Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/956e7d-6b93-42fb-993f-6b0038875a14/1/OW4Ry1d6-sP6_9A7MzjmSmKDnR8.roa
File: OW4Ry1d6-sP6_9A7MzjmSmKDnR8.roa (raw, json)
Hash identifier: nfbpdWEYqJdDEaveJCpexap9a02QYk9zbclixPpRlhk=
Subject key identifier: 39:6E:11:CB:57:7A:FA:C3:FA:FF:D0:3B:33:38:E6:4A:62:83:9D:1F
Certificate issuer: /CN=7b75d372039b1ab2d416ad83bf6914058411c2a2
Certificate serial: 092B0655
Authority key identifier: 7B:75:D3:72:03:9B:1A:B2:D4:16:AD:83:BF:69:14:05:84:11:C2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e3XTcgObGrLUFq2Dv2kUBYQRwqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/956e7d-6b93-42fb-993f-6b0038875a14/1/OW4Ry1d6-sP6_9A7MzjmSmKDnR8.roa
Signing time: Sat 02 Jul 2022 05:44:25 +0000
ROA not before: Sat 02 Jul 2022 05:44:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49099
IP address blocks: 109.94.166.0/24 maxlen: 24
109.94.167.0/24 maxlen: 24
109.94.166.0/23 maxlen: 23
193.34.246.0/24 maxlen: 24
193.34.244.0/24 maxlen: 24
193.34.244.0/23 maxlen: 23
193.34.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153814613 (0x92b0655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b75d372039b1ab2d416ad83bf6914058411c2a2
Validity
Not Before: Jul 2 05:44:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=396e11cb577afac3faffd03b3338e64a62839d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b2:4d:e7:be:89:13:f1:1a:9e:47:c9:90:a8:
1b:f4:45:1b:48:04:fa:2f:26:e5:ca:95:3f:da:00:
52:7e:97:0d:90:2f:32:d7:fd:e4:34:1b:fa:a0:2e:
8d:67:c0:fc:e9:cb:e8:f8:fe:a0:df:68:df:27:41:
53:4b:fd:bc:78:8c:cd:71:60:33:8e:f6:8f:40:45:
8c:43:f7:7d:15:4c:a4:4f:37:17:da:85:a7:c6:8d:
a4:1d:22:29:6a:af:79:f7:e0:66:03:81:94:c1:bb:
86:33:fc:30:3c:9b:cf:1d:79:c5:e4:b5:3e:8e:96:
80:71:1c:87:68:11:40:40:d1:cd:6e:da:bb:ea:45:
b1:f5:46:d0:49:ec:06:ad:06:78:9d:fd:03:1d:b9:
f8:a2:b2:7d:97:25:9b:8b:95:ef:f8:12:45:2a:aa:
6b:7c:3a:63:08:89:4e:e3:f7:c1:58:f3:55:f4:87:
03:06:2c:c2:1c:f3:91:56:73:fb:f4:33:c3:36:cd:
75:b5:58:f7:2a:60:7d:52:7f:a8:36:ef:bc:b0:38:
15:88:7e:10:85:57:6b:24:9c:a9:22:ec:da:1d:dc:
4e:a9:50:87:62:15:da:41:fa:89:fe:a5:42:ae:93:
92:f5:38:bc:7b:e2:94:f6:99:bb:a1:d2:13:a5:5f:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6E:11:CB:57:7A:FA:C3:FA:FF:D0:3B:33:38:E6:4A:62:83:9D:1F
X509v3 Authority Key Identifier:
keyid:7B:75:D3:72:03:9B:1A:B2:D4:16:AD:83:BF:69:14:05:84:11:C2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3XTcgObGrLUFq2Dv2kUBYQRwqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/956e7d-6b93-42fb-993f-6b0038875a14/1/OW4Ry1d6-sP6_9A7MzjmSmKDnR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/956e7d-6b93-42fb-993f-6b0038875a14/1/e3XTcgObGrLUFq2Dv2kUBYQRwqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.94.166.0/23
193.34.244.0-193.34.246.255
Signature Algorithm: sha256WithRSAEncryption
65:b2:8f:9c:97:a5:d6:b0:56:26:57:f8:ff:76:06:51:5d:85:
e9:1a:41:2a:fa:1a:92:3e:86:45:ed:61:58:31:b3:b6:9a:5d:
89:b9:92:e8:35:10:ba:9b:e8:ee:b0:50:ad:cc:62:68:09:cc:
13:15:fc:e7:b3:41:44:fd:fd:10:07:90:51:41:21:18:8e:5a:
86:09:2e:ee:9b:cc:fd:ce:b0:22:a0:0a:5b:26:28:8a:7e:46:
b6:71:ba:28:3a:26:ae:ec:c9:db:15:42:78:3b:63:b8:f7:4e:
c8:a1:80:21:5b:5a:5a:26:e9:68:59:c2:3e:b6:93:72:fe:e0:
92:a4:57:ea:b6:cb:56:2b:01:ab:c1:a1:15:60:32:12:2b:9c:
df:ff:3d:5c:33:dd:ff:67:95:96:f1:6b:c3:b7:60:f0:12:fb:
72:a0:76:86:88:3f:b8:ce:35:b0:e4:0f:66:56:65:28:1e:12:
30:12:d8:24:b6:63:c5:9c:20:a8:bf:96:2d:eb:40:05:ed:79:
d9:cb:b2:74:34:a3:9d:6f:a4:57:35:cb:bc:b2:98:42:9e:ce:
7c:fd:e6:01:63:18:20:53:04:48:5c:e1:1b:51:72:49:df:a5:
dd:d8:37:32:48:70:1c:92:87:19:b6:b8:8f:e7:e2:b8:94:fe:
43:7b:c0:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIECSsGVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Yjc1ZDM3MjAzOWIxYWIyZDQxNmFkODNiZjY5MTQwNTg0MTFjMmEyMB4XDTIyMDcw
MjA1NDQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzk2ZTExY2I1Nzdh
ZmFjM2ZhZmZkMDNiMzMzOGU2NGE2MjgzOWQxZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIGyTee+iRPxGp5HyZCoG/RFG0gE+i8m5cqVP9oAUn6XDZAv
Mtf95DQb+qAujWfA/OnL6Pj+oN9o3ydBU0v9vHiMzXFgM472j0BFjEP3fRVMpE83
F9qFp8aNpB0iKWqveffgZgOBlMG7hjP8MDybzx15xeS1Po6WgHEch2gRQEDRzW7a
u+pFsfVG0EnsBq0GeJ39Ax25+KKyfZclm4uV7/gSRSqqa3w6YwiJTuP3wVjzVfSH
AwYswhzzkVZz+/QzwzbNdbVY9ypgfVJ/qDbvvLA4FYh+EIVXayScqSLs2h3cTqlQ
h2IV2kH6if6lQq6TkvU4vHvilPaZu6HSE6VfT5ECAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBQ5bhHLV3r6w/r/0DszOOZKYoOdHzAfBgNVHSMEGDAWgBR7ddNyA5sastQW
rYO/aRQFhBHCojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2UzWFRjZ09iR3JMVUZxMkR2MmtVQllRUndxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvOTU2ZTdkLTZiOTMtNDJmYi05OTNmLTZiMDAzODg3NWExNC8x
L09XNFJ5MWQ2LXNQNl85QTdNemptU21LRG5SOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
OTU2ZTdkLTZiOTMtNDJmYi05OTNmLTZiMDAzODg3NWExNC8xL2UzWFRjZ09iR3JM
VUZxMkR2MmtVQllRUndxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEAW1epjAMAwQCwSL0AwQAwSL2MA0G
CSqGSIb3DQEBCwUAA4IBAQBlso+cl6XWsFYmV/j/dgZRXYXpGkEq+hqSPoZF7WFY
MbO2ml2JuZLoNRC6m+jusFCtzGJoCcwTFfzns0FE/f0QB5BRQSEYjlqGCS7um8z9
zrAioApbJiiKfka2cbooOiau7MnbFUJ4O2O4907IoYAhW1paJuloWcI+tpNy/uCS
pFfqtstWKwGrwaEVYDISK5zf/z1cM93/Z5WW8WvDt2DwEvtyoHaGiD+4zjWw5A9m
VmUoHhIwEtgktmPFnCCov5Yt60AF7XnZy7J0NKOdb6RXNcu8sphCns58/eYBYxgg
UwRIXOEbUXJJ36Xd2DcySHAckocZtriP5+K4lP5De8DD
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:15 2023 by rpki-client on console-fra.rpki-client.org