Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/ZdmnHzttY1n0xS5Mmsjehjwi6TU.roa
File: ZdmnHzttY1n0xS5Mmsjehjwi6TU.roa (raw, json)
Hash identifier: V6F/gJc0e+bbiPYErpRk8fzMtTPp6DW1PkJH6k29c78=
Subject key identifier: 65:D9:A7:1F:3B:6D:63:59:F4:C5:2E:4C:9A:C8:DE:86:3C:22:E9:35
Certificate issuer: /CN=4516e53b32caa761906f0fcdea275b720e1742c8
Certificate serial: 0A70759C
Authority key identifier: 45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/ZdmnHzttY1n0xS5Mmsjehjwi6TU.roa
Signing time: Sat 01 Jan 2022 05:57:18 +0000
ROA not before: Sat 01 Jan 2022 05:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 193.177.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175142300 (0xa70759c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4516e53b32caa761906f0fcdea275b720e1742c8
Validity
Not Before: Jan 1 05:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65d9a71f3b6d6359f4c52e4c9ac8de863c22e935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:99:d9:f2:3a:b4:19:46:ce:53:fa:20:9f:f9:
0b:01:94:9e:de:b5:17:5e:1a:bf:fa:52:98:90:00:
e4:7f:4c:d0:7d:80:90:7a:54:9b:d0:f6:2e:17:8d:
1a:47:06:ec:67:12:5b:f6:59:db:0b:48:01:7c:c9:
eb:e0:62:0b:9d:8d:dc:4c:b0:ed:6f:0f:42:2b:c1:
d7:f3:48:85:a9:2f:78:45:df:51:3f:51:10:ea:56:
1a:09:c8:3b:8f:f8:37:51:b4:ff:c2:b5:74:be:7d:
3f:cd:ff:75:c7:02:f5:76:83:12:5f:21:ee:5a:7c:
88:2e:e8:9e:cb:70:22:8c:70:98:0c:4f:b6:41:88:
97:9f:f8:4f:5f:a3:8d:a9:4c:38:1b:9d:bb:fb:6b:
3e:46:13:24:39:e8:86:e5:20:d1:40:34:22:ab:eb:
f3:a2:ac:55:01:7b:43:37:e7:df:91:80:2f:45:42:
8b:3d:a8:c3:0c:cb:62:a6:38:b9:ae:13:a3:6f:2d:
8e:bf:4c:fe:a3:92:c4:4d:61:2e:73:92:e2:20:37:
91:fe:69:c3:5d:cc:5c:56:f1:74:e5:09:ec:c9:16:
c8:70:69:8d:94:87:01:46:3e:9a:30:26:d9:2b:c7:
d2:64:93:08:06:b9:7f:8c:70:9b:f2:d8:36:5d:77:
ea:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D9:A7:1F:3B:6D:63:59:F4:C5:2E:4C:9A:C8:DE:86:3C:22:E9:35
X509v3 Authority Key Identifier:
keyid:45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/ZdmnHzttY1n0xS5Mmsjehjwi6TU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/RRblOzLKp2GQbw_N6idbcg4XQsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.176.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:5b:26:9f:05:19:ba:62:77:56:2f:a1:1b:07:e6:b9:61:9c:
12:3a:d9:2c:ce:ea:5f:a6:87:1a:23:35:5b:8b:08:d7:c9:71:
fa:13:9f:88:06:64:72:ba:42:4e:4c:39:09:d3:0a:b4:49:03:
c0:53:84:80:5e:10:f1:06:2c:07:88:b5:7a:9c:a1:bc:79:1b:
20:15:48:34:89:9f:d7:b1:c6:4f:44:e9:79:c0:c6:50:83:41:
64:bf:c4:36:f5:00:a4:e6:1f:0a:e8:04:1e:ca:38:7e:95:61:
e1:c3:e9:77:a0:b2:62:de:e6:b8:62:0c:7e:06:8d:fd:fc:eb:
4c:f6:59:3a:7f:09:ce:03:95:67:ed:41:fd:d4:65:31:7f:95:
41:58:9f:0d:9b:9a:ba:9a:15:2f:8f:9b:f6:88:1c:58:0c:a0:
a5:79:fd:4f:6f:3c:2a:65:7b:b5:1b:02:20:d0:8f:45:d6:3b:
c4:53:44:73:22:1c:cd:6a:41:fc:f8:83:a7:dc:37:20:8c:de:
97:cc:ea:3c:8a:5e:5c:99:50:43:7c:4c:c8:f7:0f:1e:ac:50:
43:dc:6a:f2:0f:fb:8c:c9:3e:69:60:26:92:bb:f1:79:f8:67:
39:80:b0:85:5f:ac:a0:40:d0:99:8e:55:c3:a1:5f:24:9f:78:
78:1b:6f:32
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECnB1nDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NTE2ZTUzYjMyY2FhNzYxOTA2ZjBmY2RlYTI3NWI3MjBlMTc0MmM4MB4XDTIyMDEw
MTA1NTcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjVkOWE3MWYzYjZk
NjM1OWY0YzUyZTRjOWFjOGRlODYzYzIyZTkzNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWZ2fI6tBlGzlP6IJ/5CwGUnt61F14av/pSmJAA5H9M0H2A
kHpUm9D2LheNGkcG7GcSW/ZZ2wtIAXzJ6+BiC52N3Eyw7W8PQivB1/NIhakveEXf
UT9REOpWGgnIO4/4N1G0/8K1dL59P83/dccC9XaDEl8h7lp8iC7onstwIoxwmAxP
tkGIl5/4T1+jjalMOBudu/trPkYTJDnohuUg0UA0Iqvr86KsVQF7Qzfn35GAL0VC
iz2owwzLYqY4ua4To28tjr9M/qOSxE1hLnOS4iA3kf5pw13MXFbxdOUJ7MkWyHBp
jZSHAUY+mjAm2SvH0mSTCAa5f4xwm/LYNl136g8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRl2acfO21jWfTFLkyayN6GPCLpNTAfBgNVHSMEGDAWgBRFFuU7MsqnYZBv
D83qJ1tyDhdCyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JSYmxPekxLcDJHUWJ3X042aWRiY2c0WFFzZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvYmY0MjZhLTNhOGYtNDI1Mi1hMTdmLWJhMDJjOTYwYjhmNC8x
L1pkbW5IenR0WTFuMHhTNU1tc2plaGp3aTZUVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
YmY0MjZhLTNhOGYtNDI1Mi1hMTdmLWJhMDJjOTYwYjhmNC8xL1JSYmxPekxLcDJH
UWJ3X042aWRiY2c0WFFzZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsGxsDANBgkqhkiG9w0BAQsFAAOC
AQEAfFsmnwUZumJ3Vi+hGwfmuWGcEjrZLM7qX6aHGiM1W4sI18lx+hOfiAZkcrpC
Tkw5CdMKtEkDwFOEgF4Q8QYsB4i1epyhvHkbIBVINImf17HGT0TpecDGUINBZL/E
NvUApOYfCugEHso4fpVh4cPpd6CyYt7muGIMfgaN/fzrTPZZOn8JzgOVZ+1B/dRl
MX+VQVifDZuaupoVL4+b9ogcWAygpXn9T288KmV7tRsCINCPRdY7xFNEcyIczWpB
/PiDp9w3IIzel8zqPIpeXJlQQ3xMyPcPHqxQQ9xq8g/7jMk+aWAmkrvxefhnOYCw
hV+soEDQmY5Vw6FfJJ94eBtvMg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net