Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2215f7-887a-4bd5-bf97-ffb709f7668c/1/OJ7TmN6-JV8hd775P0h28R4WHk4.roa
File: OJ7TmN6-JV8hd775P0h28R4WHk4.roa (raw, json)
Hash identifier: HG25wpO4oTxO/TZbHJNDgsvH2ihqNOa+pxare+HXWSc=
Subject key identifier: 38:9E:D3:98:DE:BE:25:5F:21:77:BE:F9:3F:48:76:F1:1E:16:1E:4E
Certificate issuer: /CN=4c87389ef41f18c1fcc82754349ea7096980b1e3
Certificate serial: 18F7A2B0
Authority key identifier: 4C:87:38:9E:F4:1F:18:C1:FC:C8:27:54:34:9E:A7:09:69:80:B1:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIc4nvQfGMH8yCdUNJ6nCWmAseM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2215f7-887a-4bd5-bf97-ffb709f7668c/1/OJ7TmN6-JV8hd775P0h28R4WHk4.roa
Signing time: Sat 01 Jan 2022 14:01:01 +0000
ROA not before: Sat 01 Jan 2022 14:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48472
IP address blocks: 94.247.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418882224 (0x18f7a2b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c87389ef41f18c1fcc82754349ea7096980b1e3
Validity
Not Before: Jan 1 14:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=389ed398debe255f2177bef93f4876f11e161e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:29:a8:a0:93:80:c2:da:46:36:41:cf:5b:1e:
aa:f3:63:02:6e:94:93:5d:10:64:e5:df:5e:31:3b:
f9:9f:fd:60:d2:66:7a:e2:ab:a8:d9:78:5c:11:e4:
24:f4:4d:9b:38:ca:6a:95:b5:66:a5:c6:fb:32:69:
13:98:96:5a:6a:f9:51:d7:05:6f:e0:28:29:b3:65:
ea:99:f1:62:bf:55:27:93:a5:ae:54:eb:24:d4:5c:
91:b5:cd:9e:ca:26:de:e5:73:cd:a2:ee:d1:d9:12:
8b:1e:17:98:ef:9f:00:2c:23:30:98:db:42:0f:40:
f4:48:62:19:b2:c6:cc:da:8f:ae:a6:bf:67:d5:68:
ae:d4:81:95:6b:b3:b7:2e:fb:d0:80:8f:a1:43:20:
75:6b:1f:d9:f8:1b:7f:09:d2:04:d5:99:91:cd:11:
02:e2:c4:34:e9:44:a8:38:77:48:e5:57:4b:cf:6a:
a6:40:fb:6a:f9:c2:c8:74:74:36:8a:35:f3:cb:75:
c9:55:62:67:62:05:9f:b3:1f:0d:9e:0d:2c:49:77:
c6:a9:a5:2f:da:8d:78:95:93:a2:76:77:63:ee:f8:
55:b0:2b:31:a1:33:d1:67:d9:2d:3b:2b:d2:05:ac:
31:79:ad:12:d8:4c:40:32:41:be:c1:e5:cc:de:03:
f2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9E:D3:98:DE:BE:25:5F:21:77:BE:F9:3F:48:76:F1:1E:16:1E:4E
X509v3 Authority Key Identifier:
keyid:4C:87:38:9E:F4:1F:18:C1:FC:C8:27:54:34:9E:A7:09:69:80:B1:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIc4nvQfGMH8yCdUNJ6nCWmAseM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2215f7-887a-4bd5-bf97-ffb709f7668c/1/OJ7TmN6-JV8hd775P0h28R4WHk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2215f7-887a-4bd5-bf97-ffb709f7668c/1/TIc4nvQfGMH8yCdUNJ6nCWmAseM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.104.0/23
Signature Algorithm: sha256WithRSAEncryption
25:29:7b:4a:15:f6:82:74:57:43:8b:56:38:58:8b:45:8d:8a:
21:68:99:10:38:ad:cd:a0:ed:55:29:7a:73:3f:76:7c:1d:14:
cc:47:52:74:23:ae:66:17:5b:0c:be:05:18:49:39:68:fe:04:
53:17:0c:19:80:46:e9:4c:51:74:a2:0f:06:a7:82:4d:da:cc:
f4:95:5c:52:2b:45:68:cb:42:51:82:5e:fc:15:cd:c8:f9:9a:
90:4e:61:66:4d:4d:b1:9f:46:cd:c0:58:27:e2:96:2b:07:9a:
93:b4:98:8d:03:8b:be:38:5e:68:15:74:96:2d:55:3a:88:ff:
a1:9e:f5:f4:64:4c:4c:d5:bf:8a:72:df:74:83:02:e3:b9:48:
f3:d2:dc:1b:03:65:b1:80:df:84:7f:bd:26:b3:02:cc:30:21:
51:cf:b8:b6:a7:ae:42:18:62:21:7c:4e:3f:8f:43:fe:bb:83:
12:55:70:a9:b3:b3:cc:2c:f3:39:84:62:bb:d3:32:46:68:c0:
75:90:54:54:4e:dc:a5:28:fc:a4:92:b1:e8:4a:15:66:67:8d:
39:de:46:2a:c8:61:a0:00:9b:c1:d2:c6:1b:30:41:b0:32:9f:
dd:a6:da:3f:c4:66:4c:37:af:81:16:c2:35:8e:d2:56:63:9d:
b4:29:59:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGPeisDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Yzg3Mzg5ZWY0MWYxOGMxZmNjODI3NTQzNDllYTcwOTY5ODBiMWUzMB4XDTIyMDEw
MTE0MDEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzg5ZWQzOThkZWJl
MjU1ZjIxNzdiZWY5M2Y0ODc2ZjExZTE2MWU0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ4pqKCTgMLaRjZBz1seqvNjAm6Uk10QZOXfXjE7+Z/9YNJm
euKrqNl4XBHkJPRNmzjKapW1ZqXG+zJpE5iWWmr5UdcFb+AoKbNl6pnxYr9VJ5Ol
rlTrJNRckbXNnsom3uVzzaLu0dkSix4XmO+fACwjMJjbQg9A9EhiGbLGzNqPrqa/
Z9VortSBlWuzty770ICPoUMgdWsf2fgbfwnSBNWZkc0RAuLENOlEqDh3SOVXS89q
pkD7avnCyHR0Noo188t1yVViZ2IFn7MfDZ4NLEl3xqmlL9qNeJWTonZ3Y+74VbAr
MaEz0WfZLTsr0gWsMXmtEthMQDJBvsHlzN4D8pMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ4ntOY3r4lXyF3vvk/SHbxHhYeTjAfBgNVHSMEGDAWgBRMhzie9B8YwfzI
J1Q0nqcJaYCx4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RJYzRudlFmR01IOHlDZFVOSjZuQ1dtQXNlTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvMjIxNWY3LTg4N2EtNGJkNS1iZjk3LWZmYjcwOWY3NjY4Yy8x
L09KN1RtTjYtSlY4aGQ3NzVQMGgyOFI0V0hrNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
MjIxNWY3LTg4N2EtNGJkNS1iZjk3LWZmYjcwOWY3NjY4Yy8xL1RJYzRudlFmR01I
OHlDZFVOSjZuQ1dtQXNlTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAV73aDANBgkqhkiG9w0BAQsFAAOC
AQEAJSl7ShX2gnRXQ4tWOFiLRY2KIWiZEDitzaDtVSl6cz92fB0UzEdSdCOuZhdb
DL4FGEk5aP4EUxcMGYBG6UxRdKIPBqeCTdrM9JVcUitFaMtCUYJe/BXNyPmakE5h
Zk1NsZ9GzcBYJ+KWKweak7SYjQOLvjheaBV0li1VOoj/oZ719GRMTNW/inLfdIMC
47lI89LcGwNlsYDfhH+9JrMCzDAhUc+4tqeuQhhiIXxOP49D/ruDElVwqbOzzCzz
OYRiu9MyRmjAdZBUVE7cpSj8pJKx6EoVZmeNOd5GKshhoACbwdLGGzBBsDKf3aba
P8RmTDevgRbCNY7SVmOdtClZ8A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:07 2024 by rpki-client on console-ams.rpki-client.org