Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ZaaE8v3pQUhX8CN-UHavFNib2O4.roa
File: ZaaE8v3pQUhX8CN-UHavFNib2O4.roa (raw, json)
Hash identifier: mRCvS0nd/SJulaDaIUqSinqYuaBMRkee7FtWZ+SRPjs=
Subject key identifier: 65:A6:84:F2:FD:E9:41:48:57:F0:23:7E:50:76:AF:14:D8:9B:D8:EE
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 027BCD84
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ZaaE8v3pQUhX8CN-UHavFNib2O4.roa
Signing time: Sat 01 Jan 2022 01:53:57 +0000
ROA not before: Sat 01 Jan 2022 01:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14297
IP address blocks: 185.147.172.0/23 maxlen: 23
185.147.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41667972 (0x27bcd84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Jan 1 01:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a684f2fde9414857f0237e5076af14d89bd8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:9d:b6:4e:5a:40:cc:f8:79:ac:5d:ba:00:
f8:47:99:0a:72:6e:34:dd:f3:a3:e0:56:54:50:ff:
c8:3d:80:dd:04:bb:11:cf:47:ce:e9:f3:9d:01:13:
1b:76:1d:9d:dd:c5:f5:42:75:8a:b4:04:12:5c:89:
6f:2f:99:c4:46:e7:b3:fe:67:9a:9d:61:e1:8d:e8:
0d:11:78:c4:a9:4c:7d:df:26:f4:7e:5e:fd:99:96:
67:b6:92:17:1a:f0:2f:c8:59:c1:cd:03:9e:04:38:
ea:41:56:d2:41:a7:1a:8c:7e:2b:ae:b0:92:60:da:
91:c9:4b:8c:5b:56:33:c0:c1:69:1c:34:a9:53:b6:
83:76:f5:7e:3d:ca:0a:a3:ca:7c:83:e6:69:ae:f1:
6e:9a:d3:e2:36:5b:e7:85:06:fa:bc:8d:4e:b7:9a:
98:37:85:c2:4b:35:51:ac:90:00:e0:85:94:3e:45:
1a:ad:e9:b2:c1:74:d5:c6:d6:6f:fe:72:96:83:e8:
5f:e3:1b:88:28:c1:21:d8:f4:a9:c4:26:c9:45:5f:
c8:47:9c:c5:e3:d1:94:0b:bd:79:0b:c0:d6:cc:6b:
dc:38:4e:e9:12:1d:42:af:9d:bb:3e:79:4b:a7:33:
82:12:b9:77:86:0c:d6:dd:15:0e:27:b0:eb:b6:d8:
89:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A6:84:F2:FD:E9:41:48:57:F0:23:7E:50:76:AF:14:D8:9B:D8:EE
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ZaaE8v3pQUhX8CN-UHavFNib2O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.172.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:3a:bc:0b:d5:08:a8:ee:c8:bc:51:9c:87:70:c8:51:ad:dd:
ce:51:23:6c:11:38:cf:dc:2a:07:4d:80:dc:2b:24:81:89:71:
5a:90:30:c9:6a:c7:90:5d:f3:e3:62:e4:7c:ca:bf:f6:54:f2:
9a:8d:8b:47:92:e3:4d:69:9a:e0:89:d1:70:98:c8:11:ba:7e:
02:df:5b:19:3d:3d:f9:cc:3a:50:c2:25:f7:98:0d:e8:67:80:
86:19:b4:4e:a2:29:2b:b9:56:ae:aa:eb:2c:28:42:62:55:cd:
19:92:e7:20:ce:34:6d:15:70:d0:f1:2c:b9:ed:01:4a:9b:16:
3f:d4:dd:44:63:a9:91:ef:ec:e4:b0:04:4b:93:df:85:fb:32:
e9:5e:8b:da:85:1a:7f:8a:79:be:e8:fe:fc:50:1b:ee:6e:7b:
4f:84:2a:2e:01:4d:95:b0:ef:93:25:d9:5f:b7:1e:54:83:65:
fb:bc:00:cf:04:aa:f6:90:94:d9:2e:d1:f4:b4:bd:c3:29:68:
12:2b:de:74:d7:a7:72:47:99:44:7d:cd:cc:39:96:6f:50:3c:
96:7f:d7:e7:5c:85:79:e7:ac:e9:78:d3:db:61:cf:b4:ba:b3:
e8:83:9b:ae:da:21:1a:81:e5:65:61:a2:98:a7:5d:6b:3a:df:
cf:3d:60:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAnvNhDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZjJiNjhmMGM4M2FkZDlhM2EzYjg2YWIyNGZiOTEwYTk2MDI2MmM2MB4XDTIyMDEw
MTAxNTM1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjVhNjg0ZjJmZGU5
NDE0ODU3ZjAyMzdlNTA3NmFmMTRkODliZDhlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgjnbZOWkDM+HmsXboA+EeZCnJuNN3zo+BWVFD/yD2A3QS7
Ec9HzunznQETG3Ydnd3F9UJ1irQEElyJby+ZxEbns/5nmp1h4Y3oDRF4xKlMfd8m
9H5e/ZmWZ7aSFxrwL8hZwc0DngQ46kFW0kGnGox+K66wkmDakclLjFtWM8DBaRw0
qVO2g3b1fj3KCqPKfIPmaa7xbprT4jZb54UG+ryNTreamDeFwks1UayQAOCFlD5F
Gq3pssF01cbWb/5yloPoX+MbiCjBIdj0qcQmyUVfyEecxePRlAu9eQvA1sxr3DhO
6RIdQq+duz55S6czghK5d4YM1t0VDiew67bYiUECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRlpoTy/elBSFfwI35Qdq8U2JvY7jAfBgNVHSMEGDAWgBSvK2jwyDrdmjo7
hqsk+5EKlgJixjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3J5dG84TWc2M1pvNk80YXJKUHVSQ3BZQ1lzWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvNzkzZTAwLTBjNTMtNDljNC1hNTFiLWVkYTMxNmEyYWZiOC8x
L1phYUU4djNwUVVoWDhDTi1VSGF2Rk5pYjJPNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
NzkzZTAwLTBjNTMtNDljNC1hNTFiLWVkYTMxNmEyYWZiOC8xL3J5dG84TWc2M1pv
Nk80YXJKUHVSQ3BZQ1lzWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmTrDANBgkqhkiG9w0BAQsFAAOC
AQEAyDq8C9UIqO7IvFGch3DIUa3dzlEjbBE4z9wqB02A3CskgYlxWpAwyWrHkF3z
42LkfMq/9lTymo2LR5LjTWma4InRcJjIEbp+At9bGT09+cw6UMIl95gN6GeAhhm0
TqIpK7lWrqrrLChCYlXNGZLnIM40bRVw0PEsue0BSpsWP9TdRGOpke/s5LAES5Pf
hfsy6V6L2oUaf4p5vuj+/FAb7m57T4QqLgFNlbDvkyXZX7ceVINl+7wAzwSq9pCU
2S7R9LS9wyloEivedNenckeZRH3NzDmWb1A8ln/X51yFeees6XjT22HPtLqz6IOb
rtohGoHlZWGimKddazrfzz1gKw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org