Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3bae86-a8fc-43e6-801a-bca80e47c573/1/OWBlVKyGBl6P_z3acMZYYqs0lPo.roa
File: OWBlVKyGBl6P_z3acMZYYqs0lPo.roa (raw, json)
Hash identifier: SiM/CyehgvUHBQNERwSkaMgTGY3q5aeHb7tx4rxOIsw=
Subject key identifier: 39:60:65:54:AC:86:06:5E:8F:FF:3D:DA:70:C6:58:62:AB:34:94:FA
Certificate issuer: /CN=8d281989c3b6e58fdc9534ee7eb3e260d1d87749
Certificate serial: 03DCC8F5
Authority key identifier: 8D:28:19:89:C3:B6:E5:8F:DC:95:34:EE:7E:B3:E2:60:D1:D8:77:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSgZicO25Y_clTTufrPiYNHYd0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3bae86-a8fc-43e6-801a-bca80e47c573/1/OWBlVKyGBl6P_z3acMZYYqs0lPo.roa
Signing time: Sat 01 Jan 2022 09:57:58 +0000
ROA not before: Sat 01 Jan 2022 09:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31549
IP address blocks: 185.166.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64801013 (0x3dcc8f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d281989c3b6e58fdc9534ee7eb3e260d1d87749
Validity
Not Before: Jan 1 09:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39606554ac86065e8fff3dda70c65862ab3494fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e0:9b:f3:d0:21:be:6f:b0:5f:dc:da:05:0a:
c0:bf:76:34:cb:d0:ab:85:43:50:a4:e7:2a:c2:6b:
67:f1:a7:5b:d8:04:4c:b5:e3:fd:03:1f:f3:65:dc:
b3:3e:2f:32:42:6e:79:ff:52:d4:56:f1:3c:17:50:
a2:a9:a8:97:5b:7d:fd:ed:5d:d5:c5:f5:4c:f5:2c:
42:08:8d:35:58:ee:cc:33:58:eb:7d:91:c0:bd:d2:
5a:cb:c2:49:68:15:37:96:c4:da:11:cd:2c:ef:2d:
db:80:95:b7:00:5e:bc:77:a4:72:bd:8d:42:38:34:
df:95:97:a9:80:5b:26:42:a0:40:c2:71:21:89:f9:
49:33:69:94:30:25:3f:6a:da:95:79:3a:96:db:61:
aa:2c:64:27:cc:ce:eb:5c:cc:68:8c:3c:df:ed:25:
0b:30:f3:45:f9:bc:49:f7:1a:b0:fd:d7:b2:7f:3f:
5d:7f:5e:9a:09:c5:99:18:82:63:ed:f1:a5:50:b3:
b2:74:0d:6b:88:b7:5f:c3:43:f0:d3:73:61:36:7d:
f4:ad:a3:f1:d4:e4:f7:5f:4c:b7:7e:61:b3:d6:10:
7d:37:1f:36:cf:8e:b1:97:d4:0c:47:e7:b2:65:6a:
a8:70:8b:a1:65:7a:93:d6:46:da:4a:ad:23:43:8b:
9e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:60:65:54:AC:86:06:5E:8F:FF:3D:DA:70:C6:58:62:AB:34:94:FA
X509v3 Authority Key Identifier:
keyid:8D:28:19:89:C3:B6:E5:8F:DC:95:34:EE:7E:B3:E2:60:D1:D8:77:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSgZicO25Y_clTTufrPiYNHYd0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3bae86-a8fc-43e6-801a-bca80e47c573/1/OWBlVKyGBl6P_z3acMZYYqs0lPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3bae86-a8fc-43e6-801a-bca80e47c573/1/jSgZicO25Y_clTTufrPiYNHYd0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.113.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:cd:72:f0:ce:c0:8e:ff:81:35:ab:fe:51:1c:a4:70:9c:45:
6d:29:39:b4:2e:b8:f4:7c:ae:25:49:fa:98:3e:b5:88:b0:ed:
a8:82:ad:5d:88:2f:2d:f1:a7:6a:89:52:1e:16:82:08:7c:97:
1f:85:72:ff:1b:4a:b4:43:3c:8b:21:66:08:af:49:02:10:da:
9e:a0:f0:cc:03:75:5b:46:1d:c3:2f:99:74:99:3b:ac:10:31:
cd:5c:50:66:c5:bf:31:96:1a:0d:de:92:43:df:8c:72:af:a6:
51:da:fb:bb:b6:67:73:7b:f0:c4:95:9b:3a:e8:2c:0f:46:b8:
98:0d:4e:46:99:70:3a:b4:0a:c3:2b:71:b9:65:41:3a:8a:c2:
b1:b2:a6:a9:e8:67:62:24:a2:60:b2:6d:29:47:41:bc:6e:00:
5a:f0:4a:33:09:94:d1:65:44:9e:14:a6:8c:39:4c:b3:92:8c:
d9:54:0b:19:de:be:79:fe:90:fe:56:6b:dd:17:9e:7c:79:44:
50:66:ab:dd:27:c2:2a:a1:f6:a6:d8:21:cc:77:b3:21:4c:c1:
83:e5:a0:0b:95:06:4f:5a:cc:b8:10:0b:e6:8d:9e:6e:3f:c7:
fc:27:b0:08:04:82:12:e4:7a:ae:2b:9d:72:5d:5e:fe:64:3f:
49:14:97:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9zI9TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDI4MTk4OWMzYjZlNThmZGM5NTM0ZWU3ZWIzZTI2MGQxZDg3NzQ5MB4XDTIyMDEw
MTA5NTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzk2MDY1NTRhYzg2
MDY1ZThmZmYzZGRhNzBjNjU4NjJhYjM0OTRmYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPjgm/PQIb5vsF/c2gUKwL92NMvQq4VDUKTnKsJrZ/GnW9gE
TLXj/QMf82Xcsz4vMkJuef9S1FbxPBdQoqmol1t9/e1d1cX1TPUsQgiNNVjuzDNY
632RwL3SWsvCSWgVN5bE2hHNLO8t24CVtwBevHekcr2NQjg035WXqYBbJkKgQMJx
IYn5STNplDAlP2ralXk6ltthqixkJ8zO61zMaIw83+0lCzDzRfm8SfcasP3Xsn8/
XX9emgnFmRiCY+3xpVCzsnQNa4i3X8ND8NNzYTZ99K2j8dTk919Mt35hs9YQfTcf
Ns+OsZfUDEfnsmVqqHCLoWV6k9ZG2kqtI0OLngUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ5YGVUrIYGXo//PdpwxlhiqzSU+jAfBgNVHSMEGDAWgBSNKBmJw7blj9yV
NO5+s+Jg0dh3STAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pTZ1ppY08yNVlfY2xUVHVmclBpWU5IWWQway5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvM2JhZTg2LWE4ZmMtNDNlNi04MDFhLWJjYTgwZTQ3YzU3My8x
L09XQmxWS3lHQmw2UF96M2FjTVpZWXFzMGxQby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
M2JhZTg2LWE4ZmMtNDNlNi04MDFhLWJjYTgwZTQ3YzU3My8xL2pTZ1ppY08yNVlf
Y2xUVHVmclBpWU5IWWQway5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmmcTANBgkqhkiG9w0BAQsFAAOC
AQEAos1y8M7Ajv+BNav+URykcJxFbSk5tC649HyuJUn6mD61iLDtqIKtXYgvLfGn
aolSHhaCCHyXH4Vy/xtKtEM8iyFmCK9JAhDanqDwzAN1W0Ydwy+ZdJk7rBAxzVxQ
ZsW/MZYaDd6SQ9+Mcq+mUdr7u7Znc3vwxJWbOugsD0a4mA1ORplwOrQKwytxuWVB
OorCsbKmqehnYiSiYLJtKUdBvG4AWvBKMwmU0WVEnhSmjDlMs5KM2VQLGd6+ef6Q
/lZr3ReefHlEUGar3SfCKqH2ptghzHezIUzBg+WgC5UGT1rMuBAL5o2ebj/H/Cew
CASCEuR6riudcl1e/mQ/SRSXPw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:05 2024 by rpki-client on console-fra.rpki-client.org