Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ODPvHGsY0lIb51Xc7S0PCrYJlkw.roa
File: ODPvHGsY0lIb51Xc7S0PCrYJlkw.roa (raw, json)
Hash identifier: RzLSbd2uqkD6r8CSVAJ9jfLY+QYppYMSMW4MTV4ntUI=
Subject key identifier: 38:33:EF:1C:6B:18:D2:52:1B:E7:55:DC:ED:2D:0F:0A:B6:09:96:4C
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 08F0816D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ODPvHGsY0lIb51Xc7S0PCrYJlkw.roa
Signing time: Fri 01 Jul 2022 08:19:50 +0000
ROA not before: Fri 01 Jul 2022 08:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.151.0.0/23 maxlen: 24
45.151.2.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
2.56.108.0/22 maxlen: 24
45.88.136.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.137.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
195.62.24.0/24 maxlen: 24
45.13.188.0/24 maxlen: 24
45.13.189.0/24 maxlen: 24
45.13.191.0/24 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/24 maxlen: 24
194.15.52.0/23 maxlen: 24
193.30.241.0/24 maxlen: 24
85.209.120.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
85.209.123.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149979501 (0x8f0816d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jul 1 08:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3833ef1c6b18d2521be755dced2d0f0ab609964c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f3:3b:32:29:b3:24:c2:ec:44:2e:20:a4:d3:
b3:b0:7b:3c:cf:1f:5e:d2:c4:27:d4:80:75:57:24:
8d:02:06:15:2f:ef:f3:83:50:a4:9a:15:de:57:0d:
12:ee:25:3e:3a:0e:bf:64:bb:5a:dd:71:f8:9e:b3:
52:e3:8b:d7:36:7c:17:1f:49:6a:04:df:78:16:7e:
36:21:a0:30:d7:a8:27:9a:9e:3f:9a:e7:3a:16:de:
2c:44:67:3b:16:90:68:b2:2c:20:e6:25:53:90:f9:
0f:77:50:5d:ff:a9:3e:4a:d4:49:30:33:13:5a:21:
47:4a:e8:78:45:1d:be:a3:41:ef:93:79:2f:54:14:
1c:e1:dd:e5:3d:1c:76:ed:0c:3d:ce:fc:61:0a:f5:
00:3a:dd:13:c4:bb:8d:1a:6d:08:4b:f5:2d:1a:5a:
80:8c:6b:8e:51:70:12:2a:a9:a1:4a:3f:85:8c:25:
73:6e:e7:eb:96:98:e2:66:09:00:1e:b7:50:da:0a:
d2:e7:1c:73:cb:7c:c5:0f:c9:d3:88:6b:d9:b1:35:
b2:8c:4f:20:de:d9:40:19:bb:4f:92:9c:7e:98:11:
4a:83:c3:db:6f:db:25:3a:62:bc:e3:54:61:86:39:
97:36:62:64:46:09:ad:16:c5:4e:99:56:92:73:56:
d9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:33:EF:1C:6B:18:D2:52:1B:E7:55:DC:ED:2D:0F:0A:B6:09:96:4C
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ODPvHGsY0lIb51Xc7S0PCrYJlkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
45.13.188.0/23
45.13.191.0/24
45.88.136.0/22
45.132.182.0/23
45.144.213.0-45.144.215.255
45.151.0.0-45.151.2.255
77.83.37.0-77.83.39.255
85.209.120.0/22
193.30.241.0/24
193.57.41.0/24
194.15.52.0/23
195.62.24.0/24
195.177.93.0-195.177.95.255
195.211.188.0/22
Signature Algorithm: sha256WithRSAEncryption
34:49:9b:48:94:e3:96:33:9b:5e:91:47:38:cb:a3:98:dd:4e:
01:08:34:b2:2a:7d:bf:42:7b:28:12:c1:b7:7f:dc:d4:b2:66:
da:32:28:1a:9c:57:c0:12:50:83:63:da:fe:f9:f3:3a:fa:3c:
2c:22:74:c1:1f:94:53:c3:1f:cf:64:84:fa:cd:e2:b9:20:69:
c9:28:5b:29:da:d9:11:e9:b5:a8:35:54:c6:4a:55:00:e0:3a:
98:4d:5c:fe:35:65:5d:7a:8d:73:3f:6d:06:a1:15:44:02:8f:
ae:24:3c:37:5f:8c:80:01:ef:39:ad:5d:54:c2:bd:f9:e1:1b:
39:3e:f6:45:60:28:4b:01:a4:4c:e4:d2:8e:3f:26:ac:b6:0e:
b1:63:13:a8:ce:aa:2c:8f:d8:48:0c:83:74:4d:fa:50:a1:aa:
7f:07:00:4f:51:00:47:a2:cc:ee:e5:7c:2d:fe:92:a9:58:58:
93:c4:f2:0e:2d:40:c0:66:7d:b0:ea:c1:a7:4f:3c:da:30:1f:
ec:20:74:86:7b:dd:08:47:18:01:30:6a:cc:df:3c:b2:dc:3c:
3e:7c:bf:e7:25:37:76:c1:c6:0e:ab:6b:73:49:ec:ea:17:9a:
77:49:1b:dd:8e:fc:3e:0e:14:69:fb:ac:fe:59:78:26:a7:78:
f9:3e:a5:f6
-----BEGIN CERTIFICATE-----
MIIFZTCCBE2gAwIBAgIECPCBbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDJhNDc4YmIwYjA4ZTY2MWIwYjJmOWZiZTg5MzViYzljMmEyOGExMB4XDTIyMDcw
MTA4MTk1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzgzM2VmMWM2YjE4
ZDI1MjFiZTc1NWRjZWQyZDBmMGFiNjA5OTY0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO7zOzIpsyTC7EQuIKTTs7B7PM8fXtLEJ9SAdVckjQIGFS/v
84NQpJoV3lcNEu4lPjoOv2S7Wt1x+J6zUuOL1zZ8Fx9JagTfeBZ+NiGgMNeoJ5qe
P5rnOhbeLERnOxaQaLIsIOYlU5D5D3dQXf+pPkrUSTAzE1ohR0roeEUdvqNB75N5
L1QUHOHd5T0cdu0MPc78YQr1ADrdE8S7jRptCEv1LRpagIxrjlFwEiqpoUo/hYwl
c27n65aY4mYJAB63UNoK0uccc8t8xQ/J04hr2bE1soxPIN7ZQBm7T5KcfpgRSoPD
22/bJTpivONUYYY5lzZiZEYJrRbFTplWknNW2csCAwEAAaOCAn8wggJ7MB0GA1Ud
DgQWBBQ4M+8caxjSUhvnVdztLQ8KtgmWTDAfBgNVHSMEGDAWgBSdKkeLsLCOZhsL
L5++iTW8nCoooTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25TcEhpN0N3am1ZYkN5LWZ2b2sxdkp3cUtLRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8x
L09EUHZIR3NZMGxJYjUxWGM3UzBQQ3JZSmxrdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2MC8xL25TcEhpN0N3am1Z
YkN5LWZ2b2sxdkp3cUtLRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
lAYIKwYBBQUHAQcBAf8EgYQwgYEwfwQCAAEweQMEAgI4bAMEAS0NvAMEAC0NvwME
Ai1YiAMEAS2EtjAMAwQALZDVAwQDLZDQMAsDAwAtlwMEAC2XAjAMAwQATVMlAwQD
TVMgAwQCVdF4AwQAwR7xAwQAwTkpAwQBwg80AwQAwz4YMAwDBADDsV0DBAXDsUAD
BALD07wwDQYJKoZIhvcNAQELBQADggEBADRJm0iU45Yzm16RRzjLo5jdTgEINLIq
fb9CeygSwbd/3NSyZtoyKBqcV8ASUINj2v758zr6PCwidMEflFPDH89khPrN4rkg
ackoWyna2RHptag1VMZKVQDgOphNXP41ZV16jXM/bQahFUQCj64kPDdfjIAB7zmt
XVTCvfnhGzk+9kVgKEsBpEzk0o4/Jqy2DrFjE6jOqiyP2EgMg3RN+lChqn8HAE9R
AEeizO7lfC3+kqlYWJPE8g4tQMBmfbDqwadPPNowH+wgdIZ73QhHGAEwaszfPLLc
PD58v+clN3bBxg6ra3NJ7OoXmndJG92O/D4OFGn7rP5ZeCanePk+pfY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org