Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/OBGHYwlI3BUldacfhLcA8HjtF1I.roa
File: OBGHYwlI3BUldacfhLcA8HjtF1I.roa (raw, json)
Hash identifier: fZg8QXXWiK+n3pNjjlgEWv0XfJ7WdPyaZRtwDc+fuVg=
Subject key identifier: 38:11:87:63:09:48:DC:15:25:75:A7:1F:84:B7:00:F0:78:ED:17:52
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 024686A8
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/OBGHYwlI3BUldacfhLcA8HjtF1I.roa
Signing time: Sat 01 Jan 2022 04:56:53 +0000
ROA not before: Sat 01 Jan 2022 04:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24582
IP address blocks: 185.64.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38176424 (0x24686a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Jan 1 04:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=381187630948dc152575a71f84b700f078ed1752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:62:d8:ec:0a:48:99:b1:fc:2f:ca:68:b3:ce:
17:34:32:b6:3a:98:cf:0d:1c:1f:06:35:cf:d4:43:
e6:ee:fb:57:40:1e:75:87:0d:a7:a0:71:df:51:28:
4d:38:8b:78:90:da:c4:e3:bd:3a:71:40:66:b1:5a:
43:b1:dc:ca:6c:06:77:7a:60:fc:38:dd:9b:4c:d2:
84:85:61:b5:09:d0:15:88:61:13:72:91:c7:1a:ca:
d4:5f:1a:f8:33:7c:d3:94:59:47:07:58:53:76:19:
34:0a:15:9c:07:2e:89:19:18:47:a1:2c:fb:64:79:
8a:94:b0:23:8b:81:2b:e8:0f:f4:e6:13:2f:87:2e:
e4:85:39:5c:94:d7:1f:c0:b0:ff:08:37:de:2e:a2:
ae:c4:eb:1b:47:58:0e:1d:d1:e0:ed:5d:53:b8:32:
a0:1b:b7:f6:38:d2:6b:fd:80:41:fb:18:ff:7e:61:
c0:d8:77:72:ce:04:de:8c:78:d4:d2:7a:d0:22:ae:
54:6d:af:68:24:64:9f:63:0f:f9:c8:ec:d5:3c:33:
a5:18:90:8e:8d:b6:03:de:df:53:5e:d1:2a:87:da:
8a:93:70:1d:93:e3:d7:6b:1e:71:6e:57:d4:84:36:
00:44:af:c4:8b:3a:37:61:e0:d7:1a:aa:c3:3c:6c:
e9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:11:87:63:09:48:DC:15:25:75:A7:1F:84:B7:00:F0:78:ED:17:52
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/OBGHYwlI3BUldacfhLcA8HjtF1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
53:f4:bb:d4:4f:b0:6e:59:e6:3d:df:dd:78:5c:66:78:e0:34:
5f:31:d5:61:3e:c0:cc:ab:40:9a:be:6b:af:63:6f:d8:ba:a4:
2a:b3:0b:ea:09:83:f7:d4:08:97:af:e0:90:97:95:ba:b2:b8:
e1:ea:63:3a:f9:17:31:a5:b0:94:61:06:e4:54:d2:84:5d:44:
3a:7d:b4:87:ca:f9:c6:b4:1b:31:e9:ee:1f:94:60:59:12:b2:
51:e3:02:9d:22:fe:43:4f:c8:e0:b4:7c:8e:89:01:1d:7d:28:
05:25:f7:cf:95:d3:51:e4:74:dd:2e:3b:03:46:1e:54:d0:f0:
68:46:1b:1d:5e:3d:81:e7:fd:3c:4c:92:36:28:dd:64:67:c6:
84:7b:1f:97:9d:21:0c:b0:ca:ec:71:85:9f:ea:34:a9:3a:44:
54:e9:df:13:9b:de:79:8c:97:f7:72:a6:d3:3b:7e:af:06:ba:
86:9a:dc:72:0a:f8:20:72:9b:e7:10:3a:ba:b1:31:5d:a9:23:
3d:98:db:e6:f6:17:f3:66:30:fd:4b:95:89:67:78:6a:50:2a:
64:aa:bb:fb:b9:0c:b4:b0:0b:5c:be:9d:e4:9c:8e:c6:e3:3e:
b7:53:71:a6:1a:33:61:26:6f:99:3e:f5:cc:fa:ce:03:ef:7c:
eb:c5:54:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAkaGqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
N2Q5Y2ZiMDc4ZWRhNTgxNmZjODA5ZTk4YzI1Y2I3MTk2M2U3NWI3MB4XDTIyMDEw
MTA0NTY1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzgxMTg3NjMwOTQ4
ZGMxNTI1NzVhNzFmODRiNzAwZjA3OGVkMTc1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRi2OwKSJmx/C/KaLPOFzQytjqYzw0cHwY1z9RD5u77V0Ae
dYcNp6Bx31EoTTiLeJDaxOO9OnFAZrFaQ7HcymwGd3pg/Djdm0zShIVhtQnQFYhh
E3KRxxrK1F8a+DN805RZRwdYU3YZNAoVnAcuiRkYR6Es+2R5ipSwI4uBK+gP9OYT
L4cu5IU5XJTXH8Cw/wg33i6irsTrG0dYDh3R4O1dU7gyoBu39jjSa/2AQfsY/35h
wNh3cs4E3ox41NJ60CKuVG2vaCRkn2MP+cjs1TwzpRiQjo22A97fU17RKofaipNw
HZPj12secW5X1IQ2AESvxIs6N2Hg1xqqwzxs6TUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ4EYdjCUjcFSV1px+EtwDweO0XUjAfBgNVHSMEGDAWgBTn2c+weO2lgW/I
CemMJctxlj51tzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzU5blBzSGp0cFlGdnlBbnBqQ1hMY1pZLWRiYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjkvMDAwZWE3LWM5ZjQtNGViYi1iOWIxLWZlZWU3YzI5ZDRkZS8x
L09CR0hZd2xJM0JVbGRhY2ZoTGNBOEhqdEYxSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkv
MDAwZWE3LWM5ZjQtNGViYi1iOWIxLWZlZWU3YzI5ZDRkZS8xLzU5blBzSGp0cFlG
dnlBbnBqQ1hMY1pZLWRiYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlAYDANBgkqhkiG9w0BAQsFAAOC
AQEAU/S71E+wblnmPd/deFxmeOA0XzHVYT7AzKtAmr5rr2Nv2LqkKrML6gmD99QI
l6/gkJeVurK44epjOvkXMaWwlGEG5FTShF1EOn20h8r5xrQbMenuH5RgWRKyUeMC
nSL+Q0/I4LR8jokBHX0oBSX3z5XTUeR03S47A0YeVNDwaEYbHV49gef9PEySNijd
ZGfGhHsfl50hDLDK7HGFn+o0qTpEVOnfE5veeYyX93Km0zt+rwa6hprccgr4IHKb
5xA6urExXakjPZjb5vYX82Yw/UuViWd4alAqZKq7+7kMtLALXL6d5JyOxuM+t1Nx
phozYSZvmT71zPrOA+9868VUQg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:42 2023 by rpki-client on console-fra.rpki-client.org