Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kDghMgNJZWnTceCYRLO_UXRWHuc.roa
File: kDghMgNJZWnTceCYRLO_UXRWHuc.roa (raw, json)
Hash identifier: P4uZStC5fvyqaE63P8vZNDTYWsBlqSMUD6WJ428qoZM=
Subject key identifier: 90:38:21:32:03:49:65:69:D3:71:E0:98:44:B3:BF:51:74:56:1E:E7
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 1884C319
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kDghMgNJZWnTceCYRLO_UXRWHuc.roa
Signing time: Tue 21 Jun 2022 11:55:46 +0000
ROA not before: Tue 21 Jun 2022 11:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12724
IP address blocks: 82.179.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411353881 (0x1884c319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 21 11:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9038213203496569d371e09844b3bf5174561ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ef:cd:cc:93:54:be:ff:1c:ed:9d:d4:e8:3f:
53:76:ff:a6:ee:2f:ee:0f:8d:1d:30:6b:af:50:f0:
22:ef:89:d0:ba:2a:14:20:db:f2:70:a2:79:2b:38:
44:ad:b1:05:4d:3e:f1:37:7d:14:33:a3:b9:28:95:
da:a1:fc:2b:7b:b3:df:dc:8d:50:f8:9d:07:f6:1c:
cd:d4:bd:53:35:e0:bf:87:53:07:93:59:3d:15:20:
00:db:aa:b4:71:42:0a:dd:f4:01:1b:94:1f:02:dc:
e9:89:18:85:c1:50:cf:b0:0f:c3:84:29:0d:94:2b:
82:27:af:bd:0a:99:57:c5:73:95:6e:99:78:c1:45:
a5:61:15:47:a6:3b:10:f6:cc:76:67:b2:52:23:aa:
83:1a:fa:96:4b:9b:90:f2:9e:e7:9b:d9:8e:1a:ea:
d7:83:f5:53:39:d5:dc:c1:ef:4b:3e:77:3b:aa:d6:
bd:54:d6:f0:b8:54:cb:6b:41:32:d9:c3:11:84:17:
fb:dd:8c:ef:59:48:54:12:8c:a5:e8:60:6b:7f:83:
25:60:cc:1a:92:85:9f:c3:8e:91:a5:fe:52:30:b9:
f9:40:36:37:3f:0d:6c:c3:b6:b3:06:da:a3:b7:eb:
9c:b5:58:cb:0f:e7:40:64:d0:b6:8c:dd:12:69:3e:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:38:21:32:03:49:65:69:D3:71:E0:98:44:B3:BF:51:74:56:1E:E7
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kDghMgNJZWnTceCYRLO_UXRWHuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.96.0/20
Signature Algorithm: sha256WithRSAEncryption
31:96:c7:8e:db:4f:f9:fc:d3:a0:89:e5:46:ba:a7:5d:8f:38:
5d:f9:9e:a8:06:3d:33:1f:26:bd:ea:6b:ba:96:bf:1d:9b:e6:
51:4c:8a:16:15:9e:e8:97:d2:bb:92:3d:7f:1b:b0:b2:28:7c:
c6:1f:f1:2b:99:45:de:ab:a7:cb:21:d9:35:2c:88:d4:dd:90:
67:e1:5d:0e:46:87:4b:5f:90:d4:e2:51:3a:6f:fa:41:51:dc:
4a:73:e1:f2:9a:d7:7a:d6:8f:d1:25:9e:d4:23:02:23:09:48:
bb:3f:33:4d:0a:1f:f7:9c:a6:e9:86:2f:b5:8a:c5:a7:03:ef:
de:d9:41:6f:c9:d2:a4:6f:ba:66:ce:3c:cf:cc:69:32:8e:17:
a7:dd:f5:e3:4b:4b:e4:fa:22:14:75:73:4f:8f:3c:78:a7:62:
a5:dd:ff:88:9d:c2:58:7d:9e:45:87:45:3c:8b:33:33:70:84:
1d:e3:32:b3:33:68:8e:81:4e:a5:2e:6d:65:cc:5a:b4:92:81:
5d:e2:8b:7c:92:1e:12:46:1d:97:79:85:51:a5:bb:84:40:28:
ff:19:2c:73:fd:4c:8d:2b:bc:6a:0e:38:ba:6b:07:3a:ef:3f:
cd:5a:7e:71:81:de:0b:3d:07:52:06:62:2c:2a:e7:d8:f9:94:
1a:7d:f8:76
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGITDGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDYy
MTExNTU0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTAzODIxMzIwMzQ5
NjU2OWQzNzFlMDk4NDRiM2JmNTE3NDU2MWVlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANXvzcyTVL7/HO2d1Og/U3b/pu4v7g+NHTBrr1DwIu+J0Loq
FCDb8nCieSs4RK2xBU0+8Td9FDOjuSiV2qH8K3uz39yNUPidB/YczdS9UzXgv4dT
B5NZPRUgANuqtHFCCt30ARuUHwLc6YkYhcFQz7APw4QpDZQrgievvQqZV8VzlW6Z
eMFFpWEVR6Y7EPbMdmeyUiOqgxr6lkubkPKe55vZjhrq14P1UznV3MHvSz53O6rW
vVTW8LhUy2tBMtnDEYQX+92M71lIVBKMpehga3+DJWDMGpKFn8OOkaX+UjC5+UA2
Nz8NbMO2swbao7frnLVYyw/nQGTQtozdEmk+C88CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQOCEyA0lladNx4JhEs79RdFYe5zAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
L2tEZ2hNZ05KWlduVGNlQ1lSTE9fVVhSV0h1Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFKzYDANBgkqhkiG9w0BAQsFAAOC
AQEAMZbHjttP+fzToInlRrqnXY84XfmeqAY9Mx8mveprupa/HZvmUUyKFhWe6JfS
u5I9fxuwsih8xh/xK5lF3qunyyHZNSyI1N2QZ+FdDkaHS1+Q1OJROm/6QVHcSnPh
8prXetaP0SWe1CMCIwlIuz8zTQof95ym6YYvtYrFpwPv3tlBb8nSpG+6Zs48z8xp
Mo4Xp93140tL5PoiFHVzT488eKdipd3/iJ3CWH2eRYdFPIszM3CEHeMyszNojoFO
pS5tZcxatJKBXeKLfJIeEkYdl3mFUaW7hEAo/xksc/1MjSu8ag44umsHOu8/zVp+
cYHeCz0HUgZiLCrn2PmUGn34dg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org