Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/CaZo2veb9RpMuad1Hm3CUyS1Y5g.roa
File: CaZo2veb9RpMuad1Hm3CUyS1Y5g.roa (raw, json)
Hash identifier: HtC3qqawssPdSmhHQwfyQd+Snm6/D5zRxF2OoTOuC7Q=
Subject key identifier: 09:A6:68:DA:F7:9B:F5:1A:4C:B9:A7:75:1E:6D:C2:53:24:B5:63:98
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36B10068
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/CaZo2veb9RpMuad1Hm3CUyS1Y5g.roa
Signing time: Mon 23 May 2022 07:50:50 +0000
ROA not before: Mon 23 May 2022 07:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211699
IP address blocks: 82.159.144.0/24 maxlen: 24
62.82.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917569640 (0x36b10068)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 23 07:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09a668daf79bf51a4cb9a7751e6dc25324b56398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e1:7b:25:37:e1:6b:1a:95:dc:a3:5a:dc:74:
59:65:4d:94:ee:ce:ca:cc:5e:f6:3a:2f:cd:00:a0:
cb:c8:ec:da:41:a5:47:b8:e5:12:46:94:e2:6a:3a:
29:b6:ff:63:e3:fc:4a:63:b3:fb:d4:85:e1:5d:0e:
1e:6c:ce:26:a9:b0:d2:0c:07:22:c1:ed:75:1b:ac:
ce:7d:1d:6a:7b:ca:d0:f1:98:e9:d9:48:78:8f:7d:
44:d5:f0:5d:a6:e9:ca:f6:a4:4d:84:b2:58:34:61:
aa:ce:d9:08:94:32:a8:6f:38:61:3a:b3:3f:54:17:
af:2e:97:31:4e:a8:28:73:e6:2f:64:5a:62:1e:f8:
72:f1:6b:3f:01:a5:ec:9b:94:be:55:6a:c6:5b:a0:
77:03:3b:66:be:d0:bc:a6:bd:56:bd:31:69:45:cf:
5d:39:15:c1:b3:e8:db:6f:36:d5:1b:1d:ac:ae:ca:
5c:cc:7f:bb:fa:38:60:3c:c5:4c:00:bf:5d:83:ea:
29:ca:fb:35:11:44:9a:39:24:23:18:b0:ed:cb:60:
5c:70:bb:79:77:c6:f5:99:15:00:1f:76:2d:d9:9a:
bf:67:74:a3:77:96:3d:7b:59:91:aa:8f:38:c0:73:
b1:ef:82:eb:42:33:ad:35:05:cb:dd:f5:e9:52:b0:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A6:68:DA:F7:9B:F5:1A:4C:B9:A7:75:1E:6D:C2:53:24:B5:63:98
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/CaZo2veb9RpMuad1Hm3CUyS1Y5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.82.151.0/24
82.159.144.0/24
Signature Algorithm: sha256WithRSAEncryption
58:a5:ca:64:16:a4:a9:e0:17:54:b3:54:66:fb:12:37:20:d3:
72:41:54:9e:b6:0e:e5:81:52:31:74:10:c7:28:ea:82:f3:13:
72:66:b6:7e:58:a3:11:87:de:f7:20:2d:23:f7:57:cc:cb:e7:
e3:ae:ea:fd:ba:2a:fd:11:d8:93:0d:08:46:3e:2b:f1:d8:48:
4b:97:91:42:1d:17:60:ef:b9:ee:3b:53:3a:05:02:5d:31:38:
98:dd:13:eb:90:80:8a:79:cc:bb:79:85:d1:4e:23:da:a9:ac:
12:d6:ae:f5:ec:25:d0:f5:fd:51:f3:54:16:2c:79:6f:41:1e:
66:fc:25:ad:df:20:2b:b2:46:1e:52:f5:a9:0d:71:b3:a7:0c:
6f:63:11:46:7e:31:a0:e6:8f:ca:df:21:ec:0e:59:41:c6:42:
58:30:bc:ca:21:1d:88:1b:ab:8d:c5:3e:60:ce:05:7a:ad:ff:
76:63:cf:23:59:d3:23:4f:c1:7d:22:55:48:14:08:65:71:db:
45:5a:26:cd:96:0c:8a:5e:63:54:71:38:86:d1:d3:3b:11:6f:
d0:46:03:f6:0a:0a:de:1d:48:54:c8:3f:de:80:eb:9e:1e:41:
5f:e9:b8:ae:a9:f8:10:2a:bc:9b:08:93:2e:81:0c:8d:be:b7:
30:ea:d8:56
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENrEAaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDM0ZjE2ODYxMDI4NzZjNjIxNmJjZWEyOGE1ZTUwMmVjMGQ3YjZiMB4XDTIyMDUy
MzA3NTA1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDlhNjY4ZGFmNzli
ZjUxYTRjYjlhNzc1MWU2ZGMyNTMyNGI1NjM5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMjheyU34WsaldyjWtx0WWVNlO7Oysxe9jovzQCgy8js2kGl
R7jlEkaU4mo6Kbb/Y+P8SmOz+9SF4V0OHmzOJqmw0gwHIsHtdRuszn0danvK0PGY
6dlIeI99RNXwXabpyvakTYSyWDRhqs7ZCJQyqG84YTqzP1QXry6XMU6oKHPmL2Ra
Yh74cvFrPwGl7JuUvlVqxlugdwM7Zr7QvKa9Vr0xaUXPXTkVwbPo22821RsdrK7K
XMx/u/o4YDzFTAC/XYPqKcr7NRFEmjkkIxiw7ctgXHC7eXfG9ZkVAB92Ldmav2d0
o3eWPXtZkaqPOMBzse+C60IzrTUFy9316VKwN9kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQJpmja95v1Gky5p3UebcJTJLVjmDAfBgNVHSMEGDAWgBTUNPFoYQKHbGIW
vOoopeUC7A17azAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFEVHhhR0VDaDJ4aUZyenFLS1hsQXV3TmUycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvNzI2YmI0LTVkODctNDAyZC05MWNlLTU3MTJkOTVhZTYzOC8x
L0NhWm8ydmViOVJwTXVhZDFIbTNDVXlTMVk1Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
NzI2YmI0LTVkODctNDAyZC05MWNlLTU3MTJkOTVhZTYzOC8xLzFEVHhhR0VDaDJ4
aUZyenFLS1hsQXV3TmUycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAD5SlwMEAFKfkDANBgkqhkiG9w0B
AQsFAAOCAQEAWKXKZBakqeAXVLNUZvsSNyDTckFUnrYO5YFSMXQQxyjqgvMTcma2
flijEYfe9yAtI/dXzMvn467q/boq/RHYkw0IRj4r8dhIS5eRQh0XYO+57jtTOgUC
XTE4mN0T65CAinnMu3mF0U4j2qmsEtau9ewl0PX9UfNUFix5b0EeZvwlrd8gK7JG
HlL1qQ1xs6cMb2MRRn4xoOaPyt8h7A5ZQcZCWDC8yiEdiBurjcU+YM4Feq3/dmPP
I1nTI0/BfSJVSBQIZXHbRVomzZYMil5jVHE4htHTOxFv0EYD9goK3h1IVMg/3oDr
nh5BX+m4rqn4ECq8mwiTLoEMjb63MOrYVg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:57 2023 by rpki-client on console-fra.rpki-client.org