Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/oHVG1rJSF8jTpU53t3f2cvCzqKM.roa
File: oHVG1rJSF8jTpU53t3f2cvCzqKM.roa (raw, json)
Hash identifier: 4Rd8zxJTBOu+szD3/RedFOoExQ0XraFdCSIL6ogVjG4=
Subject key identifier: A0:75:46:D6:B2:52:17:C8:D3:A5:4E:77:B7:77:F6:72:F0:B3:A8:A3
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 19AF4625
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/oHVG1rJSF8jTpU53t3f2cvCzqKM.roa
Signing time: Sat 01 Jan 2022 05:52:42 +0000
ROA not before: Sat 01 Jan 2022 05:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212480
IP address blocks: 92.255.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430917157 (0x19af4625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 05:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a07546d6b25217c8d3a54e77b777f672f0b3a8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6d:04:b6:05:42:a7:e4:d3:d7:68:2f:a0:93:
ec:a0:9b:9c:db:f4:d6:2c:97:9a:7d:1b:90:0c:23:
2c:b9:b9:a1:93:ae:ab:23:ce:ba:ad:ab:5e:b7:f7:
c7:7f:36:4c:06:f7:92:5a:88:21:8f:23:78:cd:0b:
9c:d5:3b:b8:b0:8b:ee:5b:30:d9:31:d9:f9:05:92:
19:9e:31:94:ca:63:5e:b6:28:4a:79:9b:9d:69:56:
7b:3d:40:60:59:a2:35:f4:f2:95:79:f5:2d:c4:ff:
eb:b8:a5:79:37:ce:a7:fc:1a:94:d6:20:f9:64:be:
70:6a:0f:39:6f:7b:8f:cc:4e:7e:b8:ca:be:33:19:
70:a3:b0:a6:4e:ec:66:52:04:af:78:b0:47:69:cf:
59:10:d2:4a:8a:de:ef:3d:70:a2:a6:14:d5:26:c3:
ad:2a:90:0b:72:41:58:55:bf:ee:35:f0:a7:7e:87:
26:6a:15:d5:ba:16:9f:54:f3:31:1d:d9:1e:8c:2a:
d3:76:31:de:da:92:25:6b:c6:1a:42:a2:82:6f:d4:
20:52:5e:51:1a:71:14:69:6e:1a:59:1e:b9:64:b0:
5a:eb:fc:9c:2f:a0:43:a8:7b:00:2d:bf:8c:55:cb:
f9:86:cb:ab:70:d1:52:c7:ea:a1:6c:ae:3b:ae:17:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:75:46:D6:B2:52:17:C8:D3:A5:4E:77:B7:77:F6:72:F0:B3:A8:A3
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/oHVG1rJSF8jTpU53t3f2cvCzqKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.255.49.0/24
Signature Algorithm: sha256WithRSAEncryption
24:af:be:31:be:74:db:d8:1a:04:75:cf:c0:c4:e5:68:43:fd:
40:2d:b5:47:75:c1:7a:16:02:65:32:6b:d1:ae:0f:b3:0f:39:
66:29:a5:ff:87:c6:71:12:7c:30:43:33:35:a1:02:4e:f6:21:
f9:e6:ae:e0:af:f6:f1:1f:d3:5a:a3:21:5b:c5:3d:a7:e5:a8:
fc:97:7e:b9:16:c2:f0:7f:9c:6e:7c:0f:6d:81:64:04:9a:4f:
24:61:13:c0:3d:27:44:21:e7:c8:ff:e7:29:e8:57:c2:50:3e:
06:4f:ac:c2:ea:45:fb:52:74:bf:0d:51:28:04:5e:9b:d8:51:
30:ef:94:7b:7c:4e:81:24:bb:3a:fa:a7:2f:22:54:f4:0f:43:
b4:47:7e:ae:8a:c4:41:87:e6:50:c3:fe:a2:b2:9d:7f:cf:92:
f8:8d:b0:06:e3:eb:b4:81:d8:2f:af:34:2f:ff:6b:f2:ad:66:
18:e0:79:57:2b:8d:74:51:e0:56:56:f9:d5:f8:81:ec:71:d7:
0c:89:1f:7a:1d:a0:71:55:f0:bb:fd:7d:c8:1c:5e:4b:08:4f:
32:40:f9:12:7f:21:f4:49:ef:0e:47:60:5f:82:33:a2:85:dc:
da:9a:43:a6:5a:2e:77:68:db:2e:99:b6:5d:e5:59:1d:e4:64:
5c:95:0d:30
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGa9GJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDgzMTNlNDFlNjQ2YTA5Y2QwMWUyZTZmNDczOWQzYmQyMzZjNGZmMB4XDTIyMDEw
MTA1NTI0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTA3NTQ2ZDZiMjUy
MTdjOGQzYTU0ZTc3Yjc3N2Y2NzJmMGIzYThhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL9tBLYFQqfk09doL6CT7KCbnNv01iyXmn0bkAwjLLm5oZOu
qyPOuq2rXrf3x382TAb3klqIIY8jeM0LnNU7uLCL7lsw2THZ+QWSGZ4xlMpjXrYo
SnmbnWlWez1AYFmiNfTylXn1LcT/67ileTfOp/walNYg+WS+cGoPOW97j8xOfrjK
vjMZcKOwpk7sZlIEr3iwR2nPWRDSSore7z1woqYU1SbDrSqQC3JBWFW/7jXwp36H
JmoV1boWn1TzMR3ZHowq03Yx3tqSJWvGGkKigm/UIFJeURpxFGluGlkeuWSwWuv8
nC+gQ6h7AC2/jFXL+YbLq3DRUsfqoWyuO64XvvsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSgdUbWslIXyNOlTne3d/Zy8LOoozAfBgNVHSMEGDAWgBTNgxPkHmRqCc0B
4ub0c5070jbE/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pZTVQ1QjVrYWduTkFlTG05SE9kTzlJMnhQOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvMzQ2NWYzLTAzYzItNGVhYS1hNjc0LTg4NjJiNTE3MzE3Yy8x
L29IVkcxckpTRjhqVHBVNTN0M2YyY3ZDenFLTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
MzQ2NWYzLTAzYzItNGVhYS1hNjc0LTg4NjJiNTE3MzE3Yy8xL3pZTVQ1QjVrYWdu
TkFlTG05SE9kTzlJMnhQOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFz/MTANBgkqhkiG9w0BAQsFAAOC
AQEAJK++Mb5029gaBHXPwMTlaEP9QC21R3XBehYCZTJr0a4Psw85Ziml/4fGcRJ8
MEMzNaECTvYh+eau4K/28R/TWqMhW8U9p+Wo/Jd+uRbC8H+cbnwPbYFkBJpPJGET
wD0nRCHnyP/nKehXwlA+Bk+swupF+1J0vw1RKARem9hRMO+Ue3xOgSS7OvqnLyJU
9A9DtEd+rorEQYfmUMP+orKdf8+S+I2wBuPrtIHYL680L/9r8q1mGOB5VyuNdFHg
Vlb51fiB7HHXDIkfeh2gcVXwu/19yBxeSwhPMkD5En8h9EnvDkdgX4IzooXc2ppD
ploud2jbLpm2XeVZHeRkXJUNMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org