Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c56418-d1d6-4b43-aec0-b98a6901ea10/1/oyw-pMj8RNXMCvChHXv5IqjpUHc.roa
File: oyw-pMj8RNXMCvChHXv5IqjpUHc.roa (raw, json)
Hash identifier: EAG9M58Pj8LouGrKRBsJM6RqhX/xI13d6JaKmfwLFZc=
Subject key identifier: A3:2C:3E:A4:C8:FC:44:D5:CC:0A:F0:A1:1D:7B:F9:22:A8:E9:50:77
Certificate issuer: /CN=42c42723c1f75ba0be8935c72f61bfe5c5f4ce3c
Certificate serial: 239AA029
Authority key identifier: 42:C4:27:23:C1:F7:5B:A0:BE:89:35:C7:2F:61:BF:E5:C5:F4:CE:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsQnI8H3W6C-iTXHL2G_5cX0zjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c56418-d1d6-4b43-aec0-b98a6901ea10/1/oyw-pMj8RNXMCvChHXv5IqjpUHc.roa
Signing time: Sat 01 Jan 2022 13:54:16 +0000
ROA not before: Sat 01 Jan 2022 13:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13127
IP address blocks: 37.220.150.0/24 maxlen: 24
37.220.149.0/24 maxlen: 24
37.220.148.0/24 maxlen: 24
37.220.151.0/24 maxlen: 24
37.220.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 597336105 (0x239aa029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c42723c1f75ba0be8935c72f61bfe5c5f4ce3c
Validity
Not Before: Jan 1 13:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a32c3ea4c8fc44d5cc0af0a11d7bf922a8e95077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f6:8e:88:fa:a8:ec:5a:b3:4e:22:4a:1a:60:
d0:30:03:36:8a:25:e1:e8:00:ea:6b:f5:a8:6f:04:
50:ee:3a:74:97:e9:ad:14:fb:91:10:18:e5:4b:dd:
28:14:3e:f7:ad:db:a2:57:98:fa:7c:b5:e3:36:2f:
53:66:6e:a8:9f:74:9b:a9:bf:4a:58:a5:81:0c:67:
fb:9a:24:f0:e5:52:d8:37:d6:2e:26:84:15:d6:f2:
06:6c:2e:74:07:f2:33:b3:8c:d4:7c:de:ce:0b:80:
13:59:fb:00:3a:a4:11:64:6b:59:6c:7c:d7:5a:80:
ec:e4:6d:17:db:44:3e:f1:99:36:13:03:69:86:ad:
26:26:7b:3e:c5:02:4d:17:0b:8d:fd:ac:6e:18:20:
3d:10:34:7e:36:6e:09:ef:97:30:5e:ea:b1:06:85:
43:2d:74:50:ee:79:b0:1f:4b:b7:b3:96:46:9d:e6:
91:a6:b2:db:86:60:73:dd:6d:97:f0:9f:20:ba:14:
e2:64:b0:8c:dd:c7:7a:4f:9d:54:4b:b6:ac:40:e0:
36:5c:d7:1f:d1:38:11:2f:5c:c4:bf:1d:9d:69:2d:
e5:97:b5:ee:b7:67:a6:ab:30:7b:da:e8:e8:a9:29:
52:43:5a:33:4f:92:44:19:fb:54:d4:4b:09:c0:ca:
5a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2C:3E:A4:C8:FC:44:D5:CC:0A:F0:A1:1D:7B:F9:22:A8:E9:50:77
X509v3 Authority Key Identifier:
keyid:42:C4:27:23:C1:F7:5B:A0:BE:89:35:C7:2F:61:BF:E5:C5:F4:CE:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsQnI8H3W6C-iTXHL2G_5cX0zjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c56418-d1d6-4b43-aec0-b98a6901ea10/1/oyw-pMj8RNXMCvChHXv5IqjpUHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c56418-d1d6-4b43-aec0-b98a6901ea10/1/QsQnI8H3W6C-iTXHL2G_5cX0zjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.147.0-37.220.151.255
Signature Algorithm: sha256WithRSAEncryption
88:33:07:3b:0a:71:44:61:37:76:bd:f1:8f:20:2c:5c:64:bd:
1f:a1:34:41:05:42:7c:2c:19:39:a5:74:97:59:ad:08:d5:f7:
2c:d9:69:79:d4:7e:ec:33:1b:b6:34:3a:bc:29:29:e7:e0:56:
bb:97:a7:ff:f6:70:21:b9:e7:03:81:5d:42:74:c2:e4:58:24:
91:f5:b2:c4:60:2a:75:eb:bd:74:71:1f:33:8d:8b:c9:a6:35:
a1:76:33:fa:60:01:dd:32:11:94:cb:bf:15:96:d2:27:3a:53:
dc:4c:34:02:a0:15:36:23:a5:f8:7b:ba:80:9d:09:b2:4f:fa:
53:62:cf:19:b6:bc:29:0d:d0:89:a6:08:00:b9:4c:25:9e:aa:
ae:4d:32:91:23:ff:5d:bd:fa:b1:f8:7e:63:26:c1:7b:03:6a:
f4:92:3f:1e:37:01:62:cb:e1:09:25:81:a6:dd:f3:83:9e:c1:
cf:44:94:31:ca:ac:32:3a:72:cc:6b:29:c4:e6:9b:d6:0b:62:
4f:2d:68:25:21:02:93:db:f0:fd:80:2b:af:74:4d:40:2d:ae:
3a:10:99:99:be:bb:73:e5:dc:5f:8f:15:17:62:bc:55:43:e9:
75:50:30:c0:63:80:53:ee:e8:d5:66:ad:ac:f7:bf:74:70:4d:
37:ac:11:9d
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEI5qgKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MmM0MjcyM2MxZjc1YmEwYmU4OTM1YzcyZjYxYmZlNWM1ZjRjZTNjMB4XDTIyMDEw
MTEzNTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTMyYzNlYTRjOGZj
NDRkNWNjMGFmMGExMWQ3YmY5MjJhOGU5NTA3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL32joj6qOxas04iShpg0DADNool4egA6mv1qG8EUO46dJfp
rRT7kRAY5UvdKBQ+963boleY+ny14zYvU2ZuqJ90m6m/SlilgQxn+5ok8OVS2DfW
LiaEFdbyBmwudAfyM7OM1HzezguAE1n7ADqkEWRrWWx811qA7ORtF9tEPvGZNhMD
aYatJiZ7PsUCTRcLjf2sbhggPRA0fjZuCe+XMF7qsQaFQy10UO55sB9Lt7OWRp3m
kaay24Zgc91tl/CfILoU4mSwjN3Hek+dVEu2rEDgNlzXH9E4ES9cxL8dnWkt5Ze1
7rdnpqswe9ro6KkpUkNaM0+SRBn7VNRLCcDKWqMCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSjLD6kyPxE1cwK8KEde/kiqOlQdzAfBgNVHSMEGDAWgBRCxCcjwfdboL6J
NccvYb/lxfTOPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FzUW5JOEgzVzZDLWlUWEhMMkdfNWNYMHpqdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYzU2NDE4LWQxZDYtNGI0My1hZWMwLWI5OGE2OTAxZWExMC8x
L295dy1wTWo4Uk5YTUN2Q2hIWHY1SXFqcFVIYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YzU2NDE4LWQxZDYtNGI0My1hZWMwLWI5OGE2OTAxZWExMC8xL1FzUW5JOEgzVzZD
LWlUWEhMMkdfNWNYMHpqdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAJdyTAwQDJdyQMA0GCSqGSIb3
DQEBCwUAA4IBAQCIMwc7CnFEYTd2vfGPICxcZL0foTRBBUJ8LBk5pXSXWa0I1fcs
2Wl51H7sMxu2NDq8KSnn4Fa7l6f/9nAhuecDgV1CdMLkWCSR9bLEYCp16710cR8z
jYvJpjWhdjP6YAHdMhGUy78VltInOlPcTDQCoBU2I6X4e7qAnQmyT/pTYs8Ztrwp
DdCJpggAuUwlnqquTTKRI/9dvfqx+H5jJsF7A2r0kj8eNwFiy+EJJYGm3fODnsHP
RJQxyqwyOnLMaynE5pvWC2JPLWglIQKT2/D9gCuvdE1ALa46EJmZvrtz5dxfjxUX
YrxVQ+l1UDDAY4BT7ujVZq2s9790cE03rBGd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:02 2024 by rpki-client on console-ams.rpki-client.org