Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/OHYqb29J-safjDAoPDk6zBWP358.roa
File: OHYqb29J-safjDAoPDk6zBWP358.roa (raw, json)
Hash identifier: zJIoOdnFryEmM02sEEWo/n1EActo6yQ72I6UGcJrGDM=
Subject key identifier: 38:76:2A:6F:6F:49:FA:C6:9F:8C:30:28:3C:39:3A:CC:15:8F:DF:9F
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10C39C59
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/OHYqb29J-safjDAoPDk6zBWP358.roa
Signing time: Sat 01 Jan 2022 13:02:21 +0000
ROA not before: Sat 01 Jan 2022 13:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202141
IP address blocks: 88.199.95.0/24 maxlen: 24
88.199.94.0/24 maxlen: 24
82.160.140.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281255001 (0x10c39c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38762a6f6f49fac69f8c30283c393acc158fdf9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:12:f5:9e:bd:80:4f:81:52:4e:7c:d8:92:40:
31:d1:a8:65:ea:27:70:87:de:f5:fa:4d:41:af:07:
a3:ba:eb:de:e1:6b:f4:9e:fd:40:c6:af:ae:aa:dc:
1f:0f:b9:5d:e9:e9:c3:2f:0e:f1:53:45:1d:74:ba:
3d:5f:87:c0:8b:34:17:0b:be:cb:98:6a:02:3c:74:
a4:1b:8b:6c:4a:22:e9:9f:21:21:c9:4b:70:bf:dd:
03:f1:c3:a6:4e:9f:81:e9:4a:c6:41:f6:5b:c9:67:
24:67:f4:1c:57:10:66:88:24:d5:37:49:c4:e9:50:
24:0c:96:4b:e1:b2:bc:7c:03:73:1e:68:8b:d4:0e:
65:5e:9a:b2:e6:85:d9:75:0d:57:0c:cd:73:17:6a:
9e:45:bd:36:c3:ce:cc:02:e5:14:39:03:4a:42:8b:
aa:68:c1:6f:22:d8:57:b9:ec:23:b2:60:4f:58:18:
99:e2:e6:f3:7b:04:07:fa:ac:d8:68:b8:c5:2c:fb:
73:d0:21:11:69:cc:b4:af:96:74:e0:d3:3a:f0:13:
5d:f8:49:7e:44:f8:e3:a6:ee:86:63:52:33:22:97:
8f:e5:5f:41:91:08:c4:6b:77:cf:ee:95:e8:88:da:
94:d3:da:6f:73:a8:09:01:c0:f5:3c:0b:e3:61:67:
7f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:76:2A:6F:6F:49:FA:C6:9F:8C:30:28:3C:39:3A:CC:15:8F:DF:9F
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/OHYqb29J-safjDAoPDk6zBWP358.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.140.0/23
88.199.94.0/23
Signature Algorithm: sha256WithRSAEncryption
34:05:47:6b:11:b9:96:20:69:ec:19:cd:61:b7:54:7e:fa:37:
38:2a:c7:8e:57:6c:2f:44:e0:3d:a7:42:0e:0e:18:7e:25:cc:
2a:50:85:64:14:c3:e1:ad:56:61:a5:68:d8:a9:b0:ca:f3:55:
c3:76:2b:c5:30:1c:14:f2:45:72:31:e9:18:d5:bb:59:d5:62:
d4:da:cb:39:6b:a5:7b:a9:d5:4b:cb:6a:4e:5b:38:dd:d6:48:
f7:d7:95:f2:05:6c:6b:45:6c:64:66:01:6a:e0:35:8e:b5:56:
3c:1b:36:da:32:33:b6:de:de:d7:ff:39:3f:16:b9:88:a2:d0:
a7:26:e9:47:94:e1:c9:35:2c:9c:7b:34:d6:72:5c:82:ad:75:
b9:0e:15:1e:94:c6:ed:69:36:0b:80:95:3c:d3:c1:d8:b7:b0:
26:7f:93:cd:05:97:f3:67:2e:1b:67:7b:68:a4:0b:a2:69:73:
66:2a:f6:d9:8e:bd:26:2a:31:a2:bb:42:fd:60:20:12:80:88:
57:b8:83:81:0e:bf:cd:61:19:8e:79:f2:1a:13:a1:59:16:36:
5b:76:d8:12:8c:e5:f4:18:b5:4f:a8:23:fb:91:21:7a:91:47:
ee:15:39:91:25:4d:d2:a1:0e:54:2b:91:31:d0:75:83:b3:f1:
bf:72:25:41
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEEMOcWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzkzMDFkY2M3ZmFlNGY3Y2UwMWU0OTg3YTc3Y2I4MmEzMzZhYmZmMB4XDTIyMDEw
MTEzMDIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzg3NjJhNmY2ZjQ5
ZmFjNjlmOGMzMDI4M2MzOTNhY2MxNThmZGY5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUS9Z69gE+BUk582JJAMdGoZeoncIfe9fpNQa8Ho7rr3uFr
9J79QMavrqrcHw+5Xenpwy8O8VNFHXS6PV+HwIs0Fwu+y5hqAjx0pBuLbEoi6Z8h
IclLcL/dA/HDpk6fgelKxkH2W8lnJGf0HFcQZogk1TdJxOlQJAyWS+GyvHwDcx5o
i9QOZV6asuaF2XUNVwzNcxdqnkW9NsPOzALlFDkDSkKLqmjBbyLYV7nsI7JgT1gY
meLm83sEB/qs2Gi4xSz7c9AhEWnMtK+WdODTOvATXfhJfkT446buhmNSMyKXj+Vf
QZEIxGt3z+6V6IjalNPab3OoCQHA9TwL42Fnf18CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ4dipvb0n6xp+MMCg8OTrMFY/fnzAfBgNVHSMEGDAWgBQXkwHcx/rk984B
5Jh6d8uCozar/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y1TUIzTWY2NVBmT0FlU1llbmZMZ3FNMnFfOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8x
L09IWXFiMjlKLXNhZmpEQW9QRGs2ekJXUDM1OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8xL0Y1TUIzTWY2NVBm
T0FlU1llbmZMZ3FNMnFfOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVKgjAMEAVjHXjANBgkqhkiG9w0B
AQsFAAOCAQEANAVHaxG5liBp7BnNYbdUfvo3OCrHjldsL0TgPadCDg4YfiXMKlCF
ZBTD4a1WYaVo2KmwyvNVw3YrxTAcFPJFcjHpGNW7WdVi1NrLOWule6nVS8tqTls4
3dZI99eV8gVsa0VsZGYBauA1jrVWPBs22jIztt7e1/85Pxa5iKLQpybpR5ThyTUs
nHs01nJcgq11uQ4VHpTG7Wk2C4CVPNPB2LewJn+TzQWX82cuG2d7aKQLomlzZir2
2Y69JioxortC/WAgEoCIV7iDgQ6/zWEZjnnyGhOhWRY2W3bYEozl9Bi1T6gj+5Eh
epFH7hU5kSVN0qEOVCuRMdB1g7Pxv3IlQQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:56 2023 by rpki-client on console-ams.rpki-client.org