:C5:4B:0E:A7:EB:32:82:33:C5:46:D3:D4
Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c
Certificate serial: 0184AEA44051E0EDB90730CBDE0DC42A7EC5
Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/ZldS76xQQHrFSw6n6zKCM8VG09Q.roa
Signing time: Fri 25 Nov 2022 11:55:10 +0000
ROA not before: Fri 25 Nov 2022 11:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207101
IP address blocks: 185.186.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:a4:40:51:e0:ed:b9:07:30:cb:de:0d:c4:2a:7e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c
Validity
Not Before: Nov 25 11:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=665752efac50407ac54b0ea7eb328233c546d3d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8c:47:c1:48:e5:94:25:b2:0c:63:44:4f:6d:
62:a0:4b:c5:d1:a0:7b:e8:8e:43:75:1d:37:e9:cb:
b6:4c:12:45:cb:1f:74:b3:1e:22:7f:81:69:21:44:
4f:e3:e4:b3:c5:5f:a1:de:ef:21:55:c6:d0:fb:b6:
27:15:c5:ba:6f:e7:a2:e7:f9:19:36:73:8b:02:d8:
01:48:7a:9a:ec:e9:a4:c8:58:ad:6c:a3:ab:c4:46:
eb:cb:7b:55:fc:4a:47:e5:49:2c:4e:1c:99:60:91:
d4:ff:0e:cd:15:c1:60:68:77:94:8d:c1:79:2c:b1:
98:90:ff:cd:5a:4c:81:16:ae:21:03:6e:4f:39:b3:
a6:c6:85:db:e3:b0:e2:5e:72:d2:49:c5:14:98:c9:
8c:42:ef:41:17:49:40:b6:c7:9f:75:37:b3:2a:c2:
0c:15:24:36:ab:29:72:39:ad:71:cc:e0:8b:d2:9a:
7f:ed:97:04:70:f4:f1:63:f8:ab:00:16:2a:6a:79:
da:0d:88:38:e0:c7:a8:5d:11:d2:66:fe:e0:84:48:
21:0b:d9:a5:5b:d9:71:e2:e5:c1:d1:5a:1c:bf:54:
6d:75:74:a7:b8:1f:5e:29:07:93:b5:61:29:d2:87:
f5:f2:94:a3:a2:2d:b6:84:3b:7c:08:54:e3:4d:2f:
63:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:57:52:EF:AC:50:40:7A:C5:4B:0E:A7:EB:32:82:33:C5:46:D3:D4
X509v3 Authority Key Identifier:
keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/ZldS76xQQHrFSw6n6zKCM8VG09Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.39.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3e:6c:0b:83:f1:3d:b6:b9:09:09:c2:57:8c:d1:47:00:f2:
05:6f:be:42:e1:59:de:9a:f7:a8:42:9a:37:d5:62:22:b6:c0:
ec:d3:df:2f:a7:34:92:23:ff:a4:df:7f:67:5c:c7:33:ad:dd:
9e:45:6c:b9:01:94:67:8d:24:cc:cb:40:d6:fa:8b:fe:b0:21:
1d:c7:a9:a7:ff:f1:f0:6d:ce:66:e1:5b:0c:da:f5:81:82:4c:
35:1c:1a:68:43:46:55:fc:74:97:a6:5e:55:fd:20:9b:88:ab:
4a:db:60:19:aa:2c:5f:1f:9f:f9:17:d0:38:fb:d6:de:63:be:
21:d1:37:3f:10:59:0a:e2:93:4d:28:56:ac:35:42:06:39:bc:
36:3e:88:78:e6:49:81:e7:da:73:01:63:92:a5:1b:af:ea:60:
fe:42:08:49:e1:d7:f5:a4:b0:af:a0:34:03:b9:84:0b:31:98:
a4:24:4e:0e:38:53:49:2b:59:12:b5:ac:cc:af:3d:ec:9d:e3:
29:04:40:2c:c3:86:ac:99:fb:d4:c0:99:02:4c:74:24:8b:1d:
f5:07:12:bd:ac:97:9b:88:eb:0e:62:93:f9:cd:f9:a4:88:2a:
69:cc:bc:c8:2c:34:03:ec:f6:04:50:62:af:2e:27:c0:e9:64:
10:5e:13:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSupEBR4O25BzDL3g3EKn7FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMDM4N2M5NDEzNGQ5YTA4ZmZkMzI2MzA5Njc3MDNhZGM1
ODJiNmMwHhcNMjIxMTI1MTE1NTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjU3NTJlZmFjNTA0MDdhYzU0YjBlYTdlYjMyODIzM2M1NDZkM2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4xHwUjllCWyDGNET21ioEvF0aB7
6I5DdR036cu2TBJFyx90sx4if4FpIURP4+SzxV+h3u8hVcbQ+7YnFcW6b+ei5/kZ
NnOLAtgBSHqa7OmkyFitbKOrxEbry3tV/EpH5UksThyZYJHU/w7NFcFgaHeUjcF5
LLGYkP/NWkyBFq4hA25PObOmxoXb47DiXnLSScUUmMmMQu9BF0lAtsefdTezKsIM
FSQ2qylyOa1xzOCL0pp/7ZcEcPTxY/irABYqannaDYg44MeoXRHSZv7ghEghC9ml
W9lx4uXB0Vocv1RtdXSnuB9eKQeTtWEp0of18pSjoi22hDt8CFTjTS9j5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZXUu+sUEB6xUsOp+sygjPFRtPUMB8GA1UdIwQY
MBaAFEIDh8lBNNmgj/0yYwlncDrcWCtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWdPSHlVRTAyYUNQX1RKakNXZHdPdHhZSzJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9hMzhhODctMDE1OS00OTBlLWI2OWMt
Mzc2ZjRiNGQ5ZGE2LzEvWmxkUzc2eFFRSHJGU3c2bjZ6S0NNOFZHMDlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9hMzhhODctMDE1OS00OTBlLWI2OWMtMzc2ZjRiNGQ5ZGE2
LzEvUWdPSHlVRTAyYUNQX1RKakNXZHdPdHhZSzJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubonMA0G
CSqGSIb3DQEBCwUAA4IBAQAZPmwLg/E9trkJCcJXjNFHAPIFb75C4VnemveoQpo3
1WIitsDs098vpzSSI/+k339nXMczrd2eRWy5AZRnjSTMy0DW+ov+sCEdx6mn//Hw
bc5m4VsM2vWBgkw1HBpoQ0ZV/HSXpl5V/SCbiKtK22AZqixfH5/5F9A4+9beY74h
0Tc/EFkK4pNNKFasNUIGObw2Poh45kmB59pzAWOSpRuv6mD+QghJ4df1pLCvoDQD
uYQLMZikJE4OOFNJK1kStazMrz3sneMpBEAsw4asmfvUwJkCTHQkix31BxK9rJeb
iOsOYpP5zfmkiCppzLzILDQD7PYEUGKvLifA6WQQXhMI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:52 2024 by rpki-client on console-fra.rpki-client.org