Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/688007-2b24-44b9-80f4-a62850feebb5/1/oKlp46v82jjaUJXkc6MHAev60l8.roa
File: oKlp46v82jjaUJXkc6MHAev60l8.roa (raw, json)
Hash identifier: xUgMKcxclHm0ov9pWTjMCLSvFOjtzbuLqXSHMQefZ4I=
Subject key identifier: A0:A9:69:E3:AB:FC:DA:38:DA:50:95:E4:73:A3:07:01:EB:FA:D2:5F
Certificate issuer: /CN=989badfd2a17fca3b935a368e2e03ad56d6e3b62
Certificate serial: 367334AA
Authority key identifier: 98:9B:AD:FD:2A:17:FC:A3:B9:35:A3:68:E2:E0:3A:D5:6D:6E:3B:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mJut_SoX_KO5NaNo4uA61W1uO2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/688007-2b24-44b9-80f4-a62850feebb5/1/oKlp46v82jjaUJXkc6MHAev60l8.roa
Signing time: Sat 01 Jan 2022 04:53:42 +0000
ROA not before: Sat 01 Jan 2022 04:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48518
IP address blocks: 176.74.32.0/21 maxlen: 24
194.177.8.0/22 maxlen: 24
2a00:eb80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913519786 (0x367334aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=989badfd2a17fca3b935a368e2e03ad56d6e3b62
Validity
Not Before: Jan 1 04:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0a969e3abfcda38da5095e473a30701ebfad25f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:79:ae:6b:69:b4:1d:79:3d:c0:54:67:fe:e0:
9a:f7:11:29:08:f2:1c:0c:78:30:4f:74:72:38:c8:
f3:b1:4e:d9:5f:15:1c:7d:ff:1d:b7:fb:ff:13:2b:
3c:c7:71:69:14:15:9b:12:cb:7e:55:b1:8c:3d:29:
e4:69:f5:bb:dc:8b:1b:c8:d4:35:f7:c2:09:24:0e:
08:73:f1:9e:49:b3:ca:00:00:8b:e7:ad:69:b6:09:
9e:9e:64:b6:42:24:91:e2:53:46:8c:59:9c:30:97:
51:c4:e8:1b:1b:08:b0:c6:6b:d8:c6:00:5d:48:06:
18:e3:2f:b9:48:db:4c:2a:b7:42:ef:a3:73:3e:af:
62:40:19:92:c8:c5:fb:c7:89:cd:63:62:8c:d7:6d:
af:ee:61:63:0b:30:e6:8c:d5:74:b7:04:fc:ad:97:
a3:c8:d3:d9:d3:cc:19:12:29:1f:98:05:e7:db:72:
d4:f7:ed:62:f9:68:d9:c0:db:73:15:a2:26:00:b9:
0d:aa:e8:42:c1:f6:30:11:ee:0a:d7:b1:9a:95:ab:
4e:f6:53:ac:ae:db:a4:ab:ba:38:40:e1:ff:e4:7f:
02:09:6a:8b:9d:7e:d7:65:7a:6e:c9:2c:1a:53:00:
a7:7a:b8:7d:52:e3:58:68:8e:09:9c:23:ad:90:95:
1b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A9:69:E3:AB:FC:DA:38:DA:50:95:E4:73:A3:07:01:EB:FA:D2:5F
X509v3 Authority Key Identifier:
keyid:98:9B:AD:FD:2A:17:FC:A3:B9:35:A3:68:E2:E0:3A:D5:6D:6E:3B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mJut_SoX_KO5NaNo4uA61W1uO2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/688007-2b24-44b9-80f4-a62850feebb5/1/oKlp46v82jjaUJXkc6MHAev60l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/688007-2b24-44b9-80f4-a62850feebb5/1/mJut_SoX_KO5NaNo4uA61W1uO2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.74.32.0/21
194.177.8.0/22
IPv6:
2a00:eb80::/32
Signature Algorithm: sha256WithRSAEncryption
04:fd:81:03:ef:4b:44:20:7a:85:7e:0b:ce:7c:9a:63:70:e0:
a6:2f:a3:43:d2:39:7b:62:7a:37:bf:86:9f:4c:41:be:d8:6c:
15:6d:73:57:e6:de:45:ed:2e:9f:2c:df:a0:47:65:de:a2:1c:
c7:96:f5:19:56:53:f1:7c:73:df:87:7e:b7:d7:ba:5f:dd:49:
20:ee:3d:89:60:64:c3:8a:84:60:d5:7d:58:40:bd:b8:ba:84:
0d:4f:33:3c:2e:bd:6f:d9:e6:08:26:10:17:56:82:33:4f:5d:
6c:fd:61:f0:d3:51:b8:0c:b8:7b:38:e4:15:ba:40:3c:22:41:
6c:61:20:b2:4a:bc:c6:2e:d6:26:96:81:d8:6f:58:8c:59:83:
a8:a1:79:22:8d:4c:4e:02:f9:23:4c:50:95:4a:d3:3d:15:a4:
f4:55:ab:40:98:c6:71:16:6a:b2:93:66:5b:9c:f9:0a:08:fc:
09:c7:04:55:e7:95:1c:c4:ac:92:de:40:d1:08:b5:e3:d8:ea:
7f:9a:9e:60:f1:26:32:84:80:0d:3a:0b:e1:e1:c2:91:7c:86:
cd:ed:77:da:bd:02:b0:b7:5a:c1:59:31:38:84:ca:0e:5e:50:
7f:1f:d3:e3:c3:ae:69:de:59:0a:9c:37:69:46:34:1c:bc:99:
83:93:90:9b
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIENnM0qjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODliYWRmZDJhMTdmY2EzYjkzNWEzNjhlMmUwM2FkNTZkNmUzYjYyMB4XDTIyMDEw
MTA0NTM0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTBhOTY5ZTNhYmZj
ZGEzOGRhNTA5NWU0NzNhMzA3MDFlYmZhZDI1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANx5rmtptB15PcBUZ/7gmvcRKQjyHAx4ME90cjjI87FO2V8V
HH3/Hbf7/xMrPMdxaRQVmxLLflWxjD0p5Gn1u9yLG8jUNffCCSQOCHPxnkmzygAA
i+etabYJnp5ktkIkkeJTRoxZnDCXUcToGxsIsMZr2MYAXUgGGOMvuUjbTCq3Qu+j
cz6vYkAZksjF+8eJzWNijNdtr+5hYwsw5ozVdLcE/K2Xo8jT2dPMGRIpH5gF59ty
1PftYvlo2cDbcxWiJgC5DaroQsH2MBHuCtexmpWrTvZTrK7bpKu6OEDh/+R/Aglq
i51+12V6bsksGlMAp3q4fVLjWGiOCZwjrZCVGzcCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSgqWnjq/zaONpQleRzowcB6/rSXzAfBgNVHSMEGDAWgBSYm639Khf8o7k1
o2ji4DrVbW47YjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21KdXRfU29YX0tPNU5hTm80dUE2MVcxdU8ySS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvNjg4MDA3LTJiMjQtNDRiOS04MGY0LWE2Mjg1MGZlZWJiNS8x
L29LbHA0NnY4MmpqYVVKWGtjNk1IQWV2NjBsOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
Njg4MDA3LTJiMjQtNDRiOS04MGY0LWE2Mjg1MGZlZWJiNS8xL21KdXRfU29YX0tP
NU5hTm80dUE2MVcxdU8ySS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEA7BKIAMEAsKxCDANBAIAAjAHAwUA
KgDrgDANBgkqhkiG9w0BAQsFAAOCAQEABP2BA+9LRCB6hX4LznyaY3Dgpi+jQ9I5
e2J6N7+Gn0xBvthsFW1zV+beRe0unyzfoEdl3qIcx5b1GVZT8Xxz34d+t9e6X91J
IO49iWBkw4qEYNV9WEC9uLqEDU8zPC69b9nmCCYQF1aCM09dbP1h8NNRuAy4ezjk
FbpAPCJBbGEgskq8xi7WJpaB2G9YjFmDqKF5Io1MTgL5I0xQlUrTPRWk9FWrQJjG
cRZqspNmW5z5Cgj8CccEVeeVHMSskt5A0Qi149jqf5qeYPEmMoSADToL4eHCkXyG
ze132r0CsLdawVkxOITKDl5Qfx/T48Ouad5ZCpw3aUY0HLyZg5OQmw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:44 2024 by rpki-client on console-fra.rpki-client.org