Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/oN1a3ldtZeRuOzWmJ4tuYn0EaAw.roa
File: oN1a3ldtZeRuOzWmJ4tuYn0EaAw.roa (raw, json)
Hash identifier: BDEZZ9Pp9MMxjAv/WkRgLsloafEowqElAbzsflQuiVM=
Subject key identifier: A0:DD:5A:DE:57:6D:65:E4:6E:3B:35:A6:27:8B:6E:62:7D:04:68:0C
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 0182C81502CE1A870AD13F9C162FA50A209E
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/oN1a3ldtZeRuOzWmJ4tuYn0EaAw.roa
Signing time: Tue 23 Aug 2022 00:23:16 +0000
ROA not before: Tue 23 Aug 2022 00:23:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207456
IP address blocks: 185.82.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c8:15:02:ce:1a:87:0a:d1:3f:9c:16:2f:a5:0a:20:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Aug 23 00:23:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0dd5ade576d65e46e3b35a6278b6e627d04680c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7f:91:15:fd:2c:66:16:8d:70:d0:15:a7:52:
45:82:0c:e5:5c:0f:d6:2f:57:b8:59:59:11:f5:29:
1d:0d:a6:10:4d:ed:61:ed:e7:dd:13:36:1a:10:70:
3b:50:2e:78:a9:2f:29:87:86:36:47:35:4c:ae:01:
d7:f0:d0:09:66:11:a6:e6:db:05:30:da:72:c9:6a:
90:b9:ff:5d:83:8b:76:5b:f0:14:d7:ba:1d:9a:13:
79:e9:64:b4:00:39:0e:5f:14:b1:1a:69:8a:6c:8b:
d7:5e:3d:37:70:1c:5a:80:15:60:e9:55:67:30:5a:
42:3d:8c:44:f3:53:9b:e0:50:ca:80:c5:47:8b:1b:
12:c9:07:b1:86:e1:bc:8c:93:a5:a4:f1:dd:d4:95:
c5:09:32:f2:8d:95:90:4c:f4:cd:09:9b:f5:18:2a:
2a:fc:8a:9c:59:e8:e4:22:cb:11:56:2a:a7:f1:cf:
39:02:f4:bc:3c:74:5d:ce:cb:3b:31:2d:c8:d8:38:
08:2d:51:7a:68:30:a6:93:5f:d8:ea:5a:4f:74:fb:
45:a1:08:c0:63:39:43:a1:09:3b:3e:8d:b3:ee:9b:
04:98:72:11:8a:9f:10:2f:45:d0:b4:51:4c:4c:cb:
b6:de:4e:08:4b:e8:cd:e1:7b:c6:2f:ff:03:46:0c:
b5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DD:5A:DE:57:6D:65:E4:6E:3B:35:A6:27:8B:6E:62:7D:04:68:0C
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/oN1a3ldtZeRuOzWmJ4tuYn0EaAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.74.0/23
Signature Algorithm: sha256WithRSAEncryption
21:4e:03:36:25:6d:e1:fc:c9:5a:24:7e:8e:f7:f2:e6:d6:94:
c3:71:da:ce:ff:39:53:dd:15:1a:3d:a2:3b:29:f9:60:45:ce:
79:85:46:e1:21:c4:a5:fa:90:52:fa:64:8e:ce:a9:b3:58:26:
23:2b:80:e8:10:ba:a7:d8:b3:09:9b:a8:82:ef:77:84:d8:99:
1b:9f:18:ea:4a:ef:90:52:c2:52:39:d4:5c:a3:a5:8e:d7:90:
30:dd:ac:64:07:64:0c:eb:ed:43:ce:80:7e:01:24:f3:07:e8:
03:19:23:6e:ea:ff:dd:00:39:76:50:cc:18:d9:ad:68:5e:5b:
4b:7e:11:fb:4d:26:c7:0b:b5:df:64:02:88:cf:61:f0:de:d4:
9a:48:a8:3b:e5:c7:42:89:76:da:f0:ea:ef:34:50:41:cb:a5:
6f:d4:ff:ba:e3:26:15:8e:e4:8b:99:cf:44:18:e8:3a:4d:26:
c4:3f:b8:3e:e7:39:9e:2d:e0:80:a2:cc:64:0f:6f:1c:33:fc:
46:11:4e:e9:e8:6d:bd:12:0a:79:86:fa:54:07:1c:0f:04:a2:
7a:83:37:c7:34:26:7e:5a:5c:58:3c:a6:6f:05:77:0c:ec:bd:
88:51:98:52:35:d2:12:13:dc:aa:50:47:b7:5d:30:ba:9b:70:
f4:31:98:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org