Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/ZHe0kYF2uMH31lT3Z-w0p7qfTJY.roa
File: ZHe0kYF2uMH31lT3Z-w0p7qfTJY.roa (raw, json)
Hash identifier: qW05zB15AkYxHZyT5b+pmx6DVtVI/d1v02Ohq2Z67XQ=
Subject key identifier: 64:77:B4:91:81:76:B8:C1:F7:D6:54:F7:67:EC:34:A7:BA:9F:4C:96
Certificate issuer: /CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Certificate serial: 0182011BB7BD252B53D189234F628EB015C5
Authority key identifier: C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/ZHe0kYF2uMH31lT3Z-w0p7qfTJY.roa
Signing time: Fri 15 Jul 2022 09:06:09 +0000
ROA not before: Fri 15 Jul 2022 09:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 167.94.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:1b:b7:bd:25:2b:53:d1:89:23:4f:62:8e:b0:15:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Validity
Not Before: Jul 15 09:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6477b4918176b8c1f7d654f767ec34a7ba9f4c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:1a:2c:49:bb:28:c7:e7:29:26:73:ff:d3:
9a:25:38:5e:27:6a:27:dc:1b:9e:69:72:fa:0e:3e:
fe:be:6a:36:08:9c:fc:52:eb:9c:f0:97:9f:c0:7c:
37:42:38:4b:ff:ae:dd:32:db:92:9f:2c:17:30:00:
78:91:eb:b0:91:12:ba:28:5e:2d:21:96:b5:73:b2:
34:78:15:96:f5:2f:e2:44:cf:28:43:3a:ca:ce:72:
18:af:86:41:c9:19:7c:d9:b1:11:58:be:a2:85:64:
a1:33:dd:a5:15:89:65:77:4e:ac:da:7f:68:f8:df:
e3:29:ff:5f:b5:3c:4d:2b:b7:51:fa:0c:02:2c:47:
a7:cc:39:1c:7f:a4:6b:ea:f7:98:dd:86:3e:4f:ab:
35:43:64:35:60:ba:29:42:88:b5:7b:eb:85:31:c6:
41:28:46:98:6d:55:67:6b:22:a0:e2:4c:7a:ba:53:
f6:10:c4:58:27:c4:b7:4c:3f:d6:f9:b6:f7:31:df:
57:3e:1f:12:f7:50:26:b2:32:f9:1a:3a:e8:b2:97:
5a:f0:03:31:21:22:07:62:67:3f:f6:5c:3d:9e:4a:
38:19:60:f7:3d:a8:bc:ef:0c:9c:26:eb:fa:fd:3b:
0b:6c:6a:e8:1e:20:6e:c3:c0:a9:51:fb:50:00:f8:
5b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:77:B4:91:81:76:B8:C1:F7:D6:54:F7:67:EC:34:A7:BA:9F:4C:96
X509v3 Authority Key Identifier:
keyid:C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/ZHe0kYF2uMH31lT3Z-w0p7qfTJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.94.24.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:22:0f:26:1e:3b:4a:4e:19:c8:18:82:e6:3a:41:40:35:b9:
0f:a4:f3:4c:97:38:35:63:ac:9c:ed:29:2c:c1:32:92:8c:a9:
93:47:6b:dc:4a:44:9d:e3:c6:a5:4c:07:1e:f7:cd:5e:1e:bc:
bf:9e:e4:00:14:2d:7c:73:9a:8b:71:41:26:aa:c8:28:90:21:
59:b1:59:d6:ad:5e:39:7c:10:db:9f:cb:aa:ae:b1:6c:a7:d4:
d7:cd:1d:05:97:bb:6f:7b:4d:a8:ae:72:11:74:83:c1:0e:e6:
db:3a:a0:67:5a:10:1a:9e:b9:9a:e2:82:72:6c:2e:cf:b3:c6:
75:7d:74:62:ef:63:0d:5e:ee:e3:48:94:c5:50:4e:d9:4e:c5:
f7:fe:5f:1b:7f:c6:36:fe:c1:b9:89:37:ea:7a:8f:59:b3:f0:
6b:69:db:3f:bc:ba:82:78:7d:c4:32:dd:81:5a:97:30:31:74:
49:12:f6:a9:d0:14:3f:30:cf:4e:96:f7:42:dc:17:55:8d:43:
e5:61:60:7c:b4:02:e4:f7:8d:f0:b7:af:94:64:fa:32:c7:06:
8f:c1:97:cd:3b:34:68:49:69:87:fb:d4:23:c5:f0:ec:5a:cb:
48:f2:59:cd:70:41:5b:64:b0:25:c4:24:e7:92:6a:54:e7:e8:
44:90:d6:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIBG7e9JStT0YkjT2KOsBXFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1MGUwODAxODIzZjE5ZDUxYjk2MmFiNmQ0ZWJiYmMyN2Rk
NGVkOTYwHhcNMjIwNzE1MDkwNjA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDc3YjQ5MTgxNzZiOGMxZjdkNjU0Zjc2N2VjMzRhN2JhOWY0Yzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPoaLEm7KMfnKSZz/9OaJTheJ2on
3BueaXL6Dj7+vmo2CJz8Uuuc8JefwHw3QjhL/67dMtuSnywXMAB4keuwkRK6KF4t
IZa1c7I0eBWW9S/iRM8oQzrKznIYr4ZByRl82bERWL6ihWShM92lFYlld06s2n9o
+N/jKf9ftTxNK7dR+gwCLEenzDkcf6Rr6veY3YY+T6s1Q2Q1YLopQoi1e+uFMcZB
KEaYbVVnayKg4kx6ulP2EMRYJ8S3TD/W+bb3Md9XPh8S91AmsjL5Gjrospda8AMx
ISIHYmc/9lw9nko4GWD3Pai87wycJuv6/TsLbGroHiBuw8CpUftQAPhblQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGR3tJGBdrjB99ZU92fsNKe6n0yWMB8GA1UdIwQY
MBaAFMUOCAGCPxnVG5YqttTru8J91O2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFE0SUFZSV9HZFVibGlxMjFPdTd3bjNVN1pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi80NzRmNjUtZmUyOS00ODIyLWJhMTQt
Y2U4MjE0Y2VmNmI1LzEvWkhlMGtZRjJ1TUgzMWxUM1otdzBwN3FmVEpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi80NzRmNjUtZmUyOS00ODIyLWJhMTQtY2U4MjE0Y2VmNmI1
LzEveFE0SUFZSV9HZFVibGlxMjFPdTd3bjNVN1pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAp14YMA0G
CSqGSIb3DQEBCwUAA4IBAQCyIg8mHjtKThnIGILmOkFANbkPpPNMlzg1Y6yc7Sks
wTKSjKmTR2vcSkSd48alTAce981eHry/nuQAFC18c5qLcUEmqsgokCFZsVnWrV45
fBDbn8uqrrFsp9TXzR0Fl7tve02ornIRdIPBDubbOqBnWhAanrma4oJybC7Ps8Z1
fXRi72MNXu7jSJTFUE7ZTsX3/l8bf8Y2/sG5iTfqeo9Zs/Brads/vLqCeH3EMt2B
WpcwMXRJEvap0BQ/MM9OlvdC3BdVjUPlYWB8tALk943wt6+UZPoyxwaPwZfNOzRo
SWmH+9QjxfDsWstI8lnNcEFbZLAlxCTnkmpU5+hEkNYI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:53 2024 by rpki-client on console-fra.rpki-client.org