Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/Z31aKpQ5yKZRMqxwRmvPZ4FBRW4.roa
File: Z31aKpQ5yKZRMqxwRmvPZ4FBRW4.roa (raw, json)
Hash identifier: afYrPjcqf/L1rqBBH6Vazh0536+N4DaHDlA6ydAD4v8=
Subject key identifier: 67:7D:5A:2A:94:39:C8:A6:51:32:AC:70:46:6B:CF:67:81:41:45:6E
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 0A931206
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/Z31aKpQ5yKZRMqxwRmvPZ4FBRW4.roa
Signing time: Sat 01 Jan 2022 16:05:33 +0000
ROA not before: Sat 01 Jan 2022 16:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210539
IP address blocks: 185.196.222.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177410566 (0xa931206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 1 16:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=677d5a2a9439c8a65132ac70466bcf678141456e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:19:78:02:76:87:35:66:f3:71:a3:3f:e7:70:
bd:c7:5d:59:98:7d:54:37:2b:f5:d8:15:35:a9:88:
6b:ed:de:6a:11:c7:58:2d:94:e3:7e:db:f0:53:e4:
94:c1:03:22:23:e1:58:00:1e:35:43:7f:ab:91:52:
89:c6:92:7e:5f:13:a0:cf:53:8c:08:e4:c9:e0:02:
02:f3:46:8b:1b:32:4c:89:15:4f:e4:91:56:68:cd:
81:7f:80:16:ea:bd:29:5f:87:5b:cc:4b:41:a9:72:
a9:18:c9:b6:51:ad:1c:45:7b:5a:71:ba:54:10:ae:
9c:a4:04:08:13:a0:33:e5:1a:76:88:0a:63:01:c9:
e0:5d:65:0c:1e:0d:a2:35:5f:93:6d:8d:38:4f:03:
01:82:a7:d3:1b:96:b6:7f:f6:67:ed:8b:2e:b3:d7:
bc:e0:02:e8:46:bf:53:15:38:23:40:fc:67:ae:d1:
fe:3f:fd:63:b1:de:22:ce:bd:61:90:91:fb:f9:96:
ff:3b:42:9a:7b:12:e9:fe:28:76:1f:4a:fb:2e:f0:
2e:29:b0:0e:b1:3e:b5:1d:5c:85:51:a9:14:da:2a:
23:07:8f:4f:69:b8:16:ee:fe:3e:ad:12:c8:02:60:
e2:14:13:82:6d:4d:e0:c8:8e:db:9b:b4:cc:13:72:
23:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7D:5A:2A:94:39:C8:A6:51:32:AC:70:46:6B:CF:67:81:41:45:6E
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/Z31aKpQ5yKZRMqxwRmvPZ4FBRW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.222.0/23
Signature Algorithm: sha256WithRSAEncryption
10:74:26:75:c9:ee:d8:e0:97:90:bf:56:bd:b8:ac:99:d3:e9:
12:73:14:15:3b:df:55:f3:b2:5c:2b:84:3f:71:34:e4:11:45:
bf:a7:52:43:2b:00:b1:ef:d2:de:14:5f:06:38:eb:76:bb:f6:
a2:92:6b:fb:0e:04:cf:0c:ad:a1:19:ee:1a:39:a6:c0:5f:5a:
53:8a:fc:1c:94:e3:f3:49:77:2e:8c:2a:d0:c2:89:76:5d:6b:
e1:6f:b8:f8:31:78:2e:61:e3:28:fc:87:1f:47:e5:63:09:bd:
e1:6d:db:28:80:c3:85:ba:7c:18:05:3a:79:84:cc:5c:cc:56:
3d:b3:38:4f:ab:92:fe:d6:9f:1a:b1:ab:be:75:86:8a:bf:30:
de:c9:d5:20:64:c0:d7:77:0c:9b:4f:4b:89:68:26:d2:d9:66:
43:a4:aa:7e:24:77:7d:9a:04:70:c6:8a:2b:15:4e:e0:c3:d5:
65:de:74:0c:b2:fd:84:41:32:6b:ef:c2:de:37:14:70:1c:2c:
ef:f2:67:4a:f2:c7:4b:37:c4:ca:48:ee:86:2f:22:b3:b5:d1:
41:b9:d0:0e:c6:5b:c9:1f:2f:da:c0:8b:e9:2b:a6:22:28:d6:
a2:89:ae:a0:99:a3:00:88:ee:15:62:78:9a:34:ef:7a:ec:48:
99:8c:a9:d7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECpMSBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OWNlNTY5YTE0YzJkYjM3NzJmMjMxODdjZTY4ZTY1NDFlYzAwNDhlMB4XDTIyMDEw
MTE2MDUzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc3ZDVhMmE5NDM5
YzhhNjUxMzJhYzcwNDY2YmNmNjc4MTQxNDU2ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQZeAJ2hzVm83GjP+dwvcddWZh9VDcr9dgVNamIa+3eahHH
WC2U437b8FPklMEDIiPhWAAeNUN/q5FSicaSfl8ToM9TjAjkyeACAvNGixsyTIkV
T+SRVmjNgX+AFuq9KV+HW8xLQalyqRjJtlGtHEV7WnG6VBCunKQECBOgM+UadogK
YwHJ4F1lDB4NojVfk22NOE8DAYKn0xuWtn/2Z+2LLrPXvOAC6Ea/UxU4I0D8Z67R
/j/9Y7HeIs69YZCR+/mW/ztCmnsS6f4odh9K+y7wLimwDrE+tR1chVGpFNoqIweP
T2m4Fu7+Pq0SyAJg4hQTgm1N4MiO25u0zBNyI8kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnfVoqlDnIplEyrHBGa89ngUFFbjAfBgNVHSMEGDAWgBSZzlaaFMLbN3Ly
MYfOaOZUHsAEjjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21jNVdtaFRDMnpkeThqR0h6bWptVkI3QUJJNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvY2M2ZTk5LTZlNWYtNDAxYi05MTJkLTEwOTU1NDRjNmM1MC8x
L1ozMWFLcFE1eUtaUk1xeHdSbXZQWjRGQlJXNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
Y2M2ZTk5LTZlNWYtNDAxYi05MTJkLTEwOTU1NDRjNmM1MC8xL21jNVdtaFRDMnpk
eThqR0h6bWptVkI3QUJJNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnE3jANBgkqhkiG9w0BAQsFAAOC
AQEAEHQmdcnu2OCXkL9WvbismdPpEnMUFTvfVfOyXCuEP3E05BFFv6dSQysAse/S
3hRfBjjrdrv2opJr+w4EzwytoRnuGjmmwF9aU4r8HJTj80l3Lowq0MKJdl1r4W+4
+DF4LmHjKPyHH0flYwm94W3bKIDDhbp8GAU6eYTMXMxWPbM4T6uS/tafGrGrvnWG
ir8w3snVIGTA13cMm09LiWgm0tlmQ6SqfiR3fZoEcMaKKxVO4MPVZd50DLL9hEEy
a+/C3jcUcBws7/JnSvLHSzfEykjuhi8is7XRQbnQDsZbyR8v2sCL6SumIijWoomu
oJmjAIjuFWJ4mjTveuxImYyp1w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-fra.rpki-client.org