Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/0BW8C2OTS_Ouo4BcHWe0wl2zbbM.roa
File: 0BW8C2OTS_Ouo4BcHWe0wl2zbbM.roa (raw, json)
Hash identifier: IPpIjYZAmqKtbaRSQg04ytX+GZ/CL5eGuIuJEKcUgaI=
Subject key identifier: D0:15:BC:0B:63:93:4B:F3:AE:A3:80:5C:1D:67:B4:C2:5D:B3:6D:B3
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 178443CC
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/0BW8C2OTS_Ouo4BcHWe0wl2zbbM.roa
Signing time: Sat 05 Mar 2022 21:55:52 +0000
ROA not before: Sat 05 Mar 2022 21:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394544076 (0x178443cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Mar 5 21:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d015bc0b63934bf3aea3805c1d67b4c25db36db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:60:4f:9e:1e:49:75:b5:4e:27:e5:86:5a:15:
ff:d9:e2:cd:4a:ed:72:18:19:9b:fc:af:e0:a4:8c:
b0:82:0e:53:22:e8:ba:bb:84:02:69:fc:81:ff:4f:
ee:0f:67:f2:1f:8f:95:0d:ed:3d:39:60:46:c7:b8:
29:75:9a:6e:9d:d1:73:3f:48:2d:84:c2:db:96:fe:
e8:5c:f9:da:b7:23:a9:1b:c0:3e:e7:0f:eb:35:4b:
23:d4:4b:01:70:7b:03:8a:c3:e2:88:63:b8:50:2f:
9b:b8:98:2f:1e:c3:e0:a4:4d:e7:8a:a1:33:8a:5e:
fe:c4:3f:68:c6:03:33:ad:a0:78:95:8e:f4:ce:7f:
8a:26:24:6d:56:b5:e5:0e:7a:a2:7c:04:c8:fb:db:
e5:fb:47:6b:06:26:f3:c2:01:38:aa:ce:3d:35:9c:
a3:32:8a:3d:76:6b:74:9c:5a:3d:e4:21:90:66:f7:
49:de:a3:08:de:92:62:2b:9a:09:f3:f8:03:c5:22:
69:78:12:00:96:b3:02:eb:b8:34:5b:bb:f2:0d:84:
85:1c:cd:15:c2:39:c7:45:57:f4:75:07:18:a9:ee:
aa:50:13:0f:7d:c7:65:30:7f:73:01:ad:06:f6:29:
3a:7a:6e:98:98:28:71:cf:42:10:a3:0a:ea:bf:7a:
c6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:15:BC:0B:63:93:4B:F3:AE:A3:80:5C:1D:67:B4:C2:5D:B3:6D:B3
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/0BW8C2OTS_Ouo4BcHWe0wl2zbbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
85.142.64.0/24
85.142.78.0/24
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
4a:91:5a:31:fd:6c:3a:ab:6c:f4:a4:30:a6:bd:e9:8b:15:63:
42:d9:37:46:49:f7:14:1f:83:de:39:16:56:ee:22:d5:36:f9:
1e:be:fb:17:f7:de:4f:3a:5f:92:e0:b0:d2:06:2e:c6:23:47:
34:67:d7:22:f5:59:ad:16:27:12:38:3c:2e:07:2e:b0:84:5c:
fa:52:b1:1c:8d:49:6e:32:81:57:1b:a2:29:e2:d9:ac:f8:2d:
13:4f:db:37:14:6a:c8:3a:e1:88:49:0f:3c:6b:7f:9b:d0:13:
0f:54:73:e8:c5:10:8d:9d:0b:4c:6c:ad:51:af:28:6e:b8:44:
e3:7e:9a:0a:27:be:c6:25:04:e5:f2:dc:04:d2:e1:b1:41:26:
53:ea:93:90:3f:70:d8:a2:ff:6f:ec:27:09:23:06:1d:09:1d:
00:1d:fc:bc:16:21:e3:c3:d4:f1:34:35:62:36:4a:62:f5:ef:
8f:e9:10:d9:91:44:8a:1c:0d:a8:59:e7:12:71:f7:7b:a3:c3:
f9:1e:e2:c4:93:eb:70:51:80:3a:7e:1e:33:59:a1:e6:6a:fe:
b8:8b:27:95:7f:1e:e7:f9:1e:6a:2e:d6:ee:08:ca:9c:a5:ca:
c7:5a:2f:16:20:d8:76:27:d2:20:e9:dc:f9:f6:d5:21:fb:d5:
6c:47:54:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org