Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/OuD59qYyAyymsdQUKjSb6gM_53A.roa
File: OuD59qYyAyymsdQUKjSb6gM_53A.roa (raw, json)
Hash identifier: m2sIJJ2uB1d58pFYi/YN79LfnQ4E1puyXJaNGhMK2cM=
Subject key identifier: 3A:E0:F9:F6:A6:32:03:2C:A6:B1:D4:14:2A:34:9B:EA:03:3F:E7:70
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 40C8E3D2
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/OuD59qYyAyymsdQUKjSb6gM_53A.roa
Signing time: Sat 01 Jan 2022 08:00:28 +0000
ROA not before: Sat 01 Jan 2022 08:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12582
IP address blocks: 192.102.71.0/24 maxlen: 24
192.102.67.0/24 maxlen: 24
192.102.69.0/24 maxlen: 24
192.102.68.0/22 maxlen: 22
192.102.68.0/24 maxlen: 24
192.102.74.0/24 maxlen: 24
192.102.75.0/24 maxlen: 24
192.102.72.0/22 maxlen: 22
192.102.73.0/24 maxlen: 24
192.102.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1086907346 (0x40c8e3d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 1 08:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ae0f9f6a632032ca6b1d4142a349bea033fe770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:4a:1d:8b:60:e0:4d:a8:82:b7:75:f4:ea:
0c:9b:40:a3:71:15:9e:6c:be:35:15:43:28:98:18:
80:4d:45:2d:59:5e:a1:84:83:dc:28:13:c4:36:87:
29:8e:1f:fb:b9:3c:4e:7d:76:f9:9d:2d:89:74:51:
2d:50:6d:02:d6:da:ef:52:0e:76:47:45:f9:f1:77:
11:8a:b1:13:30:06:df:e2:15:24:30:87:fe:56:05:
d3:d9:0f:b1:39:71:03:f6:02:17:e1:eb:ac:50:dc:
b1:9b:1d:66:73:a0:03:cb:b5:54:21:86:b7:60:42:
29:3a:5f:c7:51:1f:eb:82:27:0b:ce:18:90:40:09:
90:c3:66:13:76:6a:33:c6:3b:1f:78:b9:20:c2:27:
56:54:8c:12:9b:89:11:0f:f9:99:cf:f6:38:8c:c3:
25:d0:65:a8:3f:4a:dc:14:ab:d1:8e:a2:4e:0f:9e:
28:13:53:b5:1a:09:94:72:1c:bc:4f:9a:aa:fb:6c:
26:6d:b4:0d:b9:67:f1:4e:bd:fd:ea:14:b8:60:df:
b7:c1:74:a6:72:d5:b0:c3:e2:40:8f:ad:0c:d5:44:
0a:55:c3:69:32:af:f8:2f:a9:59:f4:39:1a:3a:ec:
82:55:60:e6:67:10:06:a4:77:3f:76:72:88:44:49:
58:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E0:F9:F6:A6:32:03:2C:A6:B1:D4:14:2A:34:9B:EA:03:3F:E7:70
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/OuD59qYyAyymsdQUKjSb6gM_53A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.102.67.0-192.102.75.255
Signature Algorithm: sha256WithRSAEncryption
01:4d:03:68:fe:e2:c5:bc:05:9e:75:74:06:c3:84:97:18:a7:
53:91:7b:42:f9:8b:01:84:78:49:96:b7:f0:77:e5:a3:b7:26:
46:3c:4e:a0:d0:54:43:e3:39:4c:5d:21:1e:68:f3:1e:db:12:
a2:e9:37:49:9c:16:ef:13:63:16:65:54:f4:0f:b6:55:f7:aa:
38:fa:1b:6e:2c:45:c1:f3:46:bf:5e:fe:05:f9:76:17:cc:d3:
25:f9:68:68:13:db:a8:4f:dd:b3:25:8f:4c:e8:d0:c0:dd:2b:
aa:3f:fc:d8:b7:d2:94:bd:ef:16:c1:8b:2d:19:cf:69:be:2a:
fd:6e:e7:7d:11:46:ab:8e:9c:40:a7:77:52:61:c3:34:db:9e:
6a:d0:83:4a:3e:66:70:2f:71:96:92:7a:7c:aa:a0:82:1d:fb:
bf:4f:67:5d:a9:7c:2c:46:dc:1a:85:4b:72:a5:da:3a:b2:6d:
d5:2c:c7:ac:0d:fa:8d:5b:63:08:55:6e:90:bb:d0:81:ab:1a:
71:36:a1:bd:14:31:64:1e:63:aa:16:9e:04:07:5d:53:2a:15:
0f:74:36:53:48:d0:40:e8:bf:b1:3d:53:0d:81:8b:33:49:29:
97:7c:c2:d5:76:45:e9:b1:6a:6a:57:14:c2:4c:4a:7d:e5:cb:
92:c9:b6:77
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEQMjj0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MGRlZTFiMDZiYTI0YTY3NjIxM2Y5NzZhNGI1MGMxMjlkY2IyYjczMB4XDTIyMDEw
MTA4MDAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2FlMGY5ZjZhNjMy
MDMyY2E2YjFkNDE0MmEzNDliZWEwMzNmZTc3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJSCSh2LYOBNqIK3dfTqDJtAo3EVnmy+NRVDKJgYgE1FLVle
oYSD3CgTxDaHKY4f+7k8Tn12+Z0tiXRRLVBtAtba71IOdkdF+fF3EYqxEzAG3+IV
JDCH/lYF09kPsTlxA/YCF+HrrFDcsZsdZnOgA8u1VCGGt2BCKTpfx1Ef64InC84Y
kEAJkMNmE3ZqM8Y7H3i5IMInVlSMEpuJEQ/5mc/2OIzDJdBlqD9K3BSr0Y6iTg+e
KBNTtRoJlHIcvE+aqvtsJm20Dbln8U69/eoUuGDft8F0pnLVsMPiQI+tDNVEClXD
aTKv+C+pWfQ5GjrsglVg5mcQBqR3P3ZyiERJWFECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQ64Pn2pjIDLKax1BQqNJvqAz/ncDAfBgNVHSMEGDAWgBTg3uGwa6JKZ2IT
+XaktQwSncsrczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRON2hzR3VpU21kaUVfbDJwTFVNRXAzTEszTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYzIyZGM5LWM3YmEtNDE1Ni1hNzljLTE1ZTkwYmY4N2ZhYi8x
L091RDU5cVl5QXl5bXNkUVVLalNiNmdNXzUzQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
YzIyZGM5LWM3YmEtNDE1Ni1hNzljLTE1ZTkwYmY4N2ZhYi8xLzRON2hzR3VpU21k
aUVfbDJwTFVNRXAzTEszTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAwGZDAwQCwGZIMA0GCSqGSIb3
DQEBCwUAA4IBAQABTQNo/uLFvAWedXQGw4SXGKdTkXtC+YsBhHhJlrfwd+WjtyZG
PE6g0FRD4zlMXSEeaPMe2xKi6TdJnBbvE2MWZVT0D7ZV96o4+htuLEXB80a/Xv4F
+XYXzNMl+WhoE9uoT92zJY9M6NDA3SuqP/zYt9KUve8WwYstGc9pvir9bud9EUar
jpxAp3dSYcM0255q0INKPmZwL3GWknp8qqCCHfu/T2ddqXwsRtwahUtypdo6sm3V
LMesDfqNW2MIVW6Qu9CBqxpxNqG9FDFkHmOqFp4EB11TKhUPdDZTSNBA6L+xPVMN
gYszSSmXfMLVdkXpsWpqVxTCTEp95cuSybZ3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org