Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/457968-feae-4554-abe2-f76e9ef52831/1/zEqY1wXMdhJQDR1dDdDJ9xScfdA.roa
File: zEqY1wXMdhJQDR1dDdDJ9xScfdA.roa (raw, json)
Hash identifier: ZpSb3MI5cnh5XWVIKm1wGmR0kN2iYL4lHsuACSi7feI=
Subject key identifier: CC:4A:98:D7:05:CC:76:12:50:0D:1D:5D:0D:D0:C9:F7:14:9C:7D:D0
Certificate issuer: /CN=34eee39ded03b2a6fd5e28c88ac7244ced4329d8
Certificate serial: 0A746C21
Authority key identifier: 34:EE:E3:9D:ED:03:B2:A6:FD:5E:28:C8:8A:C7:24:4C:ED:43:29:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NO7jne0Dsqb9XijIisckTO1DKdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/457968-feae-4554-abe2-f76e9ef52831/1/zEqY1wXMdhJQDR1dDdDJ9xScfdA.roa
Signing time: Sat 01 Jan 2022 01:53:26 +0000
ROA not before: Sat 01 Jan 2022 01:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 83.243.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175402017 (0xa746c21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34eee39ded03b2a6fd5e28c88ac7244ced4329d8
Validity
Not Before: Jan 1 01:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc4a98d705cc7612500d1d5d0dd0c9f7149c7dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fe:ec:9a:95:c3:1b:06:b8:64:87:32:80:87:
27:4f:63:ec:4a:e5:7e:2c:50:3c:e2:f3:c4:86:ed:
ff:cc:3a:68:10:c7:e9:63:66:c0:34:b6:9a:63:4f:
fc:46:2d:84:74:75:2f:c6:2f:dc:87:22:c0:01:3b:
d3:1d:7a:f4:9a:03:9c:44:bb:84:47:2b:0b:94:d7:
95:86:0a:c7:d0:c8:c4:0a:70:f4:d7:43:ce:7f:ca:
e2:6a:20:fa:c7:49:65:c7:4d:03:20:fa:f4:72:10:
d8:a7:4c:f6:c2:eb:1c:7c:95:1f:4b:63:a0:05:f8:
ee:bb:6e:15:de:18:7c:21:62:c3:5d:8d:ac:70:19:
26:1c:a9:1f:0c:d9:4e:fe:d0:3e:9b:23:71:3d:01:
7a:1e:7e:c1:ad:4f:7e:36:d4:29:33:8c:86:99:da:
d6:66:28:bd:bd:13:5c:08:3b:5e:f8:64:0c:1d:84:
17:86:d7:3a:e2:91:2a:e1:da:8b:32:f6:d9:c9:e0:
7b:eb:23:37:51:fc:3c:2d:d0:27:7f:81:10:2b:fa:
be:f5:32:fb:17:ee:22:d0:03:dd:f2:fb:a6:4c:f1:
c0:fe:52:0d:51:8b:41:66:36:b5:e9:a5:84:39:62:
5b:70:3f:17:26:09:55:3b:e4:91:ec:4c:eb:8b:ab:
e7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4A:98:D7:05:CC:76:12:50:0D:1D:5D:0D:D0:C9:F7:14:9C:7D:D0
X509v3 Authority Key Identifier:
keyid:34:EE:E3:9D:ED:03:B2:A6:FD:5E:28:C8:8A:C7:24:4C:ED:43:29:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NO7jne0Dsqb9XijIisckTO1DKdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/457968-feae-4554-abe2-f76e9ef52831/1/zEqY1wXMdhJQDR1dDdDJ9xScfdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/457968-feae-4554-abe2-f76e9ef52831/1/NO7jne0Dsqb9XijIisckTO1DKdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.243.124.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:13:ab:6e:3e:a9:42:07:c4:c2:3e:23:48:72:ab:bb:09:c9:
49:b8:23:42:a2:cc:65:32:a6:22:1c:d5:10:47:cc:a2:78:b9:
a8:38:9b:54:99:1c:42:b8:8c:f3:2d:f7:5b:0c:b4:b6:7e:0d:
7d:03:f9:ac:b6:f8:71:77:2e:f6:80:24:2c:ba:e1:b9:a1:68:
7c:96:c8:e2:f4:2f:c8:4c:c5:f0:17:dd:e1:bd:9f:c7:b8:8e:
1e:99:ba:86:42:d7:91:c9:21:30:4e:34:a1:16:68:e3:52:12:
e6:83:af:95:10:79:53:e8:14:6f:77:8b:1a:15:2c:e9:26:db:
2b:04:78:c0:86:b2:ee:00:a7:71:9d:01:0f:a2:d7:9d:a0:9a:
dc:9d:bf:60:a3:81:80:c0:a6:06:93:6d:97:a0:91:1b:82:af:
6a:70:ea:94:b1:8d:86:e1:65:31:54:13:dd:03:57:41:f9:ec:
53:d5:c3:24:d3:47:3a:08:66:a9:3b:ba:4d:f3:27:4d:8b:cc:
5f:40:d5:02:5a:56:22:49:b2:d7:92:bb:93:ab:5d:ff:1d:53:
f5:48:fe:c4:c3:60:00:ee:c6:bf:6e:05:4f:b1:2d:89:42:aa:
56:ef:7c:d2:28:4a:48:e8:48:e5:d0:ed:eb:00:1d:b5:45:45:
5d:fe:a6:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECnRsITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NGVlZTM5ZGVkMDNiMmE2ZmQ1ZTI4Yzg4YWM3MjQ0Y2VkNDMyOWQ4MB4XDTIyMDEw
MTAxNTMyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2M0YTk4ZDcwNWNj
NzYxMjUwMGQxZDVkMGRkMGM5ZjcxNDljN2RkMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKX+7JqVwxsGuGSHMoCHJ09j7ErlfixQPOLzxIbt/8w6aBDH
6WNmwDS2mmNP/EYthHR1L8Yv3IciwAE70x169JoDnES7hEcrC5TXlYYKx9DIxApw
9NdDzn/K4mog+sdJZcdNAyD69HIQ2KdM9sLrHHyVH0tjoAX47rtuFd4YfCFiw12N
rHAZJhypHwzZTv7QPpsjcT0Beh5+wa1PfjbUKTOMhpna1mYovb0TXAg7XvhkDB2E
F4bXOuKRKuHaizL22cnge+sjN1H8PC3QJ3+BECv6vvUy+xfuItAD3fL7pkzxwP5S
DVGLQWY2temlhDliW3A/FyYJVTvkkexM64ur53kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTMSpjXBcx2ElANHV0N0Mn3FJx90DAfBgNVHSMEGDAWgBQ07uOd7QOypv1e
KMiKxyRM7UMp2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05PN2puZTBEc3FiOVhpaklpc2NrVE8xREtkZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvNDU3OTY4LWZlYWUtNDU1NC1hYmUyLWY3NmU5ZWY1MjgzMS8x
L3pFcVkxd1hNZGhKUURSMWREZERKOXhTY2ZkQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
NDU3OTY4LWZlYWUtNDU1NC1hYmUyLWY3NmU5ZWY1MjgzMS8xL05PN2puZTBEc3Fi
OVhpaklpc2NrVE8xREtkZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlPzfDANBgkqhkiG9w0BAQsFAAOC
AQEAexOrbj6pQgfEwj4jSHKruwnJSbgjQqLMZTKmIhzVEEfMoni5qDibVJkcQriM
8y33Wwy0tn4NfQP5rLb4cXcu9oAkLLrhuaFofJbI4vQvyEzF8Bfd4b2fx7iOHpm6
hkLXkckhME40oRZo41IS5oOvlRB5U+gUb3eLGhUs6SbbKwR4wIay7gCncZ0BD6LX
naCa3J2/YKOBgMCmBpNtl6CRG4KvanDqlLGNhuFlMVQT3QNXQfnsU9XDJNNHOghm
qTu6TfMnTYvMX0DVAlpWIkmy15K7k6td/x1T9Uj+xMNgAO7Gv24FT7EtiUKqVu98
0ihKSOhI5dDt6wAdtUVFXf6mtg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org