Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/OoCFmbb1_BzluXh3paMddqi3pAw.roa
File: OoCFmbb1_BzluXh3paMddqi3pAw.roa (raw, json)
Hash identifier: 5gAH5g+m72jRSc97MvnQVCaqD/02GY7/QX0n1cCQ0ZI=
Subject key identifier: 3A:80:85:99:B6:F5:FC:1C:E5:B9:78:77:A5:A3:1D:76:A8:B7:A4:0C
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 10A59B8D
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/OoCFmbb1_BzluXh3paMddqi3pAw.roa
Signing time: Sat 01 Jan 2022 04:58:15 +0000
ROA not before: Sat 01 Jan 2022 04:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.22.32.0/20 maxlen: 20
193.22.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279288717 (0x10a59b8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: Jan 1 04:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a808599b6f5fc1ce5b97877a5a31d76a8b7a40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e5:ff:d2:e8:3c:23:ad:b0:78:49:0b:95:6a:
17:ee:ca:b0:98:3a:71:e0:f0:da:d6:9f:f5:2c:3a:
25:cf:90:59:13:e7:e7:e9:7c:82:90:ac:d1:80:ce:
78:e6:42:6f:b0:46:69:a0:ce:14:69:6f:61:89:ad:
01:e4:16:20:e5:1e:4b:0c:ba:6b:98:e9:3b:07:38:
55:e8:ed:58:75:5f:29:a3:48:18:7e:b6:b5:1a:69:
8c:6d:d2:d7:cc:1d:cd:d0:4f:a9:3b:20:37:f3:6f:
c5:70:c0:db:9a:c1:62:55:f4:23:5e:3a:eb:0e:44:
ac:71:3b:d6:6c:49:99:51:21:f4:2b:2e:7c:40:b3:
dc:82:62:76:5c:f0:a0:2e:03:4e:2f:32:85:78:b6:
24:84:f6:0a:43:08:17:aa:76:14:4b:ed:ca:0c:87:
1b:c2:45:30:97:5c:70:01:4d:78:0f:91:eb:21:3a:
db:40:f0:7e:3a:fa:06:6e:6c:86:25:c3:c6:f7:27:
e9:6b:82:9e:85:7a:56:66:b5:7c:28:f5:5e:3a:57:
f5:75:79:e5:08:4f:b4:97:ca:25:50:4c:51:5c:9e:
3d:1e:ab:5f:73:52:72:47:f3:69:e8:ef:c1:14:9c:
27:31:1d:85:ba:f6:1c:6a:83:5f:69:e8:39:9d:86:
13:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:80:85:99:B6:F5:FC:1C:E5:B9:78:77:A5:A3:1D:76:A8:B7:A4:0C
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/OoCFmbb1_BzluXh3paMddqi3pAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.32.0-193.22.49.255
Signature Algorithm: sha256WithRSAEncryption
75:b3:5a:2a:d4:65:81:28:a3:00:86:b8:c2:16:11:42:15:50:
7b:85:59:7f:d0:ee:81:50:64:0e:68:95:4f:cc:ad:d3:84:ec:
de:5e:f3:1d:29:e2:73:2f:0f:66:44:14:2d:53:8b:50:77:9f:
f4:85:4a:c4:66:19:c9:ad:06:69:46:ba:ca:20:14:76:64:9c:
7a:43:60:06:5f:d5:6d:d2:6d:69:12:04:80:3f:cf:e0:a7:27:
a2:d7:22:c7:8d:51:b2:d2:34:9e:01:9d:65:61:6e:f3:8b:4b:
42:76:48:30:28:a5:91:89:b5:71:62:0a:e0:5c:a2:8f:ad:db:
7c:7e:67:9d:fd:d2:2c:da:62:16:f9:48:fd:32:a6:d2:01:1b:
30:33:4e:8a:b6:95:9e:05:0e:a0:7d:de:bd:46:a2:d1:02:bf:
4b:11:82:fb:5e:71:ff:c9:99:20:49:d3:a4:bf:1b:fe:b2:75:
9a:fc:a9:60:47:85:45:ab:a9:e1:af:2c:5c:90:53:14:da:72:
2e:36:64:ec:47:f1:96:5e:3b:e4:87:b2:4c:a6:02:69:f9:03:
5b:c6:b4:87:14:11:a3:fe:d0:bb:9e:2b:88:c4:3d:dc:20:1c:
40:97:c6:db:09:cf:34:4b:84:5e:ec:9e:c9:23:67:bf:66:ac:
dc:59:89:3f
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEEKWbjTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDUzYTg2ZmQzMDgxYjgwM2VkYzEwZDIzYmJlZGE5MWQ3OTMyMDI1MB4XDTIyMDEw
MTA0NTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2E4MDg1OTliNmY1
ZmMxY2U1Yjk3ODc3YTVhMzFkNzZhOGI3YTQwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3l/9LoPCOtsHhJC5VqF+7KsJg6ceDw2taf9Sw6Jc+QWRPn
5+l8gpCs0YDOeOZCb7BGaaDOFGlvYYmtAeQWIOUeSwy6a5jpOwc4VejtWHVfKaNI
GH62tRppjG3S18wdzdBPqTsgN/NvxXDA25rBYlX0I1466w5ErHE71mxJmVEh9Csu
fECz3IJidlzwoC4DTi8yhXi2JIT2CkMIF6p2FEvtygyHG8JFMJdccAFNeA+R6yE6
20Dwfjr6Bm5shiXDxvcn6WuCnoV6Vma1fCj1XjpX9XV55QhPtJfKJVBMUVyePR6r
X3NSckfzaejvwRScJzEdhbr2HGqDX2noOZ2GE08CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQ6gIWZtvX8HOW5eHelox12qLekDDAfBgNVHSMEGDAWgBS0U6hv0wgbgD7c
ENI7vtqR15MgJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RGT29iOU1JRzRBLTNCRFNPNzdha2RlVElDVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvMjI1YWY5LWYzZjUtNDllNC1iYTEwLWY1ZWEwMTJiODRmYy8x
L09vQ0ZtYmIxX0J6bHVYaDNwYU1kZHFpM3BBdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
MjI1YWY5LWYzZjUtNDllNC1iYTEwLWY1ZWEwMTJiODRmYy8xL3RGT29iOU1JRzRB
LTNCRFNPNzdha2RlVElDVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQFwRYgAwQBwRYwMA0GCSqGSIb3
DQEBCwUAA4IBAQB1s1oq1GWBKKMAhrjCFhFCFVB7hVl/0O6BUGQOaJVPzK3ThOze
XvMdKeJzLw9mRBQtU4tQd5/0hUrEZhnJrQZpRrrKIBR2ZJx6Q2AGX9Vt0m1pEgSA
P8/gpyei1yLHjVGy0jSeAZ1lYW7zi0tCdkgwKKWRibVxYgrgXKKPrdt8fmed/dIs
2mIW+Uj9MqbSARswM06KtpWeBQ6gfd69RqLRAr9LEYL7XnH/yZkgSdOkvxv+snWa
/KlgR4VFq6nhryxckFMU2nIuNmTsR/GWXjvkh7JMpgJp+QNbxrSHFBGj/tC7niuI
xD3cIBxAl8bbCc80S4Re7J7JI2e/ZqzcWYk/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:57 2024 by rpki-client on console-fra.rpki-client.org