Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ozg8UaNN3bZmnpO7ZViJsSWTdio.roa
File: Ozg8UaNN3bZmnpO7ZViJsSWTdio.roa (raw, json)
Hash identifier: m62foJio4Bw5DJCd6W7wrI76wC16FWFoWM+EYT5+E2U=
Subject key identifier: 3B:38:3C:51:A3:4D:DD:B6:66:9E:93:BB:65:58:89:B1:25:93:76:2A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0753A7A7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ozg8UaNN3bZmnpO7ZViJsSWTdio.roa
Signing time: Sun 27 Mar 2022 15:31:46 +0000
ROA not before: Sun 27 Mar 2022 15:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 185.230.52.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122922919 (0x753a7a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 27 15:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b383c51a34dddb6669e93bb655889b12593762a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:08:6d:27:95:a8:15:64:53:3e:e6:d9:69:c0:
d2:fe:77:9b:95:63:25:cd:04:2f:28:1f:5f:58:40:
4a:ea:5f:68:00:6c:c3:ec:0f:5f:b5:62:4a:03:66:
22:2f:12:84:07:1c:ff:fb:17:2a:91:5e:68:69:17:
62:2d:c7:23:e9:d0:21:5e:9f:64:3d:8c:1f:f6:43:
56:a1:e7:6c:25:dd:87:89:5f:0a:ae:de:1b:13:aa:
d1:cb:3f:7b:bc:28:83:b3:ab:88:8f:68:17:72:79:
38:07:f2:39:47:c1:69:50:f6:bc:ae:b0:82:87:2e:
40:0c:1b:4e:07:cb:48:7e:a7:5c:71:3d:df:8c:e1:
3d:fb:50:e0:32:3d:3a:43:c8:84:2a:26:c6:bd:ce:
09:0e:6a:85:a4:b4:e4:96:82:4c:a0:1b:6c:f9:7d:
df:fa:2c:69:ba:af:47:1e:ff:96:e1:45:49:f0:d3:
28:fb:3d:15:f1:45:32:44:79:73:d4:46:0b:d2:17:
97:19:bc:d4:ab:3b:2e:1f:f2:0e:ff:cc:c9:e9:22:
03:c9:76:fa:f2:8e:60:46:b9:cf:c5:3b:a5:79:7d:
6b:c7:98:ef:e2:4b:00:68:13:dc:02:2c:9c:4b:26:
cd:78:e5:85:28:cf:8d:ff:d1:86:27:00:fa:d3:d8:
40:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:38:3C:51:A3:4D:DD:B6:66:9E:93:BB:65:58:89:B1:25:93:76:2A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Ozg8UaNN3bZmnpO7ZViJsSWTdio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.78.0/24
185.230.52.0/24
Signature Algorithm: sha256WithRSAEncryption
86:c4:7b:a9:e9:1f:7a:04:22:18:79:00:fb:b8:84:fd:b3:8d:
82:45:34:5a:7c:8b:74:dd:7b:68:18:6c:b5:c9:0a:0f:e7:67:
d7:83:33:b4:c1:15:6e:5a:3d:59:b4:1b:10:96:c6:79:f0:27:
4d:ec:e4:54:6a:50:64:0b:c9:7a:df:46:95:db:01:85:46:c1:
1f:59:a6:c8:eb:f7:18:bc:1b:d0:7c:1b:30:8c:31:f2:b7:da:
cf:3f:35:8b:21:69:51:c8:86:59:4e:ad:ea:aa:3d:78:f9:c8:
03:f1:bc:f6:c6:8e:1f:6e:ac:c5:20:4d:c8:db:03:54:34:8f:
6a:af:42:1a:21:26:6e:0a:9c:29:25:bb:95:1d:f3:88:4a:55:
49:fc:18:31:4c:ae:00:cf:8e:bd:8d:4a:ef:07:3d:8f:18:9a:
e6:fc:06:c5:34:6c:ff:0b:aa:c2:0c:8d:0a:1f:c8:95:a0:36:
45:8a:ea:66:ce:e2:22:2b:05:92:12:4e:4f:ef:ba:24:db:ea:
4c:57:86:eb:32:19:2e:52:b0:24:99:cd:79:d9:51:c5:1d:50:
09:d8:f3:c6:f6:34:2d:e9:6c:97:77:9c:ab:44:8b:96:2f:8c:
fe:ee:7b:49:89:5f:78:6c:7a:b4:78:d6:81:14:e8:d4:b4:f2:
8f:a5:9e:ef
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB1OnpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDMy
NzE1MzE0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2IzODNjNTFhMzRk
ZGRiNjY2OWU5M2JiNjU1ODg5YjEyNTkzNzYyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIIbSeVqBVkUz7m2WnA0v53m5VjJc0ELygfX1hASupfaABs
w+wPX7ViSgNmIi8ShAcc//sXKpFeaGkXYi3HI+nQIV6fZD2MH/ZDVqHnbCXdh4lf
Cq7eGxOq0cs/e7wog7OriI9oF3J5OAfyOUfBaVD2vK6wgocuQAwbTgfLSH6nXHE9
34zhPftQ4DI9OkPIhComxr3OCQ5qhaS05JaCTKAbbPl93/osabqvRx7/luFFSfDT
KPs9FfFFMkR5c9RGC9IXlxm81Ks7Lh/yDv/MyekiA8l2+vKOYEa5z8U7pXl9a8eY
7+JLAGgT3AIsnEsmzXjlhSjPjf/RhicA+tPYQHkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ7ODxRo03dtmaek7tlWImxJZN2KjAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L096ZzhVYU5OM2JabW5wTzdaVmlKc1NXVGRpby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALnfTgMEALnmNDANBgkqhkiG9w0B
AQsFAAOCAQEAhsR7qekfegQiGHkA+7iE/bONgkU0WnyLdN17aBhstckKD+dn14Mz
tMEVblo9WbQbEJbGefAnTezkVGpQZAvJet9GldsBhUbBH1mmyOv3GLwb0HwbMIwx
8rfazz81iyFpUciGWU6t6qo9ePnIA/G89saOH26sxSBNyNsDVDSPaq9CGiEmbgqc
KSW7lR3ziEpVSfwYMUyuAM+OvY1K7wc9jxia5vwGxTRs/wuqwgyNCh/IlaA2RYrq
Zs7iIisFkhJOT++6JNvqTFeG6zIZLlKwJJnNedlRxR1QCdjzxvY0Lelsl3ecq0SL
li+M/u57SYlfeGx6tHjWgRTo1LTyj6We7w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org