Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OaaGr7Ra22tk8z60BEdp-duzXbU.roa
File: OaaGr7Ra22tk8z60BEdp-duzXbU.roa (raw, json)
Hash identifier: lFFIZhQlGlqP2NeH/08J5hnM5b2nDNnmoFQM6SpCWf4=
Subject key identifier: 39:A6:86:AF:B4:5A:DB:6B:64:F3:3E:B4:04:47:69:F9:DB:B3:5D:B5
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 35E31D94
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OaaGr7Ra22tk8z60BEdp-duzXbU.roa
Signing time: Sat 01 Jan 2022 12:57:08 +0000
ROA not before: Sat 01 Jan 2022 12:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207778
IP address blocks: 188.209.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904076692 (0x35e31d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Jan 1 12:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39a686afb45adb6b64f33eb4044769f9dbb35db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:33:a6:ef:d4:96:1a:78:81:87:27:ee:23:de:
1c:cd:b2:88:74:da:b4:2e:02:be:83:a8:62:2c:19:
c8:99:9c:27:08:f6:06:a9:be:6e:d5:40:c5:77:fc:
77:0e:71:0e:21:4f:19:32:e7:27:72:5d:c0:70:9f:
ed:ed:05:05:e1:cb:02:ce:43:bd:32:61:3b:03:f1:
20:a4:a6:85:fc:ba:8a:17:ab:ad:32:53:91:43:99:
8f:e8:09:b0:e6:09:55:0c:11:11:6f:c4:51:4c:57:
57:33:53:57:60:42:80:e7:83:35:bb:2a:91:db:86:
26:8d:ff:27:ca:1b:b3:ad:f7:d0:86:ac:a2:4c:91:
f1:58:39:ab:6c:89:47:33:e6:af:13:91:1e:95:4c:
88:8d:9d:7a:74:c3:24:03:0d:5c:5e:19:84:da:3b:
47:0d:ee:72:0a:9b:1d:20:cf:1a:ab:7e:96:01:28:
d2:39:e9:98:b3:3a:85:d7:16:10:9b:d4:4b:72:43:
fd:1d:c0:b1:74:63:42:44:a2:59:32:25:9a:e3:c5:
d7:2a:39:53:2f:9d:51:fc:02:ee:02:39:79:3c:f9:
a9:80:fc:c2:c8:c7:37:a8:84:6e:0f:36:35:ab:2d:
48:c8:5b:16:a8:9c:c6:45:06:e7:85:6b:c0:86:91:
e7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A6:86:AF:B4:5A:DB:6B:64:F3:3E:B4:04:47:69:F9:DB:B3:5D:B5
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OaaGr7Ra22tk8z60BEdp-duzXbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:0c:a2:45:5a:ae:ef:df:45:3f:c0:75:d0:4d:7e:f0:d6:22:
a8:45:81:a9:dd:81:7f:38:77:3b:36:3e:cd:7f:b6:3b:af:a9:
b3:87:e8:b9:de:d0:c9:e5:75:ae:3f:33:d2:91:95:7b:81:95:
27:ec:00:48:7c:3e:1b:f0:10:1d:cd:5d:e7:40:58:f3:69:b9:
ca:f1:52:9f:8b:b0:33:f2:35:4e:57:d2:a0:5f:0f:f3:bb:24:
83:ea:80:0f:1a:84:dd:71:a1:3b:09:b3:04:87:e9:1c:bf:67:
3f:d8:63:98:2d:c6:01:d4:b8:f2:df:9c:95:9e:40:40:1c:d6:
cb:e1:bb:e5:bb:32:31:8d:03:b1:dc:95:a7:bc:f6:71:71:92:
ce:3c:98:7e:fe:10:ba:36:4b:40:56:36:67:5b:ad:a0:d3:da:
de:05:69:89:85:c2:f7:d4:9e:44:17:c8:64:e6:d0:0e:af:de:
f4:cc:e6:8f:ae:0d:e4:8c:60:55:58:36:b6:ab:91:27:40:51:
30:10:39:6b:f0:ba:f1:b3:ac:a9:ee:99:0b:83:99:d6:bd:e2:
ba:dc:c8:10:fb:b1:38:45:78:68:91:b0:fe:0c:c6:2e:98:ab:
f5:e1:4b:f0:75:7b:37:3c:9f:6a:b6:22:6a:1c:22:3c:8e:c2:
90:67:70:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENeMdlDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTM4ZWMyNDJhNDNlOWM5ZDRjZWIyNWRjOTBlNTQ1MzM3M2QzZjQ2MB4XDTIyMDEw
MTEyNTcwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzlhNjg2YWZiNDVh
ZGI2YjY0ZjMzZWI0MDQ0NzY5ZjlkYmIzNWRiNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN4zpu/Ulhp4gYcn7iPeHM2yiHTatC4CvoOoYiwZyJmcJwj2
Bqm+btVAxXf8dw5xDiFPGTLnJ3JdwHCf7e0FBeHLAs5DvTJhOwPxIKSmhfy6iher
rTJTkUOZj+gJsOYJVQwREW/EUUxXVzNTV2BCgOeDNbsqkduGJo3/J8obs6330Ias
okyR8Vg5q2yJRzPmrxORHpVMiI2denTDJAMNXF4ZhNo7Rw3ucgqbHSDPGqt+lgEo
0jnpmLM6hdcWEJvUS3JD/R3AsXRjQkSiWTIlmuPF1yo5Uy+dUfwC7gI5eTz5qYD8
wsjHN6iEbg82NastSMhbFqicxkUG54VrwIaR5w8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ5poavtFrba2TzPrQER2n527NdtTAfBgNVHSMEGDAWgBThOOwkKkPpydTO
sl3JDlRTNz0/RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRUanNKQ3BENmNuVXpySmR5UTVVVXpjOVAwWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvMGI3ZmQzLTkwZjAtNDVkMS04YTU4LTY3ODVjZDQ1Njg3MS8x
L09hYUdyN1JhMjJ0azh6NjBCRWRwLWR1elhiVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYv
MGI3ZmQzLTkwZjAtNDVkMS04YTU4LTY3ODVjZDQ1Njg3MS8xLzRUanNKQ3BENmNu
VXpySmR5UTVVVXpjOVAwWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALzRNzANBgkqhkiG9w0BAQsFAAOC
AQEAowyiRVqu799FP8B10E1+8NYiqEWBqd2Bfzh3OzY+zX+2O6+ps4foud7QyeV1
rj8z0pGVe4GVJ+wASHw+G/AQHc1d50BY82m5yvFSn4uwM/I1TlfSoF8P87skg+qA
DxqE3XGhOwmzBIfpHL9nP9hjmC3GAdS48t+clZ5AQBzWy+G75bsyMY0DsdyVp7z2
cXGSzjyYfv4QujZLQFY2Z1utoNPa3gVpiYXC99SeRBfIZObQDq/e9Mzmj64N5Ixg
VVg2tquRJ0BRMBA5a/C68bOsqe6ZC4OZ1r3iutzIEPuxOEV4aJGw/gzGLpir9eFL
8HV7NzyfarYiahwiPI7CkGdw7w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:58 2024 by rpki-client on console-fra.rpki-client.org