Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ooC9R8QEtP-YJ-9z0vOYcdTaGX4.roa
File: ooC9R8QEtP-YJ-9z0vOYcdTaGX4.roa (raw, json)
Hash identifier: XQmEin5YXD1JsP55YZ1d+UV6lJX5Z51aQgHP9WJxKJY=
Subject key identifier: A2:80:BD:47:C4:04:B4:FF:98:27:EF:73:D2:F3:98:71:D4:DA:19:7E
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 08E7E58A
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ooC9R8QEtP-YJ-9z0vOYcdTaGX4.roa
Signing time: Sat 01 Jan 2022 08:05:15 +0000
ROA not before: Sat 01 Jan 2022 08:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35448
IP address blocks: 95.158.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149415306 (0x8e7e58a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 1 08:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a280bd47c404b4ff9827ef73d2f39871d4da197e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2a:8c:48:f8:50:53:0c:91:47:1f:ab:b2:12:
12:49:7b:97:ee:c8:10:22:e3:b3:dd:bd:37:2d:ad:
d8:19:75:17:36:76:e5:6b:7c:05:99:a9:5c:da:04:
43:c4:c2:20:7c:a1:88:e6:c9:00:42:cd:f8:ca:c8:
93:a1:0b:66:33:c7:3b:9d:5d:1f:97:93:1a:65:28:
60:6f:1f:c1:e2:fb:a7:b9:fe:33:ed:40:dd:7b:b0:
9d:3e:a5:8d:d9:f6:d9:64:ae:c7:89:8e:b2:d2:61:
d3:44:8c:a3:b5:53:bc:ab:6f:e4:48:69:dd:a0:37:
04:93:6b:45:fc:a5:ae:fb:34:98:e2:ce:5c:39:ca:
52:0e:22:25:22:08:95:b1:d1:b0:b6:14:91:70:e6:
cd:67:e7:cc:86:5d:ce:f9:64:8a:91:4c:c6:84:2e:
8e:1f:ac:fd:5c:28:86:5f:48:82:da:ae:c1:07:f1:
00:9f:b6:e4:9f:87:30:9a:b5:39:1b:b9:d9:54:3a:
bb:3f:33:2f:82:c3:16:0f:1b:fb:e8:e5:d1:e4:13:
4a:d6:49:eb:b0:30:4b:28:91:14:28:50:0f:bd:aa:
9f:fa:09:9c:08:fa:48:0b:09:e5:e1:0b:f3:c7:c1:
84:14:81:95:ea:50:3f:1b:14:10:c4:49:36:5f:47:
68:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:80:BD:47:C4:04:B4:FF:98:27:EF:73:D2:F3:98:71:D4:DA:19:7E
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ooC9R8QEtP-YJ-9z0vOYcdTaGX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.158.144.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:92:90:4a:65:96:55:d0:85:8a:27:da:a5:dd:bc:5b:a1:9b:
07:0c:38:f4:50:0d:b2:77:1f:9d:bb:69:4e:aa:d1:a3:59:18:
f0:40:87:2d:70:99:37:f1:c2:dd:ae:4e:cd:63:07:1f:37:bf:
0a:82:68:de:17:44:f1:90:0e:41:01:10:b3:b5:64:20:66:ed:
bf:36:58:ab:3b:4d:94:2d:53:d1:29:d4:6e:1c:c6:60:fd:b7:
99:3d:29:5c:62:d0:5f:f7:28:7e:da:5f:c3:6a:83:23:04:11:
75:83:3a:19:ca:72:ae:4a:8a:8c:38:89:8a:83:9f:30:8a:4d:
0d:83:41:96:0e:40:71:a1:60:1b:d9:82:44:cf:25:ce:82:23:
7a:ce:ff:53:c3:60:1d:4f:ea:dc:bd:b8:06:8c:00:5e:df:7a:
84:6a:b1:01:72:9e:2b:87:d1:11:86:31:3d:05:a4:b1:f7:c9:
a3:de:9e:58:71:a0:7b:74:1e:34:ee:bd:c9:0b:da:d8:b8:43:
17:5f:43:c0:d8:48:a3:05:e7:e0:43:a5:40:ce:7b:17:be:0d:
a7:8e:58:af:ef:38:46:96:70:4e:73:7a:3a:d7:3a:7a:0d:6d:
34:00:f7:44:a1:36:6f:94:9f:6a:4f:22:a2:a5:d6:7e:7d:59:
b5:84:45:07
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECOflijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YmVjOTAzMGM3MGEzZDQxOTJkNTljMjhkY2M4ZDU0NzY5NDM0MGIzMB4XDTIyMDEw
MTA4MDUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI4MGJkNDdjNDA0
YjRmZjk4MjdlZjczZDJmMzk4NzFkNGRhMTk3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANcqjEj4UFMMkUcfq7ISEkl7l+7IECLjs929Ny2t2Bl1FzZ2
5Wt8BZmpXNoEQ8TCIHyhiObJAELN+MrIk6ELZjPHO51dH5eTGmUoYG8fweL7p7n+
M+1A3XuwnT6ljdn22WSux4mOstJh00SMo7VTvKtv5Ehp3aA3BJNrRfylrvs0mOLO
XDnKUg4iJSIIlbHRsLYUkXDmzWfnzIZdzvlkipFMxoQujh+s/Vwohl9IgtquwQfx
AJ+25J+HMJq1ORu52VQ6uz8zL4LDFg8b++jl0eQTStZJ67AwSyiRFChQD72qn/oJ
nAj6SAsJ5eEL88fBhBSBlepQPxsUEMRJNl9HaF0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSigL1HxAS0/5gn73PS85hx1NoZfjAfBgNVHSMEGDAWgBTr7JAwxwo9QZLV
nCjcyNVHaUNAszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzYteVFNTWNLUFVHUzFad28zTWpWUjJsRFFMTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvMzcyYjg3LTk1ZjQtNGM5OC1hNmY0LTRhNmY4NjgzMjY1Yy8x
L29vQzlSOFFFdFAtWUotOXowdk9ZY2RUYUdYNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
MzcyYjg3LTk1ZjQtNGM5OC1hNmY0LTRhNmY4NjgzMjY1Yy8xLzYteVFNTWNLUFVH
UzFad28zTWpWUjJsRFFMTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF+ekDANBgkqhkiG9w0BAQsFAAOC
AQEAwpKQSmWWVdCFiifapd28W6GbBww49FANsncfnbtpTqrRo1kY8ECHLXCZN/HC
3a5OzWMHHze/CoJo3hdE8ZAOQQEQs7VkIGbtvzZYqztNlC1T0SnUbhzGYP23mT0p
XGLQX/coftpfw2qDIwQRdYM6GcpyrkqKjDiJioOfMIpNDYNBlg5AcaFgG9mCRM8l
zoIjes7/U8NgHU/q3L24BowAXt96hGqxAXKeK4fREYYxPQWksffJo96eWHGge3Qe
NO69yQva2LhDF19DwNhIowXn4EOlQM57F74Np45Yr+84RpZwTnN6Otc6eg1tNAD3
RKE2b5Sfak8ioqXWfn1ZtYRFBw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-ams.rpki-client.org