Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/2OJX5A139VBJchIJKoSikj54E5s.roa
File: 2OJX5A139VBJchIJKoSikj54E5s.roa (raw, json)
Hash identifier: Aesj1TnNhModa6oqXdnRfkTjBySMFAhqQQesdJ9erOA=
Subject key identifier: D8:E2:57:E4:0D:77:F5:50:49:72:12:09:2A:84:A2:92:3E:78:13:9B
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3A7C6F52
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/2OJX5A139VBJchIJKoSikj54E5s.roa
Signing time: Sat 01 Jan 2022 05:59:55 +0000
ROA not before: Sat 01 Jan 2022 05:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8562
IP address blocks: 188.172.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981233490 (0x3a7c6f52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 05:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8e257e40d77f550497212092a84a2923e78139b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1f:db:1b:fd:d2:68:d0:82:31:55:f6:5f:5b:
c6:b6:ef:72:53:c8:59:b3:7b:90:8c:13:3c:a4:b7:
e5:04:93:a4:20:f0:93:5d:02:6b:96:d6:d8:9e:a4:
8e:52:24:75:a3:d0:be:7d:cb:96:2c:46:49:8b:8b:
1f:78:c9:9e:d2:c4:24:8b:04:b1:63:2b:e0:01:56:
f5:06:b6:e2:84:2a:8e:1c:dc:f8:60:13:3c:73:f0:
44:53:2a:55:52:61:02:b6:07:32:87:59:6f:03:38:
24:10:7c:fc:5a:7a:b3:ee:3a:2f:7a:f5:77:2e:f7:
f2:e8:11:7e:dd:b2:87:2d:2c:1d:aa:54:10:47:15:
35:77:0e:38:bf:d0:7b:3f:48:5d:99:85:28:0b:44:
13:4e:67:0f:09:de:73:ab:d6:4c:c0:a2:05:a6:37:
16:74:02:bb:ca:51:0b:c6:38:63:3c:88:88:ae:aa:
41:b0:58:d5:59:c9:d1:34:05:72:be:75:4a:2c:53:
19:d4:2a:fc:46:cf:46:6c:db:30:52:6e:07:67:eb:
dd:cc:9c:88:08:08:ee:98:ef:f4:52:e1:13:45:9a:
a0:d7:e2:56:b9:f0:bb:cc:fd:d3:c9:4d:63:be:99:
c2:26:6b:67:5e:21:8a:2a:a1:cb:55:aa:5b:c4:8e:
2d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E2:57:E4:0D:77:F5:50:49:72:12:09:2A:84:A2:92:3E:78:13:9B
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/2OJX5A139VBJchIJKoSikj54E5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.172.196.0/24
Signature Algorithm: sha256WithRSAEncryption
73:54:2e:3f:99:5d:18:c7:6a:20:52:ce:49:47:08:89:db:b2:
7a:b4:fc:71:68:f7:9b:5e:fd:90:5f:35:bf:76:f7:ec:90:8b:
35:19:ce:be:c4:7b:fd:fb:d8:28:99:c2:69:61:2c:e6:ec:34:
51:ee:7e:b6:59:48:d6:54:03:55:7f:8a:b8:31:47:fd:22:72:
b7:a1:4b:7c:60:1b:61:c7:f9:8d:77:79:d7:b2:9d:d5:00:74:
62:24:bb:08:6e:1a:58:2c:7a:04:bd:1f:9a:c5:72:fa:ca:d0:
78:e5:fd:0a:74:97:a2:c1:1d:a9:cb:d8:b5:6c:9c:00:56:01:
ca:03:0a:33:d7:23:83:51:2e:10:ca:36:eb:5b:ff:4c:48:9d:
fe:b6:5a:5d:c0:75:b9:7f:e8:00:5e:d6:b6:1a:e2:e3:e7:bb:
67:01:a1:25:cc:d0:2e:bf:f8:31:14:f3:fb:bd:67:95:8d:62:
9d:19:6d:c9:9f:61:08:40:50:8f:f8:22:92:67:6c:f0:84:48:
ea:0b:58:97:52:35:b5:e8:27:8d:c5:04:6b:a3:3f:8d:5f:4f:
73:0a:e5:90:56:1a:14:0a:d6:4f:cc:20:7f:86:46:f4:7c:01:
b4:bf:c2:6e:fc:14:f4:e8:59:1a:c2:2a:63:ef:35:93:00:30:
82:c2:a0:80
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOnxvUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTM5YWZlYmFjZTg5OWE4ZWUwYmI0ZjhiYjQ0NzVmZTI0N2ExNTI4MB4XDTIyMDEw
MTA1NTk1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDhlMjU3ZTQwZDc3
ZjU1MDQ5NzIxMjA5MmE4NGEyOTIzZTc4MTM5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANof2xv90mjQgjFV9l9bxrbvclPIWbN7kIwTPKS35QSTpCDw
k10Ca5bW2J6kjlIkdaPQvn3LlixGSYuLH3jJntLEJIsEsWMr4AFW9Qa24oQqjhzc
+GATPHPwRFMqVVJhArYHModZbwM4JBB8/Fp6s+46L3r1dy738ugRft2yhy0sHapU
EEcVNXcOOL/Qez9IXZmFKAtEE05nDwnec6vWTMCiBaY3FnQCu8pRC8Y4YzyIiK6q
QbBY1VnJ0TQFcr51SixTGdQq/EbPRmzbMFJuB2fr3cyciAgI7pjv9FLhE0WaoNfi
Vrnwu8z908lNY76ZwiZrZ14hiiqhy1WqW8SOLRkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTY4lfkDXf1UElyEgkqhKKSPngTmzAfBgNVHSMEGDAWgBSlOa/rrOiZqO4L
tPi7RHX+JHoVKDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BUbXY2NnpvbWFqdUM3VDR1MFIxX2lSNkZTZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmUvOThjNGVlLTJmNTktNDVhNy1hZGI2LTc0MTM5NTkxMzEyZS8x
LzJPSlg1QTEzOVZCSmNoSUpLb1Npa2o1NEU1cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUv
OThjNGVlLTJmNTktNDVhNy1hZGI2LTc0MTM5NTkxMzEyZS8xL3BUbXY2NnpvbWFq
dUM3VDR1MFIxX2lSNkZTZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALysxDANBgkqhkiG9w0BAQsFAAOC
AQEAc1QuP5ldGMdqIFLOSUcIiduyerT8cWj3m179kF81v3b37JCLNRnOvsR7/fvY
KJnCaWEs5uw0Ue5+tllI1lQDVX+KuDFH/SJyt6FLfGAbYcf5jXd517Kd1QB0YiS7
CG4aWCx6BL0fmsVy+srQeOX9CnSXosEdqcvYtWycAFYBygMKM9cjg1EuEMo261v/
TEid/rZaXcB1uX/oAF7Wthri4+e7ZwGhJczQLr/4MRTz+71nlY1inRltyZ9hCEBQ
j/gikmds8IRI6gtYl1I1tegnjcUEa6M/jV9PcwrlkFYaFArWT8wgf4ZG9HwBtL/C
bvwU9OhZGsIqY+81kwAwgsKggA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org