Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ZBdZqmLwKCwo4nyOdZaLnBxrCC8.roa
File: ZBdZqmLwKCwo4nyOdZaLnBxrCC8.roa (raw, json)
Hash identifier: wIUim3KNrdSpKykKnqF0EezWcH+JIp3m14u2quwLCmA=
Subject key identifier: 64:17:59:AA:62:F0:28:2C:28:E2:7C:8E:75:96:8B:9C:1C:6B:08:2F
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 09EB3D53
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ZBdZqmLwKCwo4nyOdZaLnBxrCC8.roa
Signing time: Sat 01 Jan 2022 13:03:47 +0000
ROA not before: Sat 01 Jan 2022 13:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57986
IP address blocks: 85.133.199.0/24 maxlen: 24
85.133.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166411603 (0x9eb3d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 1 13:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=641759aa62f0282c28e27c8e75968b9c1c6b082f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:aa:1f:f0:85:2b:ff:21:fd:a9:e3:7c:44:bf:
89:52:e1:f6:0e:63:90:48:73:cd:4b:c6:f5:1c:89:
b2:27:a9:8b:ae:0b:88:47:6f:0f:ee:1f:45:7e:02:
6f:97:7e:f7:4a:7d:0e:55:e0:2a:0b:1a:ec:d2:31:
40:15:e9:8e:df:4a:57:2d:89:c1:63:d2:09:71:f7:
97:fa:28:95:25:b8:3e:9c:9c:95:1f:5e:f7:91:0d:
49:93:29:ed:95:20:51:5e:75:eb:43:ff:a1:5b:aa:
1a:90:3c:6f:64:ef:eb:02:a1:31:3f:db:6c:ff:61:
8c:a1:0b:9f:09:fc:8c:9e:61:8a:32:5a:32:76:90:
a2:93:14:21:84:cd:4a:9e:ea:98:34:a3:df:0e:da:
53:56:e9:3a:43:76:53:d5:7e:d9:22:15:9e:a3:92:
91:62:89:40:18:0c:0a:b8:92:f4:4f:5b:63:b8:86:
de:47:f2:1f:12:f6:d6:24:f0:73:5f:58:4e:b5:2f:
13:e0:69:c5:e4:e1:97:8c:d5:98:f2:86:9b:d5:e4:
91:a5:4b:2d:b2:4e:5f:49:26:0a:03:18:e2:15:62:
34:65:e8:d1:a9:91:4d:44:7b:be:f3:0a:ff:a0:fe:
56:a8:52:c7:1a:2c:15:a9:99:f4:69:9b:07:59:ec:
7c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:17:59:AA:62:F0:28:2C:28:E2:7C:8E:75:96:8B:9C:1C:6B:08:2F
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/ZBdZqmLwKCwo4nyOdZaLnBxrCC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.198.0/23
Signature Algorithm: sha256WithRSAEncryption
78:76:a2:23:29:70:90:e7:26:e9:4c:be:45:65:5a:2c:1b:99:
61:8b:f5:2b:ea:0c:a4:a3:de:2a:fb:f0:63:4e:86:78:ac:73:
42:c1:8b:08:e3:76:a8:e7:74:eb:cc:87:42:eb:42:fa:fa:ca:
c2:cc:8c:fe:93:d9:35:fb:9b:8d:31:fa:e5:17:ea:01:64:2c:
ed:ff:a2:c8:68:7f:e4:38:6b:14:2c:7e:63:2a:53:93:f5:e4:
13:72:69:31:d7:f2:33:56:a2:5b:57:ba:6f:1f:e0:f0:75:c4:
ef:45:65:55:70:92:a2:51:ce:da:a0:dc:ae:58:7a:6f:84:b9:
7a:50:03:23:08:a3:b8:8f:7a:86:88:28:e7:9f:49:46:c2:6c:
62:a0:65:d1:a0:16:69:ab:c8:9b:67:cf:27:4f:14:e3:50:03:
7b:b8:69:bd:aa:01:31:66:46:ef:48:de:f0:0c:16:8f:bd:b8:
17:f6:21:f5:ae:70:bd:ef:c7:44:f3:65:64:cc:39:ab:85:f3:
2e:e9:a6:2c:a8:13:b8:d8:e6:9e:90:5a:50:18:66:2f:f1:7b:
39:83:1f:30:c8:6d:c7:c8:14:be:df:2c:76:85:33:e5:8e:33:
b2:c8:36:80:f5:09:4a:60:35:59:34:20:d7:df:15:10:98:96:
82:fc:d7:ff
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECes9UzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDVlMzk2NThhM2VmNmYxM2NhMjFjYzExYTRlMzNlYmNkOTQ2NzAyMB4XDTIyMDEw
MTEzMDM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjQxNzU5YWE2MmYw
MjgyYzI4ZTI3YzhlNzU5NjhiOWMxYzZiMDgyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM2qH/CFK/8h/anjfES/iVLh9g5jkEhzzUvG9RyJsiepi64L
iEdvD+4fRX4Cb5d+90p9DlXgKgsa7NIxQBXpjt9KVy2JwWPSCXH3l/oolSW4Ppyc
lR9e95ENSZMp7ZUgUV5160P/oVuqGpA8b2Tv6wKhMT/bbP9hjKELnwn8jJ5hijJa
MnaQopMUIYTNSp7qmDSj3w7aU1bpOkN2U9V+2SIVnqOSkWKJQBgMCriS9E9bY7iG
3kfyHxL21iTwc19YTrUvE+BpxeThl4zVmPKGm9XkkaVLLbJOX0kmCgMY4hViNGXo
0amRTUR7vvMK/6D+VqhSxxosFamZ9GmbB1nsfPsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRkF1mqYvAoLCjifI51loucHGsILzAfBgNVHSMEGDAWgBTNXjllij728Tyi
HMEaTjPrzZRnAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pWNDVaWW8tOXZFOG9oekJHazR6NjgyVVp3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8x
L1pCZFpxbUx3S0N3bzRueU9kWmFMbkJ4ckNDOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
ZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8xL3pWNDVaWW8tOXZF
OG9oekJHazR6NjgyVVp3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVWFxjANBgkqhkiG9w0BAQsFAAOC
AQEAeHaiIylwkOcm6Uy+RWVaLBuZYYv1K+oMpKPeKvvwY06GeKxzQsGLCON2qOd0
68yHQutC+vrKwsyM/pPZNfubjTH65RfqAWQs7f+iyGh/5DhrFCx+YypTk/XkE3Jp
MdfyM1aiW1e6bx/g8HXE70VlVXCSolHO2qDcrlh6b4S5elADIwijuI96hogo559J
RsJsYqBl0aAWaavIm2fPJ08U41ADe7hpvaoBMWZG70je8AwWj724F/Yh9a5wve/H
RPNlZMw5q4XzLummLKgTuNjmnpBaUBhmL/F7OYMfMMhtx8gUvt8sdoUz5Y4zssg2
gPUJSmA1WTQg198VEJiWgvzX/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org