Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/02Oun7eGSM6RFrHLjgNSR4De7Lk.roa
File: 02Oun7eGSM6RFrHLjgNSR4De7Lk.roa (raw, json)
Hash identifier: zP/WPtLrAz4aD9rN6bCmq1pd0d8V7Pw7YJW+qxIGDII=
Subject key identifier: D3:63:AE:9F:B7:86:48:CE:91:16:B1:CB:8E:03:52:47:80:DE:EC:B9
Certificate issuer: /CN=3da4c2fbdf10f8231f3df531ce5a3a2e3b23cefc
Certificate serial: 06389BD7
Authority key identifier: 3D:A4:C2:FB:DF:10:F8:23:1F:3D:F5:31:CE:5A:3A:2E:3B:23:CE:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/02Oun7eGSM6RFrHLjgNSR4De7Lk.roa
Signing time: Sat 01 Jan 2022 10:53:34 +0000
ROA not before: Sat 01 Jan 2022 10:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28878
IP address blocks: 176.110.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104373207 (0x6389bd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3da4c2fbdf10f8231f3df531ce5a3a2e3b23cefc
Validity
Not Before: Jan 1 10:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d363ae9fb78648ce9116b1cb8e03524780deecb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:2b:a4:eb:9d:28:b1:ac:e2:20:48:fe:c5:
38:0b:a5:c1:05:f5:84:11:69:b3:57:88:fe:e7:3b:
8a:5f:4a:e6:55:13:58:c1:0e:10:93:d0:08:c0:fd:
4d:e4:32:5c:82:84:bf:9c:30:82:d1:0b:a3:fc:4c:
74:b5:7a:31:e1:86:38:74:62:61:e3:26:2e:d5:5f:
b8:9f:b1:9e:18:67:5b:e3:a8:1d:a6:68:84:8b:97:
8f:98:55:5d:9d:cf:0a:64:44:5e:f1:c8:7a:24:97:
a4:c1:01:61:6b:70:9d:cb:2d:74:72:6d:a2:cd:1c:
9b:c2:0d:eb:cc:13:9f:9d:96:91:01:81:27:f2:a2:
ce:d9:1d:13:2d:86:be:94:4e:07:a1:3e:ae:50:2e:
a4:68:7a:47:22:b0:ce:47:d7:6a:86:7f:87:7a:f9:
9b:c5:62:f5:52:0f:1e:68:d1:ee:5c:1d:89:fd:5c:
a1:c1:1b:75:6c:a9:95:7e:63:72:c5:12:42:86:f4:
bb:0f:ce:13:3d:ca:c1:e9:b4:e7:ce:40:32:7e:8b:
74:3b:9a:33:6b:1f:6a:0a:93:a8:e7:67:f2:05:f8:
5c:21:14:9c:a2:21:3e:2f:c4:ff:ea:98:0f:28:7f:
8e:20:6b:85:29:27:87:f0:fc:8f:cc:98:4c:77:18:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:63:AE:9F:B7:86:48:CE:91:16:B1:CB:8E:03:52:47:80:DE:EC:B9
X509v3 Authority Key Identifier:
keyid:3D:A4:C2:FB:DF:10:F8:23:1F:3D:F5:31:CE:5A:3A:2E:3B:23:CE:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/02Oun7eGSM6RFrHLjgNSR4De7Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.104.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f2:ed:c8:d8:c5:a8:a9:cc:d9:1e:b4:cd:04:b4:31:31:c8:
ca:4b:f3:54:cb:89:e8:95:23:9c:b0:0b:1c:02:63:b0:44:be:
f0:9c:87:00:17:df:e2:82:e7:74:8b:e5:53:c6:28:67:c5:04:
fa:da:83:0e:32:af:8e:88:e2:df:ff:16:9f:a5:cb:bc:27:9d:
1e:c1:96:59:4f:7f:81:6e:84:ce:58:77:f5:65:c2:35:78:e2:
2b:ca:ec:68:de:95:03:38:60:4a:4b:7a:22:e3:24:d5:7d:19:
24:f8:d9:4a:b4:d6:84:0b:49:a9:24:87:11:e5:a6:43:9a:8f:
03:5a:cc:c6:ad:bd:65:91:23:ff:f0:b9:79:71:9b:80:c3:18:
36:0a:6b:ef:ed:c9:15:09:bf:25:8b:06:ed:69:6e:1f:d9:62:
90:9d:9a:92:dc:ec:f8:ec:8e:16:ba:23:e8:e6:dc:bd:42:bb:
0e:c0:75:ca:6a:95:36:c0:ea:fd:1a:b3:2d:d1:52:10:d3:88:
8e:85:48:91:43:99:3f:49:b7:41:6d:ba:55:43:15:0c:c4:8e:
37:e1:a6:9b:c3:bc:a5:59:59:4a:3c:7b:b0:5f:97:74:6a:eb:
05:46:45:a5:ca:96:02:28:2b:b7:fa:0b:b0:01:3e:87:07:ec:
96:bb:98:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBjib1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZGE0YzJmYmRmMTBmODIzMWYzZGY1MzFjZTVhM2EyZTNiMjNjZWZjMB4XDTIyMDEw
MTEwNTMzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDM2M2FlOWZiNzg2
NDhjZTkxMTZiMWNiOGUwMzUyNDc4MGRlZWNiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJ5K6TrnSixrOIgSP7FOAulwQX1hBFps1eI/uc7il9K5lUT
WMEOEJPQCMD9TeQyXIKEv5wwgtELo/xMdLV6MeGGOHRiYeMmLtVfuJ+xnhhnW+Oo
HaZohIuXj5hVXZ3PCmREXvHIeiSXpMEBYWtwncstdHJtos0cm8IN68wTn52WkQGB
J/KiztkdEy2GvpROB6E+rlAupGh6RyKwzkfXaoZ/h3r5m8Vi9VIPHmjR7lwdif1c
ocEbdWyplX5jcsUSQob0uw/OEz3Kwem0585AMn6LdDuaM2sfagqTqOdn8gX4XCEU
nKIhPi/E/+qYDyh/jiBrhSknh/D8j8yYTHcYZDcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTTY66ft4ZIzpEWscuOA1JHgN7suTAfBgNVHSMEGDAWgBQ9pML73xD4Ix89
9THOWjouOyPO/DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BhVEMtOThRLUNNZlBmVXh6bG82TGpzanp2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjEvMzQ5YzU4LWZiYjAtNGRkZC1hMDgwLWQyYzk3ZDY1ZWZhOC8x
LzAyT3VuN2VHU002UkZySExqZ05TUjREZTdMay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEv
MzQ5YzU4LWZiYjAtNGRkZC1hMDgwLWQyYzk3ZDY1ZWZhOC8xL1BhVEMtOThRLUNN
ZlBmVXh6bG82TGpzanp2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALBuaDANBgkqhkiG9w0BAQsFAAOC
AQEAHfLtyNjFqKnM2R60zQS0MTHIykvzVMuJ6JUjnLALHAJjsES+8JyHABff4oLn
dIvlU8YoZ8UE+tqDDjKvjoji3/8Wn6XLvCedHsGWWU9/gW6Ezlh39WXCNXjiK8rs
aN6VAzhgSkt6IuMk1X0ZJPjZSrTWhAtJqSSHEeWmQ5qPA1rMxq29ZZEj//C5eXGb
gMMYNgpr7+3JFQm/JYsG7WluH9likJ2aktzs+OyOFroj6ObcvUK7DsB1ymqVNsDq
/RqzLdFSENOIjoVIkUOZP0m3QW26VUMVDMSON+Gmm8O8pVlZSjx7sF+XdGrrBUZF
pcqWAigrt/oLsAE+hwfslruYVg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:05 2024 by rpki-client on console-ams.rpki-client.org