Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Oc_awL2GOezahuDs9_wvojo3rqQ.roa
File: Oc_awL2GOezahuDs9_wvojo3rqQ.roa (raw, json)
Hash identifier: R/rDjS3nXD6ozltvBPMldL/nafI5i8nKLyQmEebH6eE=
Subject key identifier: 39:CF:DA:C0:BD:86:39:EC:DA:86:E0:EC:F7:FC:2F:A2:3A:37:AE:A4
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 0FFBAE5E
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Oc_awL2GOezahuDs9_wvojo3rqQ.roa
Signing time: Sat 01 Jan 2022 08:53:43 +0000
ROA not before: Sat 01 Jan 2022 08:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47846
IP address blocks: 82.98.86.0/24 maxlen: 24
213.83.58.0/24 maxlen: 24
82.98.99.0/24 maxlen: 24
82.98.109.192/27 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268152414 (0xffbae5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 08:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39cfdac0bd8639ecda86e0ecf7fc2fa23a37aea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:09:b0:2e:f8:28:bc:d3:56:e4:ad:88:97:0a:
49:88:44:d6:c1:fa:57:a9:b0:67:8f:fc:4f:ce:b9:
d8:8d:63:63:b9:71:83:f9:38:b8:48:5e:17:1d:60:
af:e8:7e:6e:58:ab:08:b0:78:71:50:e8:bc:15:cb:
68:ab:16:5e:a6:82:3b:e6:51:7a:d4:2e:fb:a2:08:
96:5b:66:97:b1:71:42:aa:d5:70:c2:da:81:60:b9:
94:90:f7:98:de:5c:13:6c:c2:da:ae:94:3c:78:b6:
03:27:b8:dd:d7:87:eb:53:ad:26:2c:b3:c3:c9:95:
27:a7:00:3c:88:a7:71:38:ee:cb:fd:60:2d:27:1d:
dc:57:36:fd:63:c4:05:3d:f8:44:cd:f8:31:70:eb:
82:92:86:b8:6a:3d:f0:98:ec:d2:be:ac:0a:30:db:
e1:ce:8b:4c:72:1c:6d:ec:f6:27:6b:3a:9d:63:3e:
3e:9c:3f:34:86:df:dc:a3:a7:73:6b:fc:ab:e6:4c:
ff:bb:4c:b2:d8:3f:c7:3d:05:f2:5a:e2:8c:6e:e1:
bb:a5:78:0f:3d:46:b8:6d:6a:ed:e0:ea:1d:94:54:
40:b3:ab:94:28:af:6f:7d:52:af:f1:37:79:d3:d4:
45:16:18:80:6d:49:70:bf:57:e4:62:d8:d6:bc:a2:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CF:DA:C0:BD:86:39:EC:DA:86:E0:EC:F7:FC:2F:A2:3A:37:AE:A4
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Oc_awL2GOezahuDs9_wvojo3rqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.86.0/24
82.98.99.0/24
82.98.109.192/27
213.83.58.0/24
Signature Algorithm: sha256WithRSAEncryption
26:87:d4:7d:42:f7:48:de:6f:b1:45:e7:1d:59:49:1d:a3:4f:
67:43:1c:f9:ef:8c:98:bc:34:2b:bc:90:43:5c:f4:61:b8:97:
d7:fa:c3:1f:5a:c0:26:3e:72:3a:59:8b:09:79:91:11:79:ba:
6a:dd:09:6b:96:d3:70:9f:cc:40:15:f3:05:26:1a:3d:c7:5b:
ef:de:09:05:da:4b:23:f9:0e:04:a3:87:5d:83:a8:9f:00:5a:
fd:38:24:04:93:4f:5d:d7:2a:4f:03:17:11:39:82:2d:fc:74:
01:81:0f:90:0b:a3:1c:d7:d6:00:33:e9:a7:44:b7:05:8c:51:
05:f1:8e:9d:97:54:19:d5:25:da:c7:d0:22:0f:31:2d:ef:b9:
ec:15:5a:6b:d5:ff:e5:60:81:9a:12:c5:b3:be:53:00:71:0e:
99:89:f6:00:25:82:82:4f:21:04:57:36:69:71:ad:93:4e:22:
a2:94:f2:c4:e7:48:06:52:aa:f5:bc:74:fa:9d:53:f9:ef:d7:
f4:23:65:2a:1c:47:85:1d:49:be:4e:b0:09:d4:2e:24:cf:3b:
6e:ac:63:fc:e0:39:bf:fe:4f:61:1e:f1:b0:35:bc:fc:a9:af:
0a:18:d4:39:23:37:24:92:f6:7d:1e:d8:5d:fa:92:ef:6b:53:
47:1c:62:70
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgIED/uuXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDhiYTBhNTJjNDIxMjlhZjFkNGY3NDNmZWIzM2JiMTQ0ZDRiYjVjMB4XDTIyMDEw
MTA4NTM0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzljZmRhYzBiZDg2
MzllY2RhODZlMGVjZjdmYzJmYTIzYTM3YWVhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALoJsC74KLzTVuStiJcKSYhE1sH6V6mwZ4/8T8652I1jY7lx
g/k4uEheFx1gr+h+blirCLB4cVDovBXLaKsWXqaCO+ZRetQu+6IIlltml7FxQqrV
cMLagWC5lJD3mN5cE2zC2q6UPHi2Aye43deH61OtJiyzw8mVJ6cAPIincTjuy/1g
LScd3Fc2/WPEBT34RM34MXDrgpKGuGo98Jjs0r6sCjDb4c6LTHIcbez2J2s6nWM+
Ppw/NIbf3KOnc2v8q+ZM/7tMstg/xz0F8lrijG7hu6V4Dz1GuG1q7eDqHZRUQLOr
lCivb31Sr/E3edPURRYYgG1JcL9X5GLY1ryirOkCAwEAAaOCAhwwggIYMB0GA1Ud
DgQWBBQ5z9rAvYY57NqG4Oz3/C+iOjeupDAfBgNVHSMEGDAWgBQ9i6ClLEISmvHU
90P+szuxRNS7XDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BZdWdwU3hDRXByeDFQZERfck03c1VUVXUxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8x
L09jX2F3TDJHT2V6YWh1RHM5X3d2b2pvM3JxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
ZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8xL1BZdWdwU3hDRXBy
eDFQZERfck03c1VUVXUxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAy
BggrBgEFBQcBBwEB/wQjMCEwHwQCAAEwGQMEAFJiVgMEAFJiYwMFBVJibcADBADV
UzowDQYJKoZIhvcNAQELBQADggEBACaH1H1C90jeb7FF5x1ZSR2jT2dDHPnvjJi8
NCu8kENc9GG4l9f6wx9awCY+cjpZiwl5kRF5umrdCWuW03CfzEAV8wUmGj3HW+/e
CQXaSyP5DgSjh12DqJ8AWv04JASTT13XKk8DFxE5gi38dAGBD5ALoxzX1gAz6adE
twWMUQXxjp2XVBnVJdrH0CIPMS3vuewVWmvV/+VggZoSxbO+UwBxDpmJ9gAlgoJP
IQRXNmlxrZNOIqKU8sTnSAZSqvW8dPqdU/nv1/QjZSocR4UdSb5OsAnULiTPO26s
Y/zgOb/+T2Ee8bA1vPyprwoY1DkjNySS9n0e2F36ku9rU0ccYnA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:36 2024 by rpki-client on console-ams.rpki-client.org