Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/OG5sWDxF2DI2F3PsW8ruh06uzkk.roa
File: OG5sWDxF2DI2F3PsW8ruh06uzkk.roa (raw, json)
Hash identifier: uLLOw5Ip3K4I/spauEtH6uc3kmPZ+eDnUYd2wGa+0+Q=
Subject key identifier: 38:6E:6C:58:3C:45:D8:32:36:17:73:EC:5B:CA:EE:87:4E:AE:CE:49
Certificate issuer: /CN=44f885220f1719f5837cb5a36fa62f3f537e8e3f
Certificate serial: 0398388D
Authority key identifier: 44:F8:85:22:0F:17:19:F5:83:7C:B5:A3:6F:A6:2F:3F:53:7E:8E:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPiFIg8XGfWDfLWjb6YvP1N-jj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/OG5sWDxF2DI2F3PsW8ruh06uzkk.roa
Signing time: Sat 01 Jan 2022 05:59:29 +0000
ROA not before: Sat 01 Jan 2022 05:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44548
IP address blocks: 91.220.199.0/24 maxlen: 24
195.93.156.0/24 maxlen: 24
195.93.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60307597 (0x398388d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f885220f1719f5837cb5a36fa62f3f537e8e3f
Validity
Not Before: Jan 1 05:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=386e6c583c45d832361773ec5bcaee874eaece49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:7f:ed:64:64:e8:3b:d7:7a:97:cb:90:d0:
72:98:cd:b2:64:1b:78:b6:de:5d:40:8e:6b:1d:00:
0f:61:e6:d2:ed:c5:e1:9a:fb:16:f2:c0:52:05:d0:
af:a7:14:6a:01:70:e1:d5:ab:9f:69:40:bb:e2:45:
e8:4a:d1:6e:ae:09:f8:d6:71:08:51:d3:c2:12:68:
74:9c:0a:07:1a:3f:93:86:da:f2:51:65:ae:e2:a6:
a4:7a:43:9b:42:9d:5c:2d:49:74:27:e8:7d:3a:e9:
d2:b3:00:bb:9e:88:95:fb:df:f2:68:61:54:78:d7:
a4:07:b0:1d:a5:a4:99:49:2c:f2:e2:1c:3f:07:d0:
21:ab:3f:84:0f:93:12:bc:c3:80:c3:6f:e4:46:4d:
9c:c3:c6:95:4f:c8:7a:34:bb:3a:7a:0b:96:ac:74:
29:d1:e5:46:11:bf:84:94:93:47:61:7f:b0:1c:5c:
d2:28:95:e2:7d:b4:62:82:c1:59:a0:a8:39:60:84:
c3:e9:95:66:97:3a:15:39:bd:8b:bc:29:fa:ed:e5:
7a:39:a8:ad:e3:bb:43:00:44:99:77:47:5f:f3:6d:
e7:8f:c4:05:be:d9:83:86:f9:bc:3c:d9:ee:24:dc:
ec:54:15:17:28:b8:cb:7b:d3:40:db:15:60:7a:96:
d1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6E:6C:58:3C:45:D8:32:36:17:73:EC:5B:CA:EE:87:4E:AE:CE:49
X509v3 Authority Key Identifier:
keyid:44:F8:85:22:0F:17:19:F5:83:7C:B5:A3:6F:A6:2F:3F:53:7E:8E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPiFIg8XGfWDfLWjb6YvP1N-jj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/OG5sWDxF2DI2F3PsW8ruh06uzkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bab194-5e24-4ead-8f49-37ed99143aae/1/RPiFIg8XGfWDfLWjb6YvP1N-jj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.199.0/24
195.93.156.0/23
Signature Algorithm: sha256WithRSAEncryption
43:a2:0b:a0:79:78:d6:26:da:f4:ea:77:13:38:48:89:55:2d:
2b:b5:33:4b:7a:95:f1:17:72:e8:70:48:3c:11:08:56:89:5c:
90:e8:c5:96:7d:2d:4b:67:1b:b7:ad:0e:ba:8b:f5:02:df:42:
9b:d9:e1:95:2c:62:b9:ac:84:80:72:5f:67:df:22:8e:07:a9:
04:e0:c0:32:ef:45:b0:6e:2f:8a:e0:f1:de:91:e0:b2:87:64:
d9:33:56:ea:8a:49:04:4a:71:df:1e:02:9e:96:89:08:4d:0a:
e9:1f:ed:cb:bc:d3:54:96:19:17:63:e9:3a:6f:8b:3b:f8:d7:
17:e4:89:38:99:8a:d8:70:cc:b5:2f:a1:5d:8a:8c:63:46:b4:
48:35:51:0e:42:07:0a:56:57:00:a8:7d:b6:9d:e7:23:01:9a:
ef:a8:7c:e6:1b:a1:78:14:02:b3:42:75:42:c1:5d:25:f8:1e:
b5:d6:80:89:6b:ed:fe:8c:b3:51:fa:f4:d5:b0:82:a6:4e:f4:
47:e2:c0:41:cb:52:be:10:bb:6f:d6:5c:26:e2:b4:ea:6d:47:
a9:20:ec:b9:20:09:01:c9:68:46:d0:3f:3a:e6:6e:e9:ad:0c:
81:de:b7:18:3f:db:34:44:91:48:ec:95:b9:e1:c2:a4:a0:e5:
c5:51:3a:6f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA5g4jTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NGY4ODUyMjBmMTcxOWY1ODM3Y2I1YTM2ZmE2MmYzZjUzN2U4ZTNmMB4XDTIyMDEw
MTA1NTkyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzg2ZTZjNTgzYzQ1
ZDgzMjM2MTc3M2VjNWJjYWVlODc0ZWFlY2U0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/+f+1kZOg713qXy5DQcpjNsmQbeLbeXUCOax0AD2Hm0u3F
4Zr7FvLAUgXQr6cUagFw4dWrn2lAu+JF6ErRbq4J+NZxCFHTwhJodJwKBxo/k4ba
8lFlruKmpHpDm0KdXC1JdCfofTrp0rMAu56Ilfvf8mhhVHjXpAewHaWkmUks8uIc
PwfQIas/hA+TErzDgMNv5EZNnMPGlU/IejS7OnoLlqx0KdHlRhG/hJSTR2F/sBxc
0iiV4n20YoLBWaCoOWCEw+mVZpc6FTm9i7wp+u3lejmoreO7QwBEmXdHX/Nt54/E
Bb7Zg4b5vDzZ7iTc7FQVFyi4y3vTQNsVYHqW0SMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ4bmxYPEXYMjYXc+xbyu6HTq7OSTAfBgNVHSMEGDAWgBRE+IUiDxcZ9YN8
taNvpi8/U36OPzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JQaUZJZzhYR2ZXRGZMV2piNll2UDFOLWpqOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvYmFiMTk0LTVlMjQtNGVhZC04ZjQ5LTM3ZWQ5OTE0M2FhZS8x
L09HNXNXRHhGMkRJMkYzUHNXOHJ1aDA2dXpray5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
YmFiMTk0LTVlMjQtNGVhZC04ZjQ5LTM3ZWQ5OTE0M2FhZS8xL1JQaUZJZzhYR2ZX
RGZMV2piNll2UDFOLWpqOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvcxwMEAcNdnDANBgkqhkiG9w0B
AQsFAAOCAQEAQ6ILoHl41iba9Op3EzhIiVUtK7UzS3qV8Rdy6HBIPBEIVolckOjF
ln0tS2cbt60Ouov1At9Cm9nhlSxiuayEgHJfZ98ijgepBODAMu9FsG4viuDx3pHg
sodk2TNW6opJBEpx3x4CnpaJCE0K6R/ty7zTVJYZF2PpOm+LO/jXF+SJOJmK2HDM
tS+hXYqMY0a0SDVRDkIHClZXAKh9tp3nIwGa76h85huheBQCs0J1QsFdJfgetdaA
iWvt/oyzUfr01bCCpk70R+LAQctSvhC7b9ZcJuK06m1HqSDsuSAJAcloRtA/OuZu
6a0Mgd63GD/bNESRSOyVueHCpKDlxVE6bw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:17 2024 by rpki-client on console-fra.rpki-client.org