Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OBlYLueboZ60wbtvYEBLWuejv7o.roa
File: OBlYLueboZ60wbtvYEBLWuejv7o.roa (raw, json)
Hash identifier: 9D33J6sNQu9ZSAfjN7Cfhw827oQIiKVhEr6JbOA9vxA=
Subject key identifier: 38:19:58:2E:E7:9B:A1:9E:B4:C1:BB:6F:60:40:4B:5A:E7:A3:BF:BA
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018216D3EB1ABCC5BD9554F923ECB9365BB2
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OBlYLueboZ60wbtvYEBLWuejv7o.roa
Signing time: Tue 19 Jul 2022 14:19:23 +0000
ROA not before: Tue 19 Jul 2022 14:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 193.233.124.0/22 maxlen: 22
193.233.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:d3:eb:1a:bc:c5:bd:95:54:f9:23:ec:b9:36:5b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jul 19 14:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3819582ee79ba19eb4c1bb6f60404b5ae7a3bfba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5c:2e:10:59:a2:f6:6c:17:ff:b6:d1:e1:8d:
46:b3:87:90:ad:48:96:9c:94:c8:8d:d2:d4:6d:e9:
6a:6d:45:b4:d1:de:02:3e:34:a9:99:cb:61:64:ea:
f3:b5:e4:6c:69:f6:ca:e6:c2:e3:a6:ca:57:a8:69:
75:06:81:e9:4b:0a:c2:2e:40:e7:8d:a7:84:81:e0:
98:01:1c:31:ed:61:ff:89:0f:e5:de:5c:df:ff:48:
cc:64:36:9c:7c:93:61:df:08:08:a3:e1:b9:0c:fc:
25:87:12:0f:65:23:32:9c:f5:06:70:5c:6c:e1:d0:
d5:0b:9c:8d:47:32:94:5d:c5:ed:a5:72:83:0b:19:
54:bf:70:d1:e2:49:5d:ba:ec:ed:db:15:03:c6:83:
41:51:15:6e:1a:87:8e:00:58:45:42:e5:3d:a6:1d:
03:46:81:fd:5d:fa:76:9b:b5:67:59:99:75:bc:18:
9e:2d:31:d9:1d:ba:42:7d:9a:15:01:12:16:d8:8d:
7b:d8:eb:82:15:2c:f1:ec:ca:5b:b0:6a:08:7f:2c:
1e:e0:a5:40:01:b3:c8:dd:93:b9:bc:71:f1:ee:e9:
37:bf:ab:b0:e0:7c:7c:88:dc:a1:91:b0:16:54:10:
9c:74:98:3e:1c:92:4f:4a:67:e4:cd:34:b4:50:08:
f2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:19:58:2E:E7:9B:A1:9E:B4:C1:BB:6F:60:40:4B:5A:E7:A3:BF:BA
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OBlYLueboZ60wbtvYEBLWuejv7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.120.0/21
Signature Algorithm: sha256WithRSAEncryption
53:97:94:e8:95:e5:b1:36:93:b9:61:8e:c0:83:cc:54:aa:b6:
b4:4f:e5:29:f6:39:ef:19:a8:3a:22:a6:5c:b7:ad:a8:67:71:
ea:e6:aa:89:01:b7:81:75:11:a9:74:eb:92:b0:47:6d:4d:59:
b1:8c:d5:e0:a3:e9:25:5e:24:b1:23:fd:a8:5c:ed:db:a8:70:
04:2d:61:89:9e:42:f5:98:5c:60:fd:8f:3e:98:33:eb:bd:e1:
a1:fe:df:6a:11:49:c8:3b:15:1c:81:f2:48:b0:42:b6:36:c6:
c5:28:6e:c1:67:2e:b0:52:01:fd:9b:16:62:e3:33:b5:9d:21:
3e:ff:54:75:a5:fe:5b:89:26:96:22:e2:ef:ea:23:29:7a:1e:
98:cf:58:1b:e7:cc:62:09:4c:ab:fc:22:0c:22:83:26:89:82:
e4:ca:65:3c:f9:8f:88:0f:f1:12:3a:f5:ad:ca:05:da:ab:a4:
5f:dd:4c:91:49:06:a2:56:26:0b:d7:1b:a3:0d:97:f6:62:35:
17:97:39:78:6a:5d:bd:cb:0c:c3:26:54:3a:55:d4:5a:ad:f2:
cc:f5:15:a0:56:c6:96:c1:04:c9:63:2f:7f:a9:f4:e4:9b:95:
c6:6c:c1:01:a3:86:39:fb:dc:70:f7:f3:8b:80:e7:fd:9f:b9:
f9:f8:bd:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIW0+savMW9lVT5I+y5NluyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjIwNzE5MTQxOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODE5NTgyZWU3OWJhMTllYjRjMWJiNmY2MDQwNGI1YWU3YTNiZmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lwuEFmi9mwX/7bR4Y1Gs4eQrUiW
nJTIjdLUbelqbUW00d4CPjSpmcthZOrzteRsafbK5sLjpspXqGl1BoHpSwrCLkDn
jaeEgeCYARwx7WH/iQ/l3lzf/0jMZDacfJNh3wgIo+G5DPwlhxIPZSMynPUGcFxs
4dDVC5yNRzKUXcXtpXKDCxlUv3DR4klduuzt2xUDxoNBURVuGoeOAFhFQuU9ph0D
RoH9Xfp2m7VnWZl1vBieLTHZHbpCfZoVARIW2I172OuCFSzx7MpbsGoIfywe4KVA
AbPI3ZO5vHHx7uk3v6uw4Hx8iNyhkbAWVBCcdJg+HJJPSmfkzTS0UAjyywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDgZWC7nm6GetMG7b2BAS1rno7+6MB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvT0JsWUx1ZWJvWjYwd2J0dllFQkxXdWVqdjdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwel4MA0G
CSqGSIb3DQEBCwUAA4IBAQBTl5ToleWxNpO5YY7Ag8xUqra0T+Up9jnvGag6IqZc
t62oZ3Hq5qqJAbeBdRGpdOuSsEdtTVmxjNXgo+klXiSxI/2oXO3bqHAELWGJnkL1
mFxg/Y8+mDPrveGh/t9qEUnIOxUcgfJIsEK2NsbFKG7BZy6wUgH9mxZi4zO1nSE+
/1R1pf5biSaWIuLv6iMpeh6Yz1gb58xiCUyr/CIMIoMmiYLkymU8+Y+ID/ESOvWt
ygXaq6Rf3UyRSQaiViYL1xujDZf2YjUXlzl4al29ywzDJlQ6VdRarfLM9RWgVsaW
wQTJYy9/qfTkm5XGbMEBo4Y5+9xw9/OLgOf9n7n5+L1O
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org