Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PkEjeNoxOMR_TT6myc1KtOrgPC8.roa
File: PkEjeNoxOMR_TT6myc1KtOrgPC8.roa (raw, json)
Hash identifier: wL8yyuAE4FJgwpQGgqjY70uP07BpOzLAS9baMhgy9XU=
Subject key identifier: 3E:41:23:78:DA:31:38:C4:7F:4D:3E:A6:C9:CD:4A:B4:EA:E0:3C:2F
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01829670FECF9A6A72F59534CB990C1A547F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PkEjeNoxOMR_TT6myc1KtOrgPC8.roa
Signing time: Sat 13 Aug 2022 09:02:43 +0000
ROA not before: Sat 13 Aug 2022 09:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.185.24.0/21 maxlen: 21
81.22.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:96:70:fe:cf:9a:6a:72:f5:95:34:cb:99:0c:1a:54:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 13 09:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e412378da3138c47f4d3ea6c9cd4ab4eae03c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:b0:6a:4c:79:01:be:ed:4d:a1:e9:10:ee:
a3:1b:4c:7a:d0:d6:66:a7:f8:3f:0b:a6:51:a3:5c:
7c:e2:45:e8:39:fc:a2:fa:ab:7e:af:da:92:e0:1b:
bc:63:f4:00:0a:0c:b2:e9:c9:a7:bd:e6:88:8a:1b:
20:65:36:21:28:95:2c:1e:25:07:97:10:5f:72:56:
8e:93:3e:b4:71:7d:3c:55:6d:0c:d5:f3:71:fd:82:
98:71:a4:fb:1d:53:81:8a:3d:78:5e:ea:29:7d:51:
bf:b7:11:8d:a5:bf:76:49:47:46:7d:fa:66:84:38:
b8:4c:29:2a:60:70:14:af:6b:aa:87:6c:ff:c7:2e:
c2:da:ff:9d:92:ad:59:61:c5:4f:b0:aa:51:f6:85:
7d:e5:2e:ca:0d:c3:4f:29:ed:82:69:43:63:33:60:
59:08:88:21:22:48:4a:81:d3:47:61:ec:43:5a:81:
7e:ff:be:f1:66:a6:38:3c:82:a9:03:18:d3:07:0f:
95:99:f6:82:4c:e2:77:6d:00:42:70:81:b6:f4:9d:
c6:2a:09:5f:6a:bd:9c:5b:de:76:94:65:2c:54:11:
76:6c:8e:e5:d4:16:84:6f:ba:53:7b:9c:59:fd:89:
6a:ad:f1:e5:81:94:f5:db:b2:a7:33:bd:61:70:16:
89:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:41:23:78:DA:31:38:C4:7F:4D:3E:A6:C9:CD:4A:B4:EA:E0:3C:2F
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PkEjeNoxOMR_TT6myc1KtOrgPC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/21
89.185.24.0/21
Signature Algorithm: sha256WithRSAEncryption
82:91:34:0b:fd:53:85:91:f1:03:2b:f6:77:0a:1e:2a:87:f7:
04:e4:82:9f:a8:19:a5:06:30:94:35:0c:1d:a5:61:67:fd:ab:
a4:61:ab:a1:58:9e:89:0b:db:2a:a9:5e:b5:ce:ed:06:e8:b6:
8e:46:f8:71:e8:41:ef:b1:1d:55:41:30:47:14:43:76:0d:3a:
f6:67:8f:d8:a0:c9:da:71:a0:89:1b:2c:a5:e5:8f:fc:70:f0:
d4:6c:9a:9e:57:9e:fe:22:c8:7b:6b:ed:aa:7f:c0:8f:94:bb:
52:94:2f:a9:5f:79:e2:5e:f1:2b:ac:ee:af:f0:23:5d:6b:a8:
2b:ff:da:94:cd:73:28:90:2b:f3:47:5e:bb:f2:87:c1:41:9c:
9e:6a:20:23:a8:91:11:e5:84:66:ad:d1:29:17:44:8d:2b:65:
39:7f:fb:e7:27:42:e8:09:a3:97:f5:7a:1d:26:df:fe:1d:52:
77:fe:84:d8:5e:f1:ee:56:4d:19:33:66:ef:98:cc:f2:16:e6:
7b:05:3c:a2:cb:34:a6:55:be:b3:55:b7:9a:2a:5f:99:11:dd:
3a:ca:27:3f:ea:82:47:cb:d8:43:54:2f:d6:ee:9f:bf:7b:42:
4d:df:de:f6:12:c2:c9:38:fc:a5:be:fb:f3:ff:07:fe:a8:20:
e5:67:7b:0d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYKWcP7Pmmpy9ZU0y5kMGlR/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjIwODEzMDkwMjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTQxMjM3OGRhMzEzOGM0N2Y0ZDNlYTZjOWNkNGFiNGVhZTAzYzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC2wakx5Ab7tTaHpEO6jG0x60NZm
p/g/C6ZRo1x84kXoOfyi+qt+r9qS4Bu8Y/QACgyy6cmnveaIihsgZTYhKJUsHiUH
lxBfclaOkz60cX08VW0M1fNx/YKYcaT7HVOBij14XuopfVG/txGNpb92SUdGffpm
hDi4TCkqYHAUr2uqh2z/xy7C2v+dkq1ZYcVPsKpR9oV95S7KDcNPKe2CaUNjM2BZ
CIghIkhKgdNHYexDWoF+/77xZqY4PIKpAxjTBw+VmfaCTOJ3bQBCcIG29J3GKglf
ar2cW952lGUsVBF2bI7l1BaEb7pTe5xZ/YlqrfHlgZT127KnM71hcBaJNwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFD5BI3jaMTjEf00+psnNSrTq4DwvMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvUGtFamVOb3hPTVJfVFQ2bXljMUt0T3JnUEM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDURaAAwQD
WbkYMA0GCSqGSIb3DQEBCwUAA4IBAQCCkTQL/VOFkfEDK/Z3Ch4qh/cE5IKfqBml
BjCUNQwdpWFn/aukYauhWJ6JC9sqqV61zu0G6LaORvhx6EHvsR1VQTBHFEN2DTr2
Z4/YoMnacaCJGyyl5Y/8cPDUbJqeV57+Ish7a+2qf8CPlLtSlC+pX3niXvErrO6v
8CNda6gr/9qUzXMokCvzR1678ofBQZyeaiAjqJER5YRmrdEpF0SNK2U5f/vnJ0Lo
CaOX9XodJt/+HVJ3/oTYXvHuVk0ZM2bvmMzyFuZ7BTyiyzSmVb6zVbeaKl+ZEd06
yic/6oJHy9hDVC/W7p+/e0JN3972EsLJOPylvvvz/wf+qCDlZ3sN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org