Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e96ef4-4f45-47c0-bebf-fa3e0901f240/1/mOUM_Lf79nqDal-5v5WrfzNRGcg.roa
File: mOUM_Lf79nqDal-5v5WrfzNRGcg.roa (raw, json)
Hash identifier: +pqM68IZLthS0uiLEFyTs4pGQcFMz8EZSxRwM+AoaDw=
Subject key identifier: 98:E5:0C:FC:B7:FB:F6:7A:83:6A:5F:B9:BF:95:AB:7F:33:51:19:C8
Certificate issuer: /CN=36fe3a91263e2e8319c2a678e629851d09e77f0d
Certificate serial: 015B9C
Authority key identifier: 36:FE:3A:91:26:3E:2E:83:19:C2:A6:78:E6:29:85:1D:09:E7:7F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nv46kSY-LoMZwqZ45imFHQnnfw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e96ef4-4f45-47c0-bebf-fa3e0901f240/1/mOUM_Lf79nqDal-5v5WrfzNRGcg.roa
Signing time: Mon 27 Jun 2022 12:52:34 +0000
ROA not before: Mon 27 Jun 2022 12:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199319
IP address blocks: 185.228.140.0/22 maxlen: 22
185.38.224.0/22 maxlen: 22
2a00:fb20:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88988 (0x15b9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36fe3a91263e2e8319c2a678e629851d09e77f0d
Validity
Not Before: Jun 27 12:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98e50cfcb7fbf67a836a5fb9bf95ab7f335119c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:a6:e5:ef:b5:a7:68:e0:fc:08:4a:e6:40:
29:1f:10:d6:5d:40:1c:ed:a2:18:50:8e:80:20:d8:
ea:09:2b:6c:40:ba:93:02:05:33:c2:aa:b6:6b:97:
f7:14:ac:80:4b:19:31:21:68:d8:85:b0:b5:2d:cf:
f0:61:cc:ee:ae:88:3a:08:49:86:4f:52:83:30:54:
14:d0:70:c9:c0:da:af:db:e7:51:ea:46:6e:5f:66:
9d:72:7e:40:ad:50:fc:28:e0:ca:f8:c8:0a:87:e3:
32:b7:7d:53:b1:72:54:69:b9:a5:a9:4f:77:b5:eb:
54:61:45:c3:c8:68:99:ad:76:6f:fa:ff:db:92:89:
6a:7c:a0:03:50:68:75:1a:5d:57:8c:2a:2d:54:2d:
a1:aa:78:b5:08:ca:a1:34:a0:de:27:1f:f1:59:da:
b2:2b:12:81:7f:16:0b:bb:66:4d:4f:4e:31:56:d4:
53:9a:99:30:6b:16:1a:69:33:5f:b9:95:91:c5:cf:
26:bb:78:a3:6c:5d:2b:fb:71:fb:ea:86:04:60:46:
26:87:b6:32:2f:b1:fe:ce:33:a0:6f:c1:19:51:e3:
7a:f0:85:50:bd:d4:d4:7c:c0:e7:f3:c0:67:43:12:
6b:ac:1c:e0:07:ad:40:de:e8:e4:76:48:a9:73:38:
44:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E5:0C:FC:B7:FB:F6:7A:83:6A:5F:B9:BF:95:AB:7F:33:51:19:C8
X509v3 Authority Key Identifier:
keyid:36:FE:3A:91:26:3E:2E:83:19:C2:A6:78:E6:29:85:1D:09:E7:7F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nv46kSY-LoMZwqZ45imFHQnnfw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e96ef4-4f45-47c0-bebf-fa3e0901f240/1/mOUM_Lf79nqDal-5v5WrfzNRGcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e96ef4-4f45-47c0-bebf-fa3e0901f240/1/Nv46kSY-LoMZwqZ45imFHQnnfw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.224.0/22
185.228.140.0/22
IPv6:
2a00:fb20:8000::/33
Signature Algorithm: sha256WithRSAEncryption
03:b3:a1:89:31:11:79:2e:33:74:d5:30:f9:c7:1f:65:93:78:
ba:d3:7b:96:91:44:5d:4a:c2:11:0b:3b:c0:af:20:7c:12:10:
80:85:42:dd:22:a3:22:33:41:fd:f8:cd:a2:7a:c5:fb:e8:eb:
f0:1f:c9:57:94:0e:74:2a:11:51:c8:dc:1c:31:02:cf:dd:b0:
f0:b8:0e:f0:a6:ac:ca:72:1d:50:fc:34:ed:20:46:cb:99:b6:
56:24:c1:cc:57:f1:97:3d:b6:14:d2:5c:75:2d:1f:d8:7f:bf:
37:72:6f:4f:39:52:ed:d4:97:60:c9:38:26:37:43:6d:e8:2e:
9c:48:5e:f9:87:52:9d:f0:04:02:5a:c5:05:ac:51:3e:ca:89:
ea:b8:50:46:61:09:40:df:88:cb:6c:d8:e1:b9:03:d0:15:38:
48:17:e7:2a:4b:6e:70:1e:ad:7c:3d:ab:29:81:2f:fe:a9:54:
bb:9b:62:72:a8:fe:a2:1e:e7:fa:84:b5:66:a5:62:79:d8:7c:
20:93:78:40:8e:85:27:6b:22:06:fc:87:ef:3b:0b:61:3f:9d:
2d:43:8f:2a:8a:11:7f:8d:30:a6:ea:b1:fa:cb:1d:2c:4a:9f:
03:e2:dd:df:75:c2:97:0d:63:9c:84:fa:66:f7:6b:d5:bd:42:
d4:6a:ae:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:35 2024 by rpki-client on console-ams.rpki-client.org