Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oeFTNB7gpoyhKv6AeNvbcuIzbfw.roa
File: oeFTNB7gpoyhKv6AeNvbcuIzbfw.roa (raw, json)
Hash identifier: pluP9v4iSaWMeZVpLS4MUb3t8JU/sMIAbk5AFN71MoU=
Subject key identifier: A1:E1:53:34:1E:E0:A6:8C:A1:2A:FE:80:78:DB:DB:72:E2:33:6D:FC
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A6AACB6
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oeFTNB7gpoyhKv6AeNvbcuIzbfw.roa
Signing time: Sat 01 Jan 2022 04:51:49 +0000
ROA not before: Sat 01 Jan 2022 04:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34963
IP address blocks: 88.220.255.128/25 maxlen: 25
195.136.140.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980069558 (0x3a6aacb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1e153341ee0a68ca12afe8078dbdb72e2336dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1b:b3:87:c0:da:fc:af:2f:93:9a:9e:fc:c6:
5c:21:d7:0d:c7:5a:b8:7d:7b:95:61:6e:08:3d:3f:
18:72:b1:d6:84:74:bc:42:d8:a2:55:51:0f:c8:19:
cc:07:34:61:cd:2f:4a:ef:b2:e5:cc:50:9e:57:38:
66:a1:d4:9a:26:41:e4:2a:b8:9b:52:57:5e:8f:a6:
a6:f7:81:5f:49:bd:72:b7:6c:87:c6:cb:b5:34:3d:
8a:a7:ba:0b:71:0b:46:a5:52:38:13:e1:bf:c7:83:
63:b2:12:22:7d:d7:7e:33:31:07:48:05:42:ff:f7:
9b:22:0a:bf:9f:a0:25:24:1c:5d:18:a5:84:11:77:
46:70:1d:34:1c:61:8c:ee:08:63:96:4f:23:fd:e6:
76:88:0b:f6:54:b8:b6:4f:e6:cd:57:ff:9c:3d:17:
3e:f8:41:d7:0e:66:cd:aa:48:f1:fc:2b:8e:49:56:
33:2b:96:a2:f3:ff:cb:a7:84:a0:49:fc:27:f9:88:
07:d2:ee:b8:af:b4:33:90:5f:79:28:4f:45:f3:ab:
51:c5:6c:02:fa:56:29:0e:74:95:ec:b6:25:0c:7f:
0e:c5:64:16:59:2c:43:da:de:aa:09:ac:f6:ce:f4:
f1:76:38:46:af:6c:78:f6:48:91:14:a7:cf:6a:fe:
af:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E1:53:34:1E:E0:A6:8C:A1:2A:FE:80:78:DB:DB:72:E2:33:6D:FC
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oeFTNB7gpoyhKv6AeNvbcuIzbfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.255.128/25
195.136.140.0/22
Signature Algorithm: sha256WithRSAEncryption
07:5f:63:ee:39:0d:17:b5:a6:a5:9a:e8:0e:7a:8c:e7:27:66:
f5:20:89:bb:81:03:b4:3f:03:15:17:79:7d:03:42:2e:0c:a6:
5c:f5:85:7e:78:15:42:95:16:72:59:5c:b4:41:5a:50:e5:f7:
cd:da:ec:fc:19:7b:42:b7:e9:66:9e:a2:aa:af:a8:93:16:7c:
ad:e4:94:01:11:df:39:a1:e1:b7:9f:7e:76:83:54:98:9e:45:
39:0b:52:a1:98:86:3e:ad:20:92:e7:83:ec:dd:f8:f8:25:9c:
59:8b:34:eb:36:5a:d0:f9:40:c9:a1:a2:3b:78:29:58:8f:af:
82:eb:18:89:3a:3c:7c:20:a3:d2:e4:9c:60:33:50:0e:53:49:
e3:0f:06:04:cb:9c:b2:e1:9f:ed:cb:d9:93:4b:f9:12:6b:71:
a0:8a:f3:aa:6d:ef:7a:e6:4e:0f:db:94:5c:5e:e6:c0:61:37:
69:fe:e1:bd:da:dc:80:a9:29:14:ff:b2:f4:d3:80:06:aa:2c:
7b:a8:7b:25:f5:a3:9a:26:6c:a4:ee:16:b0:68:c5:83:6a:39:
de:ba:e1:76:6a:2a:6e:90:c8:36:7a:d1:ca:b6:be:a1:4e:2c:
26:7c:c2:64:31:08:c1:bb:19:23:11:f0:35:19:10:76:cc:77:
c2:f7:3b:96
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEOmqstjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTFlMTUzMzQxZWUw
YTY4Y2ExMmFmZTgwNzhkYmRiNzJlMjMzNmRmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUbs4fA2vyvL5OanvzGXCHXDcdauH17lWFuCD0/GHKx1oR0
vELYolVRD8gZzAc0Yc0vSu+y5cxQnlc4ZqHUmiZB5Cq4m1JXXo+mpveBX0m9crds
h8bLtTQ9iqe6C3ELRqVSOBPhv8eDY7ISIn3XfjMxB0gFQv/3myIKv5+gJSQcXRil
hBF3RnAdNBxhjO4IY5ZPI/3mdogL9lS4tk/mzVf/nD0XPvhB1w5mzapI8fwrjklW
MyuWovP/y6eEoEn8J/mIB9LuuK+0M5BfeShPRfOrUcVsAvpWKQ50ley2JQx/DsVk
FlksQ9reqgms9s708XY4Rq9sePZIkRSnz2r+rysCAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBSh4VM0HuCmjKEq/oB429ty4jNt/DAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
L29lRlROQjdncG95aEt2NkFlTnZiY3VJemJmdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAm
BggrBgEFBQcBBwEB/wQXMBUwEwQCAAEwDQMFB1jc/4ADBALDiIwwDQYJKoZIhvcN
AQELBQADggEBAAdfY+45DRe1pqWa6A56jOcnZvUgibuBA7Q/AxUXeX0DQi4Mplz1
hX54FUKVFnJZXLRBWlDl983a7PwZe0K36WaeoqqvqJMWfK3klAER3zmh4beffnaD
VJieRTkLUqGYhj6tIJLng+zd+PglnFmLNOs2WtD5QMmhojt4KViPr4LrGIk6PHwg
o9LknGAzUA5TSeMPBgTLnLLhn+3L2ZNL+RJrcaCK86pt73rmTg/blFxe5sBhN2n+
4b3a3ICpKRT/svTTgAaqLHuoeyX1o5ombKTuFrBoxYNqOd664XZqKm6QyDZ60cq2
vqFOLCZ8wmQxCMG7GSMR8DUZEHbMd8L3O5Y=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:57 2025 by rpki-client