Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/oC5dOEX2ayDpW-rowHQLLBjqYLQ.roa
File: oC5dOEX2ayDpW-rowHQLLBjqYLQ.roa (raw, json)
Hash identifier: TCIwaOIq4+t8E7XVsiyhhgKHYouF/L5szhyL5Fap7/g=
Subject key identifier: A0:2E:5D:38:45:F6:6B:20:E9:5B:EA:E8:C0:74:0B:2C:18:EA:60:B4
Certificate issuer: /CN=1ab5c22bf53b705c7a2bb273ba73e3f0c0595b7b
Certificate serial: 08BE45AE
Authority key identifier: 1A:B5:C2:2B:F5:3B:70:5C:7A:2B:B2:73:BA:73:E3:F0:C0:59:5B:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GrXCK_U7cFx6K7JzunPj8MBZW3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/oC5dOEX2ayDpW-rowHQLLBjqYLQ.roa
Signing time: Mon 25 Apr 2022 01:06:40 +0000
ROA not before: Mon 25 Apr 2022 01:06:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.128.112.0/24 maxlen: 24
185.128.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146687406 (0x8be45ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ab5c22bf53b705c7a2bb273ba73e3f0c0595b7b
Validity
Not Before: Apr 25 01:06:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a02e5d3845f66b20e95beae8c0740b2c18ea60b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:af:a7:97:8c:c0:0b:eb:90:41:6c:a1:b5:
ca:4c:46:de:72:b0:31:98:18:7d:9c:2f:22:d0:c5:
bd:4c:26:45:af:ca:5b:ce:42:8e:46:dd:0e:08:e8:
fa:ed:dd:82:19:32:80:76:e3:e0:9e:07:01:ca:4a:
24:d7:53:e3:ef:45:89:67:87:0d:7b:16:20:b2:0e:
d9:c9:c3:a2:15:2c:ac:c9:7f:04:41:a3:29:f9:59:
62:a5:16:56:13:10:f8:3b:60:a4:01:5d:36:27:49:
8e:e7:62:f0:77:31:2f:88:2e:db:8c:37:ed:b1:61:
9a:ac:63:30:30:d0:c1:0b:af:e7:ca:1e:10:f0:14:
39:59:e9:08:7e:f4:57:66:7f:63:1c:d1:7a:2c:a6:
c2:46:33:c9:74:3a:10:2e:6f:25:3d:4e:90:44:f0:
0c:94:84:fd:53:2a:d8:e8:ef:b3:51:4c:7e:e4:82:
26:07:e0:26:07:dd:48:43:3e:ea:d6:d6:7f:dc:ae:
94:26:79:ed:cc:4b:80:26:85:3c:17:91:ac:0e:59:
fd:73:b0:40:12:3c:7b:0a:81:c0:b0:f4:30:21:c0:
45:8d:49:f1:cd:e7:f8:f7:d1:c2:cf:a9:cb:3a:6a:
53:58:fa:99:00:b5:a4:48:fb:b9:ca:a0:cb:da:45:
36:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2E:5D:38:45:F6:6B:20:E9:5B:EA:E8:C0:74:0B:2C:18:EA:60:B4
X509v3 Authority Key Identifier:
keyid:1A:B5:C2:2B:F5:3B:70:5C:7A:2B:B2:73:BA:73:E3:F0:C0:59:5B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GrXCK_U7cFx6K7JzunPj8MBZW3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/oC5dOEX2ayDpW-rowHQLLBjqYLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/GrXCK_U7cFx6K7JzunPj8MBZW3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.112.0/24
185.128.115.0/24
Signature Algorithm: sha256WithRSAEncryption
21:80:e7:a0:58:02:bb:80:52:36:4c:1a:a0:f6:6f:51:5f:ce:
64:70:8f:96:a7:5f:3a:c2:18:bd:87:0d:91:29:26:7a:8d:8d:
c4:0c:7d:50:0b:57:16:0c:09:e9:5f:81:7a:60:97:5c:10:f8:
e3:b1:a5:d8:fc:e3:ae:6e:b1:f8:fc:c9:c9:85:51:97:0f:76:
60:77:e5:00:97:3e:1f:1c:40:ff:2a:cb:d0:bd:f2:7d:83:2b:
f8:29:9f:52:0f:5c:0e:b3:b3:c1:b8:e3:23:aa:78:ba:ea:ce:
2a:ec:ed:f6:76:1d:d3:5f:6a:79:13:57:f3:9a:f7:ee:f5:44:
4a:35:c9:3c:0d:e7:44:f7:1d:27:cd:74:e4:34:3f:b1:02:8c:
c3:71:53:df:98:c2:4c:4e:dc:56:4e:65:b6:b1:9a:83:b1:b9:
d5:58:ae:9c:b5:81:7b:6f:41:12:93:17:8b:6d:be:bb:1d:4f:
2b:a8:d2:67:a0:75:93:34:ed:ae:8f:e0:6e:3b:a2:30:54:3a:
49:4c:08:fd:8b:c3:27:ed:e8:bd:f5:c2:78:3f:aa:5e:19:33:
4d:ef:c9:55:86:f2:ea:ff:88:6b:32:b9:d3:ea:8d:69:af:9e:
65:f5:64:49:1a:f1:86:0d:58:dd:51:6b:b4:0f:d5:75:85:7f:
86:e9:13:17
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECL5FrjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YWI1YzIyYmY1M2I3MDVjN2EyYmIyNzNiYTczZTNmMGMwNTk1YjdiMB4XDTIyMDQy
NTAxMDY0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTAyZTVkMzg0NWY2
NmIyMGU5NWJlYWU4YzA3NDBiMmMxOGVhNjBiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6Cr6eXjMAL65BBbKG1ykxG3nKwMZgYfZwvItDFvUwmRa/K
W85CjkbdDgjo+u3dghkygHbj4J4HAcpKJNdT4+9FiWeHDXsWILIO2cnDohUsrMl/
BEGjKflZYqUWVhMQ+DtgpAFdNidJjudi8HcxL4gu24w37bFhmqxjMDDQwQuv58oe
EPAUOVnpCH70V2Z/YxzReiymwkYzyXQ6EC5vJT1OkETwDJSE/VMq2Ojvs1FMfuSC
JgfgJgfdSEM+6tbWf9yulCZ57cxLgCaFPBeRrA5Z/XOwQBI8ewqBwLD0MCHARY1J
8c3n+PfRws+pyzpqU1j6mQC1pEj7ucqgy9pFNlMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSgLl04RfZrIOlb6ujAdAssGOpgtDAfBgNVHSMEGDAWgBQatcIr9TtwXHor
snO6c+PwwFlbezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dyWENLX1U3Y0Z4Nks3Snp1blBqOE1CWlczcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2IvN2M4YmY0LTZhYjYtNDE5OS1iM2E3LWI0YjFmNmY5OGE5MC8x
L29DNWRPRVgyYXlEcFctcm93SFFMTEJqcVlMUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Iv
N2M4YmY0LTZhYjYtNDE5OS1iM2E3LWI0YjFmNmY5OGE5MC8xL0dyWENLX1U3Y0Z4
Nks3Snp1blBqOE1CWlczcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALmAcAMEALmAczANBgkqhkiG9w0B
AQsFAAOCAQEAIYDnoFgCu4BSNkwaoPZvUV/OZHCPlqdfOsIYvYcNkSkmeo2NxAx9
UAtXFgwJ6V+BemCXXBD447Gl2Pzjrm6x+PzJyYVRlw92YHflAJc+HxxA/yrL0L3y
fYMr+CmfUg9cDrOzwbjjI6p4uurOKuzt9nYd019qeRNX85r37vVESjXJPA3nRPcd
J8105DQ/sQKMw3FT35jCTE7cVk5ltrGag7G51ViunLWBe29BEpMXi22+ux1PK6jS
Z6B1kzTtro/gbjuiMFQ6SUwI/YvDJ+3ovfXCeD+qXhkzTe/JVYby6v+IazK50+qN
aa+eZfVkSRrxhg1Y3VFrtA/VdYV/hukTFw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org