Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/pAnpOZvOH7xnGJ54ldpC68nprTc.roa
File: pAnpOZvOH7xnGJ54ldpC68nprTc.roa (raw, json)
Hash identifier: J4ptxZWnZfTDKip2Kfc8Ggnhl2YgKmGiRJG3xuIHQv0=
Subject key identifier: A4:09:E9:39:9B:CE:1F:BC:67:18:9E:78:95:DA:42:EB:C9:E9:AD:37
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38BBA1C2
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/pAnpOZvOH7xnGJ54ldpC68nprTc.roa
Signing time: Tue 17 May 2022 05:30:27 +0000
ROA not before: Tue 17 May 2022 05:30:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200024
IP address blocks: 85.196.136.0/24 maxlen: 24
151.251.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 951820738 (0x38bba1c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a409e9399bce1fbc67189e7895da42ebc9e9ad37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:72:8d:a9:4f:11:3b:0a:d4:a4:07:89:db:04:
ca:3d:2e:ba:f7:99:cb:b2:09:1a:b6:57:79:b8:26:
77:5c:5b:04:8f:9f:eb:01:cc:47:29:17:e5:a9:68:
96:62:52:f7:0c:f8:ce:c5:80:d6:23:09:6d:68:bc:
e7:bf:67:47:fc:2b:4a:28:5d:2c:dd:91:f0:60:aa:
81:1f:b9:1c:53:d0:42:cd:e0:53:e1:38:2e:1d:b3:
1d:7e:b2:64:29:08:2f:1b:9f:58:4e:98:5b:a3:26:
3e:16:7a:2b:6a:22:c6:63:0f:a2:2d:f0:32:2d:9e:
0f:57:eb:90:62:10:b3:f5:6c:ba:d3:20:60:ce:29:
21:87:79:5b:68:3b:f3:18:f7:3e:51:f1:32:fd:84:
5c:96:eb:bf:e1:0e:6e:8d:c9:97:45:b6:f6:78:b5:
1e:93:36:53:51:85:79:b4:9b:5f:df:f1:46:3e:ca:
48:6d:35:09:76:41:dd:7a:b0:d3:6d:a8:c8:1d:cd:
be:be:9b:7a:e1:c6:29:91:78:51:99:96:19:62:2c:
0e:2a:db:45:49:7d:01:f1:d5:37:d1:a5:1d:96:bd:
b7:95:e0:24:e0:61:74:f0:24:47:24:14:24:b0:c8:
98:4a:f6:75:a6:f4:9c:6c:9f:a0:08:25:b2:4d:d0:
93:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:09:E9:39:9B:CE:1F:BC:67:18:9E:78:95:DA:42:EB:C9:E9:AD:37
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/pAnpOZvOH7xnGJ54ldpC68nprTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.196.136.0/24
151.251.38.0/24
Signature Algorithm: sha256WithRSAEncryption
09:b8:2e:b0:56:b6:dc:cd:a7:3d:2e:99:9f:bc:a9:3c:a0:51:
6b:dc:2c:96:ec:f2:fc:a9:94:50:51:8b:4e:35:6f:8e:1a:06:
7a:12:a5:2f:04:a1:39:fa:e0:f7:36:31:28:e6:e8:ca:d6:ff:
ca:d8:e8:f2:67:6c:de:1d:b1:90:19:de:07:75:d2:85:3d:10:
11:cc:dd:5a:65:cf:7e:2e:97:86:af:fb:fd:3a:50:bb:ae:98:
b5:29:37:5e:03:41:1f:00:77:7e:c6:6f:3b:4e:12:8c:63:8b:
32:04:56:68:6e:31:d1:41:9f:50:dc:1a:b1:53:31:87:90:95:
18:73:83:2b:e4:77:a7:14:eb:86:29:6d:93:f3:fa:b6:9e:d8:
3d:44:4c:ca:b0:6f:9c:a8:d2:a9:b1:da:18:02:fd:87:e9:55:
ed:2d:91:3d:1b:f6:ba:73:74:37:f7:8d:c1:55:c0:9e:e8:b7:
bd:cd:b1:7c:81:9d:c2:d3:6f:ec:ee:b1:c6:4b:f2:2a:b0:c1:
66:ac:d0:22:75:e9:be:51:8a:da:6c:bd:4b:d7:85:77:f2:39:
25:1d:a5:71:ea:c4:38:88:25:77:ef:94:5b:98:af:fd:76:59:
0b:04:f7:19:e5:83:14:0a:34:57:07:bd:d4:37:b5:34:4f:c4:
1a:61:05:ff
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEOLuhwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDUx
NzA1MzAyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTQwOWU5Mzk5YmNl
MWZiYzY3MTg5ZTc4OTVkYTQyZWJjOWU5YWQzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpyjalPETsK1KQHidsEyj0uuveZy7IJGrZXebgmd1xbBI+f
6wHMRykX5alolmJS9wz4zsWA1iMJbWi8579nR/wrSihdLN2R8GCqgR+5HFPQQs3g
U+E4Lh2zHX6yZCkILxufWE6YW6MmPhZ6K2oixmMPoi3wMi2eD1frkGIQs/VsutMg
YM4pIYd5W2g78xj3PlHxMv2EXJbrv+EObo3Jl0W29ni1HpM2U1GFebSbX9/xRj7K
SG01CXZB3Xqw022oyB3Nvr6beuHGKZF4UZmWGWIsDirbRUl9AfHVN9GlHZa9t5Xg
JOBhdPAkRyQUJLDImEr2dab0nGyfoAglsk3Qk0UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSkCek5m84fvGcYnniV2kLryemtNzAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L3BBbnBPWnZPSDd4bkdKNTRsZHBDNjhucHJUYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFXEiAMEAJf7JjANBgkqhkiG9w0B
AQsFAAOCAQEACbgusFa23M2nPS6Zn7ypPKBRa9wsluzy/KmUUFGLTjVvjhoGehKl
LwShOfrg9zYxKOboytb/ytjo8mds3h2xkBneB3XShT0QEczdWmXPfi6Xhq/7/TpQ
u66YtSk3XgNBHwB3fsZvO04SjGOLMgRWaG4x0UGfUNwasVMxh5CVGHODK+R3pxTr
hiltk/P6tp7YPURMyrBvnKjSqbHaGAL9h+lV7S2RPRv2unN0N/eNwVXAnui3vc2x
fIGdwtNv7O6xxkvyKrDBZqzQInXpvlGK2my9S9eFd/I5JR2lcerEOIgld++UW5iv
/XZZCwT3GeWDFAo0Vwe91De1NE/EGmEF/w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org