Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Oc5AdRK42tI7s7wQmClvTIqz30M.roa
File: Oc5AdRK42tI7s7wQmClvTIqz30M.roa (raw, json)
Hash identifier: A5T+wXgb5DsgqetnRGwDEElhecs0Sn7zWqCOp9VjeJU=
Subject key identifier: 39:CE:40:75:12:B8:DA:D2:3B:B3:BC:10:98:29:6F:4C:8A:B3:DF:43
Certificate issuer: /CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Certificate serial: 06FDC73F
Authority key identifier: B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Oc5AdRK42tI7s7wQmClvTIqz30M.roa
Signing time: Sat 01 Jan 2022 13:59:51 +0000
ROA not before: Sat 01 Jan 2022 13:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197033
IP address blocks: 46.18.224.0/21 maxlen: 21
185.33.88.0/22 maxlen: 22
91.216.43.0/24 maxlen: 24
185.24.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117294911 (0x6fdc73f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Validity
Not Before: Jan 1 13:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39ce407512b8dad23bb3bc1098296f4c8ab3df43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:f7:d9:5e:44:cc:29:13:f8:38:2c:36:7f:
60:60:48:62:93:b9:b4:b1:f6:5d:96:bc:e2:28:da:
45:35:9f:8c:8e:06:13:f2:20:13:1b:62:f6:50:ab:
a8:6c:23:0c:ab:95:c5:99:93:f9:63:62:a1:7c:df:
3c:61:55:df:d5:2f:08:ee:a5:2c:f6:50:26:53:94:
92:c0:f8:a1:53:bb:fa:3a:d7:75:38:e0:66:25:9c:
78:cc:fe:ea:03:df:58:b4:f9:70:a6:26:06:08:87:
a5:84:e7:28:c9:27:9b:da:c9:e3:90:a6:21:cc:d0:
42:af:3a:38:6e:e0:65:9b:1a:df:f7:eb:be:c1:ca:
c3:05:f6:d5:1d:61:9b:2d:28:53:97:09:b6:c6:36:
86:15:b9:5a:f9:db:b5:3c:f3:4f:60:a8:e1:29:af:
ce:06:da:95:41:a0:b5:a9:40:fd:79:21:bf:d8:db:
c1:07:8f:a8:ee:da:51:be:2e:21:c4:02:0f:b5:15:
09:8a:1d:63:21:c9:80:d7:bd:ee:00:55:a9:6c:68:
a3:7e:d4:7d:15:84:0b:59:b8:05:25:ae:e7:7f:ac:
f6:b9:77:7d:c8:a7:06:af:6d:52:8e:15:18:0c:87:
da:50:44:92:88:b4:40:4e:ef:71:97:0e:00:f3:17:
d3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CE:40:75:12:B8:DA:D2:3B:B3:BC:10:98:29:6F:4C:8A:B3:DF:43
X509v3 Authority Key Identifier:
keyid:B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Oc5AdRK42tI7s7wQmClvTIqz30M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/s9XsFRbubcGdHlw5mMt-emRvcVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.224.0/21
91.216.43.0/24
185.24.152.0/22
185.33.88.0/22
Signature Algorithm: sha256WithRSAEncryption
16:99:46:6a:da:c0:c1:60:4f:be:3b:12:37:b8:ce:4a:21:b9:
c5:da:19:b5:ca:7a:8c:5c:9c:6b:22:64:b3:9e:e4:0e:fb:72:
5a:f3:3c:3c:c5:aa:86:84:52:82:22:a8:92:94:ae:b8:3b:d2:
f0:27:97:b5:34:05:af:1f:f6:f1:56:83:84:36:a2:5d:e4:ce:
b4:fb:84:c9:b8:8b:80:da:43:79:64:27:73:ff:67:0d:e8:fd:
47:62:8d:8e:35:5b:53:d3:57:e7:96:6b:c0:bf:e3:df:0b:cf:
b0:60:c8:6f:f6:e8:bb:0a:c2:68:06:ee:62:a7:63:04:fe:98:
4a:11:08:10:be:24:8c:1a:a9:bd:5a:30:1d:fc:c7:3a:22:27:
b6:b0:7c:db:c5:c4:50:29:6f:71:0f:27:79:8c:ff:42:b6:d5:
22:54:11:7a:62:af:75:4c:a7:06:f8:51:91:53:1c:51:72:f8:
6e:cd:76:42:fb:cf:11:c9:11:66:85:9d:3b:2a:eb:5c:ca:a6:
2f:7c:3b:4c:9d:63:4b:32:60:62:c2:a3:ca:4a:4d:1d:3d:01:
68:a8:08:d5:98:36:4e:0f:df:d6:21:02:23:3b:d0:d4:ba:11:
9b:d5:f6:fc:da:98:41:57:3f:85:de:15:38:1c:59:10:38:6d:
84:30:cf:30
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBv3HPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
M2Q1ZWMxNTE2ZWU2ZGMxOWQxZTVjMzk5OGNiN2U3YTY0NmY3MTVhMB4XDTIyMDEw
MTEzNTk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzljZTQwNzUxMmI4
ZGFkMjNiYjNiYzEwOTgyOTZmNGM4YWIzZGY0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkC99leRMwpE/g4LDZ/YGBIYpO5tLH2XZa84ijaRTWfjI4G
E/IgExti9lCrqGwjDKuVxZmT+WNioXzfPGFV39UvCO6lLPZQJlOUksD4oVO7+jrX
dTjgZiWceMz+6gPfWLT5cKYmBgiHpYTnKMknm9rJ45CmIczQQq86OG7gZZsa3/fr
vsHKwwX21R1hmy0oU5cJtsY2hhW5WvnbtTzzT2Co4SmvzgbalUGgtalA/Xkhv9jb
wQePqO7aUb4uIcQCD7UVCYodYyHJgNe97gBVqWxoo37UfRWEC1m4BSWu53+s9rl3
fcinBq9tUo4VGAyH2lBEkoi0QE7vcZcOAPMX01cCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBQ5zkB1Erja0juzvBCYKW9MirPfQzAfBgNVHSMEGDAWgBSz1ewVFu5twZ0e
XDmYy356ZG9xWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3M5WHNGUmJ1YmNHZEhsdzVtTXQtZW1SdmNWby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvM2FkN2NjLTNjMDgtNGI3Mi04NzBhLTZjMzA1YTZkYmFiOS8x
L09jNUFkUks0MnRJN3M3d1FtQ2x2VElxejMwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
M2FkN2NjLTNjMDgtNGI3Mi04NzBhLTZjMzA1YTZkYmFiOS8xL3M5WHNGUmJ1YmNH
ZEhsdzVtTXQtZW1SdmNWby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAy4S4AMEAFvYKwMEArkYmAMEArkh
WDANBgkqhkiG9w0BAQsFAAOCAQEAFplGatrAwWBPvjsSN7jOSiG5xdoZtcp6jFyc
ayJks57kDvtyWvM8PMWqhoRSgiKokpSuuDvS8CeXtTQFrx/28VaDhDaiXeTOtPuE
ybiLgNpDeWQnc/9nDej9R2KNjjVbU9NX55ZrwL/j3wvPsGDIb/bouwrCaAbuYqdj
BP6YShEIEL4kjBqpvVowHfzHOiIntrB828XEUClvcQ8neYz/QrbVIlQRemKvdUyn
BvhRkVMcUXL4bs12QvvPEckRZoWdOyrrXMqmL3w7TJ1jSzJgYsKjykpNHT0BaKgI
1Zg2Tg/f1iECIzvQ1LoRm9X2/NqYQVc/hd4VOBxZEDhthDDPMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:18 2024 by rpki-client on console-ams.rpki-client.org