Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oDBvBGbYUhyuhVQ6GF-yCQ0_VHA.roa
File: oDBvBGbYUhyuhVQ6GF-yCQ0_VHA.roa (raw, json)
Hash identifier: kNcs2Qo0GsKBpwxn0XlzKGDq0MDxQkAQILH/l2RA6vU=
Subject key identifier: A0:30:6F:04:66:D8:52:1C:AE:85:54:3A:18:5F:B2:09:0D:3F:54:70
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0DDDC1D5
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oDBvBGbYUhyuhVQ6GF-yCQ0_VHA.roa
Signing time: Mon 11 Apr 2022 07:53:53 +0000
ROA not before: Mon 11 Apr 2022 07:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 185.121.122.0/23 maxlen: 24
185.121.121.0/24 maxlen: 24
185.239.243.0/24 maxlen: 24
220.158.196.0/22 maxlen: 24
45.144.226.0/24 maxlen: 24
62.197.138.0/23 maxlen: 24
193.239.164.0/23 maxlen: 24
62.197.137.0/24 maxlen: 24
62.197.140.0/22 maxlen: 24
203.159.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232636885 (0xdddc1d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 11 07:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0306f0466d8521cae85543a185fb2090d3f5470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2f:30:d5:4e:fb:13:ed:32:c0:12:c9:c2:6b:
a4:c1:e8:63:f3:83:7e:ca:1f:c9:9a:36:fd:7d:59:
0b:f4:86:63:f6:8e:25:f6:d3:d8:ac:b6:dd:4b:8d:
b8:e2:20:82:bd:07:82:1b:0b:0e:c3:78:17:96:95:
46:2e:7b:ba:25:e2:06:17:c6:4c:c9:cb:04:44:14:
eb:ad:8f:21:fd:8a:be:c8:d8:64:20:52:54:39:9f:
19:f1:eb:ff:7c:97:eb:c9:1a:9d:55:58:63:60:bb:
c5:3e:91:b2:47:ea:d2:fe:03:eb:78:2f:fc:c3:ec:
32:54:d4:4f:f3:f7:76:d7:9b:61:57:e0:72:05:29:
7a:9f:f8:79:91:63:38:b3:48:95:02:f5:d5:52:19:
d3:d0:ae:90:27:40:a0:e0:0d:c6:79:04:ec:77:7c:
4b:b5:5f:f0:a8:b8:a1:d3:50:21:2d:89:d4:8f:e5:
61:ef:88:61:05:67:d7:cf:e1:88:f3:3f:74:3a:f9:
72:88:10:bf:04:a3:8e:ca:b0:0e:4c:a2:f2:b8:09:
0a:76:f1:96:42:fa:de:bd:5b:04:cc:3b:e0:4b:92:
9f:ba:3b:6a:18:b8:50:87:01:2e:01:2c:6e:a8:15:
21:f1:22:31:e6:98:ec:44:ed:5b:20:fa:bf:fb:92:
f1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:30:6F:04:66:D8:52:1C:AE:85:54:3A:18:5F:B2:09:0D:3F:54:70
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oDBvBGbYUhyuhVQ6GF-yCQ0_VHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.226.0/24
62.197.137.0-62.197.143.255
185.121.121.0-185.121.123.255
185.239.243.0/24
193.239.164.0/23
203.159.80.0/24
220.158.196.0/22
Signature Algorithm: sha256WithRSAEncryption
52:91:5e:46:66:7f:cd:09:0d:b3:cf:be:9d:09:b0:57:34:ac:
58:f4:c6:c2:15:54:f6:4c:1d:c0:e7:b9:db:14:18:ea:7e:34:
90:ce:21:35:3b:ec:ea:5a:aa:03:6b:7c:9b:ae:0d:b8:84:82:
97:4e:59:36:2b:5f:f5:0e:d2:63:4e:70:b7:01:e6:ac:9e:0f:
4d:a0:96:a2:95:25:49:f6:b5:39:10:28:03:a4:0e:3c:ac:e1:
48:c7:21:57:a4:fb:0f:5d:0a:2b:5e:77:58:e5:97:f6:6e:9c:
5e:02:cf:16:c5:87:78:cc:99:a5:3e:0c:fb:cf:57:19:ed:60:
f5:3d:8a:98:78:af:1c:8a:bc:71:78:5a:4f:03:e1:de:73:0f:
84:0e:98:b9:a4:85:24:d9:73:5d:ad:a9:3f:30:f0:04:ca:ae:
aa:4e:91:ca:37:79:99:4d:89:4d:2d:28:e5:6c:60:27:ea:3b:
3d:c8:ce:06:57:b4:14:a5:8c:4a:5f:4a:d7:89:44:14:c4:c2:
95:8a:2c:39:c0:be:15:f1:12:f2:66:2c:cf:c9:40:a5:56:fb:
56:8c:bb:8f:47:8f:9a:36:e5:a5:9d:e0:a0:c3:8a:11:f0:1a:
15:00:94:f8:bd:e3:e4:73:cc:f5:5c:e6:1f:2e:f0:8f:af:8e:
01:0c:95:87
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIEDd3B1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NmMyYTRiN2Q1ZDczYzViNTcwNDYyMjNiZjMwZWI2NTMwMDViMGUyMB4XDTIyMDQx
MTA3NTM1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTAzMDZmMDQ2NmQ4
NTIxY2FlODU1NDNhMTg1ZmIyMDkwZDNmNTQ3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMvMNVO+xPtMsASycJrpMHoY/ODfsofyZo2/X1ZC/SGY/aO
JfbT2Ky23UuNuOIggr0HghsLDsN4F5aVRi57uiXiBhfGTMnLBEQU662PIf2KvsjY
ZCBSVDmfGfHr/3yX68kanVVYY2C7xT6Rskfq0v4D63gv/MPsMlTUT/P3dtebYVfg
cgUpep/4eZFjOLNIlQL11VIZ09CukCdAoOANxnkE7Hd8S7Vf8Ki4odNQIS2J1I/l
Ye+IYQVn18/hiPM/dDr5cogQvwSjjsqwDkyi8rgJCnbxlkL63r1bBMw74EuSn7o7
ahi4UIcBLgEsbqgVIfEiMeaY7ETtWyD6v/uS8X0CAwEAAaOCAj0wggI5MB0GA1Ud
DgQWBBSgMG8EZthSHK6FVDoYX7IJDT9UcDAfBgNVHSMEGDAWgBQ2wqS31dc8W1cE
YiO/MOtlMAWw4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05zS2t0OVhYUEZ0WEJHSWp2ekRyWlRBRnNPSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvOGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8x
L29EQnZCR2JZVWh5dWhWUTZHRi15Q1EwX1ZIQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
OGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8xL05zS2t0OVhYUEZ0
WEJHSWp2ekRyWlRBRnNPSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBT
BggrBgEFBQcBBwEB/wREMEIwQAQCAAEwOgMEAC2Q4jAMAwQAPsWJAwQEPsWAMAwD
BAC5eXkDBAK5eXgDBAC57/MDBAHB76QDBADLn1ADBALcnsQwDQYJKoZIhvcNAQEL
BQADggEBAFKRXkZmf80JDbPPvp0JsFc0rFj0xsIVVPZMHcDnudsUGOp+NJDOITU7
7OpaqgNrfJuuDbiEgpdOWTYrX/UO0mNOcLcB5qyeD02glqKVJUn2tTkQKAOkDjys
4UjHIVek+w9dCited1jll/ZunF4CzxbFh3jMmaU+DPvPVxntYPU9iph4rxyKvHF4
Wk8D4d5zD4QOmLmkhSTZc12tqT8w8ATKrqpOkco3eZlNiU0tKOVsYCfqOz3IzgZX
tBSljEpfSteJRBTEwpWKLDnAvhXxEvJmLM/JQKVW+1aMu49Hj5o25aWd4KDDihHw
GhUAlPi94+RzzPVc5h8u8I+vjgEMlYc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:48 2024 by rpki-client on console-fra.rpki-client.org