Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/X7gd75Znnk_g4xeV7xSHZZ_Osrg.roa
File: X7gd75Znnk_g4xeV7xSHZZ_Osrg.roa (raw, json)
Hash identifier: D0p6PmSA12EVy5EhLwdpzK09LKJ0h/Y+awlZivt+XkM=
Subject key identifier: 5F:B8:1D:EF:96:67:9E:4F:E0:E3:17:95:EF:14:87:65:9F:CE:B2:B8
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 35F5184D
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/X7gd75Znnk_g4xeV7xSHZZ_Osrg.roa
Signing time: Sat 01 Jan 2022 03:02:16 +0000
ROA not before: Sat 01 Jan 2022 03:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43366
IP address blocks: 82.150.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905254989 (0x35f5184d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 03:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fb81def96679e4fe0e31795ef1487659fceb2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5b:d9:bb:54:b0:7b:c7:41:70:d4:e9:60:1a:
d5:6b:6a:5b:b5:49:19:c2:7c:84:1d:4b:fd:e4:a7:
8b:58:76:fa:b8:ed:b0:fb:14:d9:3d:61:5e:27:1f:
7b:ce:0c:51:74:bc:38:70:18:b5:fb:63:e6:69:e2:
69:51:78:64:10:c8:b6:05:4a:67:1c:32:8e:c2:f4:
5b:a8:ee:cc:6d:bf:f3:c5:2b:f8:3b:48:f5:e3:8e:
96:7b:1f:fe:0e:fe:1a:66:67:b2:f0:56:95:f5:bc:
af:d1:d8:bb:64:8e:3a:4e:8a:b4:e5:4d:d6:84:05:
2b:bf:59:99:57:d6:ce:5e:bf:53:0e:27:34:dc:c2:
c4:28:c0:8c:d1:ca:fd:11:d1:77:9f:3e:55:72:70:
08:eb:52:0c:24:b1:26:1c:a7:d2:7e:87:ad:8d:05:
b9:11:3e:8b:32:a8:75:87:84:09:ce:28:a4:e2:b1:
29:72:0e:da:88:a6:9f:bc:86:04:7f:10:0e:88:b6:
b8:34:dc:25:41:aa:f5:0b:fe:85:50:20:8f:6c:22:
ce:af:01:85:0e:df:1f:9a:d2:ef:18:cd:f3:38:65:
5a:3f:4a:0a:d9:3b:3b:3d:0b:66:95:3e:c1:bf:8e:
54:0f:39:aa:c3:95:fd:33:b7:d0:4e:50:33:5a:27:
b5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B8:1D:EF:96:67:9E:4F:E0:E3:17:95:EF:14:87:65:9F:CE:B2:B8
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/X7gd75Znnk_g4xeV7xSHZZ_Osrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.136.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9d:14:dc:4c:22:ec:06:66:4b:e8:a9:bd:1c:a1:ef:f7:b1:
73:b5:26:5d:bc:46:75:1e:77:c9:67:ab:f4:04:11:36:b6:8a:
7f:e0:2b:62:33:26:4c:15:e1:34:40:dd:e7:67:88:43:ae:3a:
67:93:d5:3a:fc:67:57:8e:17:c8:06:ca:b4:07:9a:90:ad:51:
5c:b5:d1:40:3f:a1:e4:42:52:d9:d0:5a:3c:47:19:47:0e:1a:
16:1f:a7:f0:11:5a:e3:6e:bf:7a:6b:c7:16:d1:d0:35:66:97:
b3:0c:19:da:d8:28:be:3e:7d:cc:f5:d3:ab:85:b9:59:0b:9e:
8a:59:20:ea:ad:dd:70:7b:48:d4:6f:cd:a8:52:54:11:ea:2f:
66:05:27:10:b5:48:73:bc:18:11:88:2b:d7:bf:b9:69:31:29:
6c:9b:90:22:45:79:e3:6f:65:0b:2b:0e:1f:ce:97:23:bf:73:
5a:7d:a6:29:58:5f:ce:c0:d1:a4:8f:65:ef:dc:90:24:cf:f4:
5d:8a:4d:59:3b:b7:7e:65:f6:9b:e5:ee:cd:19:79:8d:6b:51:
58:4f:0e:5b:67:dc:45:31:17:6b:2e:b8:db:3c:0f:86:e5:7a:
1a:3e:02:cc:cd:1c:d3:2e:77:21:96:95:e6:60:e6:7f:da:db:
ae:25:ca:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENfUYTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MDFmZTMwZmM2YjRiMGQwZjZkYjRlMWJmYmJkNTAxOTVkY2E1NzVjMB4XDTIyMDEw
MTAzMDIxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWZiODFkZWY5NjY3
OWU0ZmUwZTMxNzk1ZWYxNDg3NjU5ZmNlYjJiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL9b2btUsHvHQXDU6WAa1WtqW7VJGcJ8hB1L/eSni1h2+rjt
sPsU2T1hXicfe84MUXS8OHAYtftj5mniaVF4ZBDItgVKZxwyjsL0W6juzG2/88Ur
+DtI9eOOlnsf/g7+GmZnsvBWlfW8r9HYu2SOOk6KtOVN1oQFK79ZmVfWzl6/Uw4n
NNzCxCjAjNHK/RHRd58+VXJwCOtSDCSxJhyn0n6HrY0FuRE+izKodYeECc4opOKx
KXIO2oimn7yGBH8QDoi2uDTcJUGq9Qv+hVAgj2wizq8BhQ7fH5rS7xjN8zhlWj9K
Ctk7Oz0LZpU+wb+OVA85qsOV/TO30E5QM1ontUkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfuB3vlmeeT+DjF5XvFIdln86yuDAfBgNVHSMEGDAWgBQgH+MPxrSw0Pbb
Thv7vVAZXcpXXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lCX2pEOGEwc05EMjIwNGItNzFRR1YzS1Yxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvOGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8x
L1g3Z2Q3NVpubmtfZzR4ZVY3eFNIWlpfT3NyZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
OGQ4MGY5LTQ5NGUtNGFiYi05OTU2LWZjMTIxYzgwMGIzMC8xL0lCX2pEOGEwc05E
MjIwNGItNzFRR1YzS1Yxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFKWiDANBgkqhkiG9w0BAQsFAAOC
AQEAJ50U3Ewi7AZmS+ipvRyh7/exc7UmXbxGdR53yWer9AQRNraKf+ArYjMmTBXh
NEDd52eIQ646Z5PVOvxnV44XyAbKtAeakK1RXLXRQD+h5EJS2dBaPEcZRw4aFh+n
8BFa426/emvHFtHQNWaXswwZ2tgovj59zPXTq4W5WQueilkg6q3dcHtI1G/NqFJU
EeovZgUnELVIc7wYEYgr17+5aTEpbJuQIkV5429lCysOH86XI79zWn2mKVhfzsDR
pI9l79yQJM/0XYpNWTu3fmX2m+XuzRl5jWtRWE8OW2fcRTEXay642zwPhuV6Gj4C
zM0c0y53IZaV5mDmf9rbriXK3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:13 2024 by rpki-client on console-fra.rpki-client.org