Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/oh208cAvl9iU-tXGwJK1k6nNklk.roa
File: oh208cAvl9iU-tXGwJK1k6nNklk.roa (raw, json)
Hash identifier: 0ngP1tclNOImIX12xamPgATIKRxlPSVgAorFipWl8ko=
Subject key identifier: A2:1D:B4:F1:C0:2F:97:D8:94:FA:D5:C6:C0:92:B5:93:A9:CD:92:59
Certificate issuer: /CN=12ee6257d0c3a2b930561af2522d9e5af7f9cbc7
Certificate serial: 01834318187EEDD9080E52B19C0D29061CC6
Authority key identifier: 12:EE:62:57:D0:C3:A2:B9:30:56:1A:F2:52:2D:9E:5A:F7:F9:CB:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu5iV9DDorkwVhryUi2eWvf5y8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/oh208cAvl9iU-tXGwJK1k6nNklk.roa
Signing time: Thu 15 Sep 2022 21:39:56 +0000
ROA not before: Thu 15 Sep 2022 21:39:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.235.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:43:18:18:7e:ed:d9:08:0e:52:b1:9c:0d:29:06:1c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ee6257d0c3a2b930561af2522d9e5af7f9cbc7
Validity
Not Before: Sep 15 21:39:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a21db4f1c02f97d894fad5c6c092b593a9cd9259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:10:4b:49:0c:e9:6a:27:cd:2e:71:6d:34:0a:
8f:3a:57:c7:52:e8:2d:e8:27:9c:31:e9:84:47:bc:
8f:a5:62:fc:fc:38:8d:2d:d8:28:88:ae:d1:c2:d9:
2e:a0:65:d7:75:f2:e6:2d:c0:53:e9:cc:89:f9:d3:
46:d2:cb:d8:72:c4:fd:9a:2a:d6:69:19:c9:98:7e:
c1:3b:47:2a:21:f4:d3:0e:09:7c:0c:23:36:45:ac:
d2:23:99:6b:d0:8c:a1:e0:4a:5b:e6:e0:9d:a2:5f:
69:00:64:bd:00:d9:11:34:ee:25:fb:2e:fb:f8:19:
21:d5:c0:c8:c0:6b:b5:67:78:b8:b9:2a:90:13:3d:
95:52:c3:11:30:74:78:6d:ef:e1:2c:38:a9:32:80:
d8:c1:0e:65:07:e2:e5:eb:de:ee:c3:0a:10:5d:8d:
a5:11:1f:2e:c1:c4:ee:29:14:dd:aa:56:d9:b0:3c:
fc:99:90:2e:5c:90:6f:1d:a4:a9:16:0c:1d:15:a5:
1e:b7:53:5d:0f:9a:ae:e4:2a:06:d7:ed:9c:45:55:
28:36:2e:f0:8f:5c:9e:17:93:df:b2:33:b9:4a:84:
8d:aa:1c:c0:f3:bf:76:4a:20:fb:93:55:02:47:b5:
e2:4e:a6:28:55:35:e8:da:01:18:81:70:ef:45:e8:
dc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:1D:B4:F1:C0:2F:97:D8:94:FA:D5:C6:C0:92:B5:93:A9:CD:92:59
X509v3 Authority Key Identifier:
keyid:12:EE:62:57:D0:C3:A2:B9:30:56:1A:F2:52:2D:9E:5A:F7:F9:CB:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu5iV9DDorkwVhryUi2eWvf5y8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/oh208cAvl9iU-tXGwJK1k6nNklk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71dee2-e1c1-40ce-b311-3f33866192d0/1/Eu5iV9DDorkwVhryUi2eWvf5y8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.38.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:0e:e1:d3:0f:d6:c9:cd:2b:5b:d3:5e:18:07:e9:3e:ee:3b:
a8:12:b5:89:fb:43:06:1e:3a:2f:79:ce:1b:20:38:64:f3:a8:
2a:7c:a2:f3:e7:8d:6e:5f:4a:78:15:c2:4b:98:54:29:c2:0b:
25:3d:df:ef:22:d0:3d:3f:ab:39:1d:f2:21:ab:3a:11:9a:43:
5c:3c:dd:28:ab:d1:49:57:c8:ca:2f:89:b0:76:5f:8e:60:66:
1a:10:1b:7b:38:66:dc:cc:30:0c:d6:30:7b:58:e6:b7:a7:d5:
0b:2f:25:89:20:a0:e9:0e:68:74:70:08:f7:99:a5:ff:0b:f8:
e9:67:b6:9e:17:bb:07:58:ed:3a:87:61:52:55:90:84:81:8e:
57:33:ae:86:ac:7a:c0:ae:85:23:c0:40:78:36:ff:d8:e5:13:
ce:29:53:6d:13:c1:56:16:5d:cf:42:6e:ff:d4:a4:4b:17:56:
49:eb:ca:8d:82:3c:ec:e6:c1:ac:6a:d4:ad:73:d7:de:50:a1:
9d:ae:30:3e:9e:bc:3c:42:09:42:f9:b4:eb:f6:51:94:cc:10:
be:11:2d:30:7c:5c:c1:d5:10:91:31:5c:fd:d3:8a:67:99:3b:
8e:da:10:fe:35:69:e7:f4:e4:0e:37:a8:a6:df:a4:52:77:1e:
52:e3:af:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org