Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/O0OcfW66IPkOoTF8fJn6rqQcIRw.roa
File: O0OcfW66IPkOoTF8fJn6rqQcIRw.roa (raw, json)
Hash identifier: ndQO/lzlkatyS18cBu/dz179gFN6Jiy6kgEVxGeDUBc=
Subject key identifier: 3B:43:9C:7D:6E:BA:20:F9:0E:A1:31:7C:7C:99:FA:AE:A4:1C:21:1C
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 01833B0D3AA770BC53DBFB72D831870D5EB1
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/O0OcfW66IPkOoTF8fJn6rqQcIRw.roa
Signing time: Wed 14 Sep 2022 08:11:06 +0000
ROA not before: Wed 14 Sep 2022 08:11:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.65.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3b:0d:3a:a7:70:bc:53:db:fb:72:d8:31:87:0d:5e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Sep 14 08:11:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b439c7d6eba20f90ea1317c7c99faaea41c211c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c7:cc:84:77:f1:ab:b2:ff:a4:7d:03:85:1a:
8a:03:b2:2c:17:c3:b0:e5:1d:18:a4:d1:77:a3:7f:
ab:a0:89:c0:bc:c8:12:c0:c8:d2:1f:9c:46:a6:d5:
36:4a:ef:4b:29:af:bc:7f:db:a7:bc:95:82:08:a9:
b1:ce:d6:e0:41:29:38:2d:e3:78:56:93:63:b7:a2:
27:aa:a7:00:e9:1d:09:97:3f:08:aa:84:a2:a2:8f:
c3:c5:f5:bd:d9:28:74:55:c2:43:fd:1a:84:36:60:
8a:b2:63:9a:81:bf:b0:c3:52:96:92:a8:41:cc:53:
13:be:c3:e9:8c:68:77:93:13:42:e4:39:c9:c0:4b:
92:8f:37:52:fa:a4:ef:f7:fc:77:13:92:c2:3d:08:
c7:b3:93:a9:72:9f:58:98:96:e5:9e:9f:d5:c5:38:
ac:12:58:6c:98:6a:66:eb:9f:c5:d5:4d:4e:23:38:
1a:ea:30:e8:14:e8:2f:09:ed:fb:e6:e5:dd:3f:8c:
43:51:32:3f:7b:9d:b7:3e:bd:0c:e1:6e:c8:f1:fc:
44:1d:07:2f:98:4f:d0:05:5d:c7:62:48:d1:ab:91:
c2:5c:37:de:5b:37:91:2e:43:2b:3c:29:a0:d1:eb:
97:a5:44:3d:b1:8d:77:dc:1a:fe:6d:65:3e:e7:3c:
e7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:43:9C:7D:6E:BA:20:F9:0E:A1:31:7C:7C:99:FA:AE:A4:1C:21:1C
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/O0OcfW66IPkOoTF8fJn6rqQcIRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.68.0/24
Signature Algorithm: sha256WithRSAEncryption
47:5f:59:9d:05:29:6c:7e:29:9e:73:ac:63:72:5c:a3:53:af:
06:75:48:44:e3:54:72:3b:33:3a:0d:95:a3:10:eb:b7:6f:be:
5c:89:b5:18:c3:7d:06:7c:1d:1c:c0:1e:23:a6:10:1c:40:48:
4c:2c:8f:ef:e6:49:ee:88:4e:1e:a4:bc:c6:c8:d4:71:bf:5c:
84:1f:45:fb:58:fa:19:ec:95:bd:0a:4e:78:a7:3e:14:ea:59:
7f:b1:1f:25:2d:9a:f9:1a:69:f7:ee:7c:2e:12:64:42:87:b1:
fe:35:ac:73:42:da:77:22:c1:da:47:9d:47:92:71:23:a8:cd:
1e:bf:b0:be:f7:2d:f3:12:d5:68:9c:26:4a:ad:28:3e:11:61:
43:76:6d:14:93:1f:87:c8:3a:c8:56:45:9a:c6:ae:2c:7b:7a:
bd:ea:22:a6:ce:10:13:51:5a:28:f2:55:79:42:ef:51:b9:82:
30:69:74:9b:be:b5:97:fc:26:62:2c:6c:01:df:9c:ef:78:99:
33:94:7f:59:79:19:80:53:16:3f:07:40:b0:d4:97:ea:90:0f:
02:30:6b:b2:2c:39:de:3c:e0:69:c0:62:d5:cf:18:bf:23:19:
46:1d:ee:e6:76:24:5a:7c:6c:62:e3:46:7f:e6:b0:7b:33:3a:
4f:c1:f6:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM7DTqncLxT2/ty2DGHDV6xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjNGVkOTQyZTVjNzQyZTc3YmZiOWJlYjk1NGY4NzI1MzRm
NTI4NDgwHhcNMjIwOTE0MDgxMTA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjQzOWM3ZDZlYmEyMGY5MGVhMTMxN2M3Yzk5ZmFhZWE0MWMyMTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMfMhHfxq7L/pH0DhRqKA7IsF8Ow
5R0YpNF3o3+roInAvMgSwMjSH5xGptU2Su9LKa+8f9unvJWCCKmxztbgQSk4LeN4
VpNjt6InqqcA6R0Jlz8IqoSioo/DxfW92Sh0VcJD/RqENmCKsmOagb+ww1KWkqhB
zFMTvsPpjGh3kxNC5DnJwEuSjzdS+qTv9/x3E5LCPQjHs5Opcp9YmJblnp/VxTis
ElhsmGpm65/F1U1OIzga6jDoFOgvCe375uXdP4xDUTI/e523Pr0M4W7I8fxEHQcv
mE/QBV3HYkjRq5HCXDfeWzeRLkMrPCmg0euXpUQ9sY133Br+bWU+5zznuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDtDnH1uuiD5DqExfHyZ+q6kHCEcMB8GA1UdIwQY
MBaAFDxO2ULlx0Lne/ub65VPhyU09ShIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2Et
NzczNDRiY2M5MTkxLzEvTzBPY2ZXNjZJUGtPb1RGOGZKbjZycVFjSVJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2EtNzczNDRiY2M5MTkx
LzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUFEMA0G
CSqGSIb3DQEBCwUAA4IBAQBHX1mdBSlsfimec6xjclyjU68GdUhE41RyOzM6DZWj
EOu3b75cibUYw30GfB0cwB4jphAcQEhMLI/v5knuiE4epLzGyNRxv1yEH0X7WPoZ
7JW9Ck54pz4U6ll/sR8lLZr5Gmn37nwuEmRCh7H+NaxzQtp3IsHaR51HknEjqM0e
v7C+9y3zEtVonCZKrSg+EWFDdm0Ukx+HyDrIVkWaxq4se3q96iKmzhATUVoo8lV5
Qu9RuYIwaXSbvrWX/CZiLGwB35zveJkzlH9ZeRmAUxY/B0Cw1JfqkA8CMGuyLDne
POBpwGLVzxi/IxlGHe7mdiRafGxi40Z/5rB7MzpPwfZ4
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:12 2023 by rpki-client on console-fra.rpki-client.org