Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OJT2x6TJdbyDaUNIBWxpNvtmrAQ.roa
File: OJT2x6TJdbyDaUNIBWxpNvtmrAQ.roa (raw, json)
Hash identifier: Ubi3iPqbQQmMtsZ2rnkphM6rZ4BTT2lD2YAq2sW+rTk=
Subject key identifier: 38:94:F6:C7:A4:C9:75:BC:83:69:43:48:05:6C:69:36:FB:66:AC:04
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17F4F2F7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OJT2x6TJdbyDaUNIBWxpNvtmrAQ.roa
Signing time: Sat 01 Jan 2022 04:54:53 +0000
ROA not before: Sat 01 Jan 2022 04:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212582
IP address blocks: 185.208.168.0/24 maxlen: 32
185.188.7.0/24 maxlen: 32
194.34.229.0/24 maxlen: 32
213.232.106.0/24 maxlen: 32
185.177.82.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401928951 (0x17f4f2f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3894f6c7a4c975bc83694348056c6936fb66ac04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:55:f5:7b:f6:6e:54:c8:db:f2:4a:0c:10:
25:0c:fd:22:99:b5:aa:7c:99:cf:e3:9f:e6:26:72:
88:b1:72:bd:fa:31:2e:66:1d:b2:b6:21:64:82:41:
9e:15:d7:76:f1:6c:d9:1c:96:db:a0:e3:46:e7:e0:
e7:06:73:4f:d0:7d:e6:2b:42:b7:d9:58:1c:fb:01:
10:ab:53:34:38:46:9d:30:7e:85:99:1b:58:5e:35:
99:a9:45:40:83:a2:57:1d:22:1d:3e:ff:cc:06:7f:
c5:b9:16:19:9e:0a:a8:83:79:f7:5c:1f:14:3d:4a:
06:14:54:ad:0e:05:0e:f8:96:f9:14:fb:16:15:c8:
a8:a3:c8:fa:36:2e:54:b9:e7:30:dc:45:fc:ca:bb:
fe:56:9f:c6:3a:62:61:8c:ef:42:83:89:b0:6c:f7:
db:a0:76:da:2b:f7:b0:ee:a3:b9:0f:04:7b:d3:28:
9e:c7:74:25:d1:88:0f:ef:74:cd:18:3a:cd:a4:ef:
d3:48:08:a4:70:56:3a:dd:aa:b4:1a:c0:74:29:ac:
e5:a9:64:93:9a:47:1b:86:65:c7:c4:fb:da:39:47:
8a:73:72:c2:a1:be:93:5f:1f:e1:aa:69:64:f8:24:
ca:97:0b:ac:3f:4b:ef:81:e0:65:e7:47:55:21:40:
39:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:94:F6:C7:A4:C9:75:BC:83:69:43:48:05:6C:69:36:FB:66:AC:04
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OJT2x6TJdbyDaUNIBWxpNvtmrAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.82.0/24
185.188.7.0/24
185.208.168.0/24
194.34.229.0/24
213.232.106.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:09:27:09:03:00:ac:1d:6c:7e:ba:ac:d3:1a:5f:cc:3b:c8:
67:e2:a6:df:da:0f:91:7a:f2:f9:f3:58:8d:04:4a:07:13:b0:
ab:f4:a3:09:71:8b:68:3d:de:0f:65:7e:e8:d0:67:23:0b:d2:
43:72:8f:d7:5e:11:3b:86:3b:7d:98:6c:1a:2b:9d:38:9d:e7:
ba:d3:f2:93:ff:38:57:48:c2:ae:64:d7:a9:b9:11:43:bb:c4:
63:84:96:7c:83:16:c5:1d:ef:d3:fe:0c:18:5d:9e:87:0e:6a:
84:22:26:c2:d8:6e:00:3b:34:07:52:b9:a3:56:5a:cb:d4:f5:
dc:ac:fc:00:80:f6:f4:73:10:46:c2:a2:74:79:33:d2:ec:e8:
58:a3:ac:cd:c0:8f:2b:3e:ec:fe:74:7c:56:3a:b3:ce:65:56:
ba:da:bc:0c:0a:c9:a0:1f:9e:4c:57:a1:a8:62:e3:3b:0e:79:
18:ba:d1:f2:55:71:d5:60:0f:19:b2:1a:32:28:46:7a:d2:51:
7b:3a:a3:44:93:25:9f:22:32:7f:f9:02:4a:97:51:b2:18:54:
a3:cb:dc:01:f6:ab:a2:0e:b5:ca:69:b8:43:31:45:7b:9c:7c:
7c:85:72:b5:5f:66:d4:39:15:4b:f1:9f:c3:e8:c2:b7:63:3e:
cb:56:d3:17
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEF/Ty9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQ1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzg5NGY2YzdhNGM5
NzViYzgzNjk0MzQ4MDU2YzY5MzZmYjY2YWMwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSbVfV79m5UyNvySgwQJQz9Ipm1qnyZz+Of5iZyiLFyvfox
LmYdsrYhZIJBnhXXdvFs2RyW26DjRufg5wZzT9B95itCt9lYHPsBEKtTNDhGnTB+
hZkbWF41malFQIOiVx0iHT7/zAZ/xbkWGZ4KqIN591wfFD1KBhRUrQ4FDviW+RT7
FhXIqKPI+jYuVLnnMNxF/Mq7/lafxjpiYYzvQoOJsGz326B22iv3sO6juQ8Ee9Mo
nsd0JdGID+90zRg6zaTv00gIpHBWOt2qtBrAdCms5alkk5pHG4Zlx8T72jlHinNy
wqG+k18f4appZPgkypcLrD9L74HgZedHVSFAOU0CAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBQ4lPbHpMl1vINpQ0gFbGk2+2asBDAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L09KVDJ4NlRKZGJ5RGFVTklCV3hwTnZ0bXJBUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEALmxUgMEALm8BwMEALnQqAMEAMIi
5QMEANXoajANBgkqhkiG9w0BAQsFAAOCAQEAxwknCQMArB1sfrqs0xpfzDvIZ+Km
39oPkXry+fNYjQRKBxOwq/SjCXGLaD3eD2V+6NBnIwvSQ3KP114RO4Y7fZhsGiud
OJ3nutPyk/84V0jCrmTXqbkRQ7vEY4SWfIMWxR3v0/4MGF2ehw5qhCImwthuADs0
B1K5o1Zay9T13Kz8AID29HMQRsKidHkz0uzoWKOszcCPKz7s/nR8VjqzzmVWutq8
DArJoB+eTFehqGLjOw55GLrR8lVx1WAPGbIaMihGetJRezqjRJMlnyIyf/kCSpdR
shhUo8vcAfarog61ymm4QzFFe5x8fIVytV9m1DkVS/Gfw+jCt2M+y1bTFw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org