Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oPGog_wK8_JnCeQ4bxLYYvSdFrM.roa
File: oPGog_wK8_JnCeQ4bxLYYvSdFrM.roa (raw, json)
Hash identifier: tdyfnk92RGfvbL5IJI/he8Hhp608PAQ10QvxykZy5A4=
Subject key identifier: A0:F1:A8:83:FC:0A:F3:F2:67:09:E4:38:6F:12:D8:62:F4:9D:16:B3
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B45EB72
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oPGog_wK8_JnCeQ4bxLYYvSdFrM.roa
Signing time: Sat 01 Jan 2022 13:04:57 +0000
ROA not before: Sat 01 Jan 2022 13:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39669
IP address blocks: 89.44.225.0/24 maxlen: 24
89.44.224.0/24 maxlen: 24
89.44.227.0/24 maxlen: 24
89.44.230.0/24 maxlen: 24
89.44.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189131634 (0xb45eb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0f1a883fc0af3f26709e4386f12d862f49d16b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c5:4f:70:57:d6:b6:2e:f9:1f:0d:40:8d:26:
6a:78:36:09:c4:70:08:11:69:8a:e0:08:56:9c:44:
5a:61:42:5d:82:aa:9a:cc:56:e7:25:a1:ca:a9:b7:
7f:df:fd:c4:90:f6:75:75:73:93:ec:ad:7a:98:48:
2a:da:ff:11:9e:99:16:f3:ba:e5:cb:50:4b:93:12:
42:d2:e6:97:f7:85:b7:15:f0:ca:ca:05:2c:54:ca:
1b:26:c5:62:e8:6a:55:b7:f1:d4:46:df:b1:a2:76:
f6:49:ea:c6:4d:8e:05:df:ca:bc:63:6e:d5:ec:49:
6e:94:c3:8f:ee:72:64:0a:92:bc:a4:8d:bf:3c:8f:
db:1d:c8:8a:96:19:e9:3c:a5:81:8a:0f:c7:84:cf:
c1:b9:44:b6:4f:fd:74:d1:a7:65:cc:41:10:f7:84:
af:6e:80:3a:24:97:8e:3e:ee:59:1a:ff:64:ad:a7:
82:1e:9f:15:e5:72:08:a8:9b:f3:8c:bb:72:71:62:
80:67:be:74:18:5f:06:fc:69:f3:ec:32:4b:1b:8a:
98:9e:87:23:70:e4:ee:31:48:af:80:46:32:7a:60:
49:5d:c1:23:f6:08:8b:c4:83:14:24:3a:61:b5:90:
47:4e:cf:3d:73:a2:ac:20:5e:0c:08:45:19:59:ef:
ec:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F1:A8:83:FC:0A:F3:F2:67:09:E4:38:6F:12:D8:62:F4:9D:16:B3
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oPGog_wK8_JnCeQ4bxLYYvSdFrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.224.0/23
89.44.227.0/24
89.44.230.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:9b:eb:a1:c3:08:ff:4e:86:33:ee:21:58:14:e5:72:6c:6c:
e9:b5:14:c6:51:63:65:c1:bb:95:ba:d2:7a:25:1d:25:9d:a0:
04:dc:b3:32:8b:f4:b9:79:ce:af:40:fe:82:13:3e:17:6c:af:
eb:f5:5e:21:d8:39:46:12:5d:b1:37:cd:db:68:f3:f2:e0:4a:
33:de:fc:00:89:77:51:ca:3a:70:c5:b8:fe:0e:4b:df:71:c4:
a4:f8:b3:eb:9a:d5:69:ab:4f:4f:74:92:1b:e9:96:4f:ec:83:
6e:66:d0:a7:12:2e:7d:65:dd:01:1f:5d:a6:4f:89:11:42:f3:
41:c5:85:f3:f3:45:9e:8c:b0:c1:da:53:46:51:77:5c:9d:23:
bc:44:70:30:45:26:23:05:f7:34:a0:f7:aa:49:a4:ef:05:a7:
95:68:88:bb:92:ad:8a:9b:d1:ce:60:09:53:f6:5e:22:ad:e8:
e9:85:40:e9:92:d3:0d:89:36:ed:52:d6:76:0b:68:a6:65:c4:
09:fe:6b:ed:3f:62:7a:5d:8c:67:18:d0:e2:d7:bc:54:96:3a:
14:0d:10:fb:dd:84:2f:cc:c8:3e:2f:26:98:48:5b:da:7b:34:
a7:3e:d5:46:36:71:23:53:32:f3:a1:ea:1b:93:de:fc:71:81:
b0:a2:2d:76
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEC0XrcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU4OTUyZDM5MzkzNWYwZDNiY2U4MTRmZDkxNzhkMDQ2OTNhZWI5MB4XDTIyMDEw
MTEzMDQ1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTBmMWE4ODNmYzBh
ZjNmMjY3MDllNDM4NmYxMmQ4NjJmNDlkMTZiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOvFT3BX1rYu+R8NQI0mang2CcRwCBFpiuAIVpxEWmFCXYKq
msxW5yWhyqm3f9/9xJD2dXVzk+ytephIKtr/EZ6ZFvO65ctQS5MSQtLml/eFtxXw
ysoFLFTKGybFYuhqVbfx1EbfsaJ29knqxk2OBd/KvGNu1exJbpTDj+5yZAqSvKSN
vzyP2x3IipYZ6TylgYoPx4TPwblEtk/9dNGnZcxBEPeEr26AOiSXjj7uWRr/ZK2n
gh6fFeVyCKib84y7cnFigGe+dBhfBvxp8+wySxuKmJ6HI3Dk7jFIr4BGMnpgSV3B
I/YIi8SDFCQ6YbWQR07PPXOirCBeDAhFGVnv7NcCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSg8aiD/Arz8mcJ5DhvEthi9J0WszAfBgNVHSMEGDAWgBT+WJUtOTk18NO8
6BT9kXjQRpOuuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19saVZMVGs1TmZEVHZPZ1VfWkY0MEVhVHJyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8x
L29QR29nX3dLOF9KbkNlUTRieExZWXZTZEZyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8xL19saVZMVGs1TmZE
VHZPZ1VfWkY0MEVhVHJyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAVks4AMEAFks4wMEAVks5jANBgkq
hkiG9w0BAQsFAAOCAQEArpvrocMI/06GM+4hWBTlcmxs6bUUxlFjZcG7lbrSeiUd
JZ2gBNyzMov0uXnOr0D+ghM+F2yv6/VeIdg5RhJdsTfN22jz8uBKM978AIl3Uco6
cMW4/g5L33HEpPiz65rVaatPT3SSG+mWT+yDbmbQpxIufWXdAR9dpk+JEULzQcWF
8/NFnoywwdpTRlF3XJ0jvERwMEUmIwX3NKD3qkmk7wWnlWiIu5KtipvRzmAJU/Ze
Iq3o6YVA6ZLTDYk27VLWdgtopmXECf5r7T9iel2MZxjQ4te8VJY6FA0Q+92EL8zI
Pi8mmEhb2ns0pz7VRjZxI1My86HqG5Pe/HGBsKItdg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org