Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/2Oik6umwRegAQeG639P_wQPEV2Y.roa
File: 2Oik6umwRegAQeG639P_wQPEV2Y.roa (raw, json)
Hash identifier: kJ60YVDU9sX2bV0QxyaiG5IYeXdJDbV3dVJp2jPsUCA=
Subject key identifier: D8:E8:A4:EA:E9:B0:45:E8:00:41:E1:BA:DF:D3:FF:C1:03:C4:57:66
Certificate issuer: /CN=63b842254bbd6bf33e09d05a458f00a0484cf16f
Certificate serial: 323F613C
Authority key identifier: 63:B8:42:25:4B:BD:6B:F3:3E:09:D0:5A:45:8F:00:A0:48:4C:F1:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/2Oik6umwRegAQeG639P_wQPEV2Y.roa
Signing time: Sat 01 Jan 2022 03:57:29 +0000
ROA not before: Sat 01 Jan 2022 03:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58269
IP address blocks: 185.8.60.0/22 maxlen: 22
91.220.43.0/24 maxlen: 24
2a03:3440::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 843014460 (0x323f613c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63b842254bbd6bf33e09d05a458f00a0484cf16f
Validity
Not Before: Jan 1 03:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8e8a4eae9b045e80041e1badfd3ffc103c45766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:de:38:63:3c:f7:5a:84:69:fd:a9:2b:0b:2d:
37:69:34:59:64:1d:0f:63:96:57:ac:12:9f:48:ea:
36:60:70:12:a7:83:ef:41:30:1c:59:8e:28:d9:c5:
45:31:03:ab:7d:a4:3f:ec:00:98:ad:e9:2e:38:b5:
a1:29:bc:42:3a:f8:c0:33:a3:51:97:98:3e:aa:66:
69:8e:28:44:9d:09:0a:13:c0:c5:ea:db:07:11:12:
f4:6f:20:7e:ba:cc:f2:7f:8d:51:72:7f:83:91:db:
d3:d4:7b:c4:89:b6:ba:34:7f:63:56:8c:72:49:f2:
71:7c:a9:d4:7e:19:b9:84:da:a9:37:be:b0:bf:5a:
48:28:65:71:dc:91:5b:3b:c7:a4:6a:c1:98:ad:96:
46:a8:05:5a:e2:68:fa:f7:d5:4e:a8:5d:f0:f2:e7:
8a:8d:dc:5c:d6:8a:05:57:ee:93:27:6d:8f:69:c6:
81:71:84:f3:c1:a0:a6:3f:df:bd:f5:28:dd:37:8b:
cf:7a:7d:5a:37:df:70:e1:f6:a4:bc:09:d8:67:43:
d4:21:1b:aa:da:80:1a:74:0f:39:89:99:b9:b7:79:
65:e8:27:9b:40:59:22:bd:29:14:03:d1:ee:d0:8a:
62:6f:a3:03:ba:c9:19:28:bf:5c:fb:93:12:f0:eb:
7f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E8:A4:EA:E9:B0:45:E8:00:41:E1:BA:DF:D3:FF:C1:03:C4:57:66
X509v3 Authority Key Identifier:
keyid:63:B8:42:25:4B:BD:6B:F3:3E:09:D0:5A:45:8F:00:A0:48:4C:F1:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/2Oik6umwRegAQeG639P_wQPEV2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/bdd1e7-b79a-4c21-9ba9-f157c3294d40/1/Y7hCJUu9a_M-CdBaRY8AoEhM8W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.43.0/24
185.8.60.0/22
IPv6:
2a03:3440::/32
Signature Algorithm: sha256WithRSAEncryption
0a:fc:c7:49:41:18:aa:78:d0:56:42:dd:cf:19:4c:cd:2c:64:
9a:a7:47:5d:83:c4:fa:3b:8c:93:24:3b:a9:8c:57:98:c9:16:
2f:b3:b8:93:d8:0b:01:79:5d:49:ae:00:c2:ca:a2:24:c6:e4:
c4:ec:2b:a5:5b:16:90:46:ba:0d:42:4e:e4:d8:81:37:a6:eb:
91:08:b5:2f:99:5e:5d:00:aa:dc:ed:e6:c0:a8:41:36:5b:59:
4c:b9:cb:91:c1:42:4c:b6:39:a9:12:9f:95:e4:3e:0d:1b:47:
4a:5f:3e:37:be:d1:bb:0a:1a:25:81:77:80:f4:99:92:cc:1c:
9e:62:bc:1c:6f:23:07:a2:45:32:59:33:dd:b7:9c:43:f6:8c:
17:95:9a:96:66:04:8a:e0:3c:35:04:f2:52:83:a5:11:c1:d2:
69:1c:e7:41:80:dd:4c:34:a4:74:a8:db:4e:63:8b:c9:b6:18:
9a:ef:80:35:5c:4f:f2:4a:a3:a0:cb:95:70:cc:20:cb:ce:76:
ff:e9:e1:d5:20:0f:42:ae:f2:39:bb:86:14:5b:98:02:f4:d6:
00:03:59:21:4b:3d:8b:c1:d8:f3:a4:61:66:81:61:d7:c0:dd:
e6:be:cc:ae:e6:f0:96:e0:b6:02:f1:bd:64:ae:23:b6:c4:36:
72:b4:79:bc
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEMj9hPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2I4NDIyNTRiYmQ2YmYzM2UwOWQwNWE0NThmMDBhMDQ4NGNmMTZmMB4XDTIyMDEw
MTAzNTcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDhlOGE0ZWFlOWIw
NDVlODAwNDFlMWJhZGZkM2ZmYzEwM2M0NTc2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTeOGM891qEaf2pKwstN2k0WWQdD2OWV6wSn0jqNmBwEqeD
70EwHFmOKNnFRTEDq32kP+wAmK3pLji1oSm8Qjr4wDOjUZeYPqpmaY4oRJ0JChPA
xerbBxES9G8gfrrM8n+NUXJ/g5Hb09R7xIm2ujR/Y1aMcknycXyp1H4ZuYTaqTe+
sL9aSChlcdyRWzvHpGrBmK2WRqgFWuJo+vfVTqhd8PLnio3cXNaKBVfukydtj2nG
gXGE88Ggpj/fvfUo3TeLz3p9WjffcOH2pLwJ2GdD1CEbqtqAGnQPOYmZubd5Zegn
m0BZIr0pFAPR7tCKYm+jA7rJGSi/XPuTEvDrfx8CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTY6KTq6bBF6ABB4brf0//BA8RXZjAfBgNVHSMEGDAWgBRjuEIlS71r8z4J
0FpFjwCgSEzxbzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1k3aENKVXU5YV9NLUNkQmFSWThBb0VoTThXOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYmRkMWU3LWI3OWEtNGMyMS05YmE5LWYxNTdjMzI5NGQ0MC8x
LzJPaWs2dW13UmVnQVFlRzYzOVBfd1FQRVYyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YmRkMWU3LWI3OWEtNGMyMS05YmE5LWYxNTdjMzI5NGQ0MC8xL1k3aENKVXU5YV9N
LUNkQmFSWThBb0VoTThXOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAFvcKwMEArkIPDANBAIAAjAHAwUA
KgM0QDANBgkqhkiG9w0BAQsFAAOCAQEACvzHSUEYqnjQVkLdzxlMzSxkmqdHXYPE
+juMkyQ7qYxXmMkWL7O4k9gLAXldSa4AwsqiJMbkxOwrpVsWkEa6DUJO5NiBN6br
kQi1L5leXQCq3O3mwKhBNltZTLnLkcFCTLY5qRKfleQ+DRtHSl8+N77RuwoaJYF3
gPSZkswcnmK8HG8jB6JFMlkz3becQ/aMF5WalmYEiuA8NQTyUoOlEcHSaRznQYDd
TDSkdKjbTmOLybYYmu+ANVxP8kqjoMuVcMwgy852/+nh1SAPQq7yObuGFFuYAvTW
AANZIUs9i8HY86RhZoFh18Dd5r7MrubwluC2AvG9ZK4jtsQ2crR5vA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:40 2024 by rpki-client on console-fra.rpki-client.org