Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/482984-d9e4-4d33-a8ec-f4bab719e070/1/oXV-AWGFXKqyb6fR0rI4rJ8GWPs.roa
File: oXV-AWGFXKqyb6fR0rI4rJ8GWPs.roa (raw, json)
Hash identifier: t3Avdtwi9efDzURsRKz/VuYaujtJsEBTV91XWXQ1oF0=
Subject key identifier: A1:75:7E:01:61:85:5C:AA:B2:6F:A7:D1:D2:B2:38:AC:9F:06:58:FB
Certificate issuer: /CN=93785b3a9e33c52b58b9ec95a37723f0008bf946
Certificate serial: 070AFB30
Authority key identifier: 93:78:5B:3A:9E:33:C5:2B:58:B9:EC:95:A3:77:23:F0:00:8B:F9:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k3hbOp4zxStYueyVo3cj8ACL-UY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/482984-d9e4-4d33-a8ec-f4bab719e070/1/oXV-AWGFXKqyb6fR0rI4rJ8GWPs.roa
Signing time: Sat 01 Jan 2022 14:55:48 +0000
ROA not before: Sat 01 Jan 2022 14:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59620
IP address blocks: 185.165.96.0/24 maxlen: 24
185.165.97.0/24 maxlen: 24
185.165.98.0/24 maxlen: 24
185.165.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118160176 (0x70afb30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93785b3a9e33c52b58b9ec95a37723f0008bf946
Validity
Not Before: Jan 1 14:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1757e0161855caab26fa7d1d2b238ac9f0658fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:78:97:e3:04:80:bd:44:b8:f6:b7:34:40:
0c:62:d2:86:48:d9:0b:69:73:a5:75:54:16:e0:1c:
e0:d1:7a:78:2c:9a:1e:b8:59:73:6c:c0:72:db:3f:
c7:5f:9b:d5:db:49:32:d4:d1:9d:04:07:19:04:ed:
a5:b3:23:2f:b5:b9:fc:91:d5:ae:a7:d6:21:fd:e8:
5d:01:55:70:68:b9:9a:59:80:5a:72:d3:8e:45:11:
ef:ba:de:9b:2f:c6:f0:c5:65:17:32:16:1c:9f:61:
4c:57:01:b1:f4:44:97:db:6c:cd:93:bf:06:4a:c5:
2e:9d:29:14:71:68:07:b7:5a:35:57:17:30:e2:48:
46:a4:71:20:ab:f9:06:81:00:21:9c:6e:d6:6c:5d:
5c:56:98:a1:0f:c9:a6:ea:50:19:be:42:d5:06:1d:
12:f7:7a:2d:f9:df:87:0b:f8:c0:3a:00:07:b7:f6:
fa:44:99:6d:b5:4e:96:32:34:33:cb:03:74:dd:38:
75:dc:69:e9:a4:00:2b:ea:73:29:74:c7:d7:21:78:
69:57:3f:e7:1a:62:6f:8e:87:71:b4:b2:02:7f:e4:
4b:f8:0e:43:ee:9e:1f:af:96:ae:97:88:74:38:53:
c4:9b:10:7f:ea:fb:a9:9f:b6:ed:35:0d:cb:6d:a1:
bf:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:75:7E:01:61:85:5C:AA:B2:6F:A7:D1:D2:B2:38:AC:9F:06:58:FB
X509v3 Authority Key Identifier:
keyid:93:78:5B:3A:9E:33:C5:2B:58:B9:EC:95:A3:77:23:F0:00:8B:F9:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k3hbOp4zxStYueyVo3cj8ACL-UY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/482984-d9e4-4d33-a8ec-f4bab719e070/1/oXV-AWGFXKqyb6fR0rI4rJ8GWPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/482984-d9e4-4d33-a8ec-f4bab719e070/1/k3hbOp4zxStYueyVo3cj8ACL-UY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.96.0/22
Signature Algorithm: sha256WithRSAEncryption
44:0e:51:d9:c8:b1:ab:eb:99:a4:9a:7a:fa:1e:c0:66:89:56:
79:f1:38:c1:1f:94:48:23:3a:4b:3c:16:9b:0b:42:51:e9:32:
b5:ed:ca:ae:0b:ce:4d:d6:f9:de:63:1c:5d:a9:14:42:a3:e4:
2a:35:d8:c5:62:38:0b:dd:17:49:be:1a:5a:8b:d2:cd:66:d6:
c5:88:0a:60:11:dc:84:69:97:9a:fb:61:7b:4e:f6:b2:e5:82:
f3:9e:af:1f:75:04:96:b8:66:3b:7d:74:6f:b2:58:5e:0f:da:
16:5b:77:84:22:de:f3:fe:84:71:04:21:2a:cb:3e:6c:b9:8b:
d7:8b:18:16:28:63:75:31:cb:55:16:a0:13:33:e4:17:04:0e:
76:92:3a:dd:70:d4:e2:fb:07:65:62:69:af:0e:4c:1a:d6:71:
ac:29:83:11:75:dd:a9:f7:05:fb:6c:0f:4b:55:f4:02:bb:8c:
80:71:ca:06:c9:b6:d5:8e:92:95:7e:8d:10:12:47:0b:81:9f:
db:93:d6:36:36:f2:75:6e:44:41:da:08:7d:40:4b:26:f6:ed:
9a:66:6a:f1:92:e0:23:4a:d6:62:e2:31:bc:e4:28:07:d9:8e:
2e:b3:45:bf:32:72:79:15:14:5f:b8:33:4f:a6:48:ce:75:a9:
52:d3:d6:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBwr7MDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Mzc4NWIzYTllMzNjNTJiNThiOWVjOTVhMzc3MjNmMDAwOGJmOTQ2MB4XDTIyMDEw
MTE0NTU0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTE3NTdlMDE2MTg1
NWNhYWIyNmZhN2QxZDJiMjM4YWM5ZjA2NThmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMZXeJfjBIC9RLj2tzRADGLShkjZC2lzpXVUFuAc4NF6eCya
HrhZc2zActs/x1+b1dtJMtTRnQQHGQTtpbMjL7W5/JHVrqfWIf3oXQFVcGi5mlmA
WnLTjkUR77remy/G8MVlFzIWHJ9hTFcBsfREl9tszZO/BkrFLp0pFHFoB7daNVcX
MOJIRqRxIKv5BoEAIZxu1mxdXFaYoQ/JpupQGb5C1QYdEvd6Lfnfhwv4wDoAB7f2
+kSZbbVOljI0M8sDdN04ddxp6aQAK+pzKXTH1yF4aVc/5xpib46HcbSyAn/kS/gO
Q+6eH6+WrpeIdDhTxJsQf+r7qZ+27TUNy22hvw0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBShdX4BYYVcqrJvp9HSsjisnwZY+zAfBgNVHSMEGDAWgBSTeFs6njPFK1i5
7JWjdyPwAIv5RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2szaGJPcDR6eFN0WXVleVZvM2NqOEFDTC1VWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDgyOTg0LWQ5ZTQtNGQzMy1hOGVjLWY0YmFiNzE5ZTA3MC8x
L29YVi1BV0dGWEtxeWI2ZlIwckk0cko4R1dQcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDgyOTg0LWQ5ZTQtNGQzMy1hOGVjLWY0YmFiNzE5ZTA3MC8xL2szaGJPcDR6eFN0
WXVleVZvM2NqOEFDTC1VWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmlYDANBgkqhkiG9w0BAQsFAAOC
AQEARA5R2cixq+uZpJp6+h7AZolWefE4wR+USCM6SzwWmwtCUekyte3KrgvOTdb5
3mMcXakUQqPkKjXYxWI4C90XSb4aWovSzWbWxYgKYBHchGmXmvthe072suWC856v
H3UElrhmO310b7JYXg/aFlt3hCLe8/6EcQQhKss+bLmL14sYFihjdTHLVRagEzPk
FwQOdpI63XDU4vsHZWJprw5MGtZxrCmDEXXdqfcF+2wPS1X0AruMgHHKBsm21Y6S
lX6NEBJHC4Gf25PWNjbydW5EQdoIfUBLJvbtmmZq8ZLgI0rWYuIxvOQoB9mOLrNF
vzJyeRUUX7gzT6ZIznWpUtPWng==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:52 2025 by rpki-client