Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/1_oaPbrByLFVFwqe3P5taJzekEc.roa
File: 1_oaPbrByLFVFwqe3P5taJzekEc.roa (raw, json)
Hash identifier: uSqkWQyVN7Q2FjmUK85Ma8uRN+dCA+nPFhIEXWe0dZk=
Subject key identifier: D7:FA:1A:3D:BA:C1:C8:B1:55:17:0A:9E:DC:FE:6D:68:9C:DE:90:47
Certificate issuer: /CN=e96d07d74cd14a5a439f483758c424dbad33977a
Certificate serial: DD01A6
Authority key identifier: E9:6D:07:D7:4C:D1:4A:5A:43:9F:48:37:58:C4:24:DB:AD:33:97:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W0H10zRSlpDn0g3WMQk260zl3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/1_oaPbrByLFVFwqe3P5taJzekEc.roa
Signing time: Sat 01 Jan 2022 11:03:25 +0000
ROA not before: Sat 01 Jan 2022 11:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211452
IP address blocks: 193.5.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14483878 (0xdd01a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d07d74cd14a5a439f483758c424dbad33977a
Validity
Not Before: Jan 1 11:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7fa1a3dbac1c8b155170a9edcfe6d689cde9047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0b:74:84:19:00:dd:05:fc:39:0e:29:b8:36:
15:77:c6:87:fe:ed:29:ff:b6:f3:18:b9:ba:89:03:
90:ea:44:60:6f:cb:e4:1a:d1:08:84:73:ba:83:cb:
e7:86:1f:2c:9a:a0:5a:3a:81:ad:c2:b7:85:b3:a4:
77:76:ed:e2:fb:f2:e3:b1:42:c8:70:9b:50:cb:1b:
54:4a:97:f5:b9:8f:f2:65:28:3e:9d:19:ab:9a:6f:
4f:87:03:f6:41:83:e2:c6:3c:e6:3a:ee:62:d1:b2:
d3:f1:f5:53:59:ae:c3:d8:77:4b:b5:ee:10:de:37:
b3:97:a4:ee:ed:0b:48:ae:a3:4b:89:13:e7:15:c7:
60:3c:da:45:f0:f9:d2:2c:dd:73:f9:bc:29:ed:bc:
52:84:aa:0b:b3:ed:e9:c1:bb:55:d2:0b:c6:71:ef:
ee:bc:cb:44:40:a8:48:ba:af:27:2b:28:d7:d9:ba:
b0:0b:7b:96:a8:3c:6b:a2:0b:7a:4e:8a:09:a4:cd:
ad:b2:8f:68:6b:5d:91:1d:f3:d4:fd:ae:f9:2a:29:
60:16:54:7b:3d:64:4e:75:ce:f8:fc:e0:d4:0e:f0:
07:fb:48:6b:5c:85:8f:4f:80:b5:aa:98:1a:cc:2b:
d7:ff:a8:53:65:5f:f4:d8:b9:a5:a8:d2:1c:59:3c:
9d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FA:1A:3D:BA:C1:C8:B1:55:17:0A:9E:DC:FE:6D:68:9C:DE:90:47
X509v3 Authority Key Identifier:
keyid:E9:6D:07:D7:4C:D1:4A:5A:43:9F:48:37:58:C4:24:DB:AD:33:97:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W0H10zRSlpDn0g3WMQk260zl3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/1_oaPbrByLFVFwqe3P5taJzekEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/6W0H10zRSlpDn0g3WMQk260zl3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.176.0/23
Signature Algorithm: sha256WithRSAEncryption
17:08:ab:08:6b:2d:20:d7:84:c4:82:5d:9a:ef:ef:e5:8e:7d:
c7:a4:7b:07:95:ae:d7:ef:46:47:8a:86:0b:fc:fb:34:51:8e:
d2:da:e5:94:58:b6:7f:70:1b:e6:89:62:f3:a4:90:60:fc:3a:
1d:61:1d:0f:fd:bc:bd:66:5f:af:09:47:b2:bb:01:1c:e7:d8:
06:47:75:37:fc:33:c7:b5:7d:6c:13:b3:f7:d7:f4:31:e6:48:
6a:db:34:35:93:f7:a1:a8:32:80:6f:3c:db:ce:9a:84:69:4e:
3c:46:19:33:45:9e:89:49:21:7e:ae:26:93:02:f1:84:24:12:
73:46:61:05:ac:46:1a:ac:bb:e4:7a:2c:75:27:59:94:fd:1f:
76:be:f8:af:25:54:28:32:4e:7a:1b:5b:dc:ed:8d:ee:ca:67:
6f:e1:92:f0:19:d0:e2:35:f5:0b:8c:a1:a6:c7:e7:d9:59:48:
04:0c:d0:83:7d:70:fe:54:82:01:60:e6:c2:ca:69:18:b7:64:
96:1f:79:06:a6:ce:b8:a0:f6:66:03:29:59:52:64:78:1f:07:
c2:2b:ba:56:09:57:fd:20:81:64:48:7a:35:93:a2:ed:a6:a5:
4d:d4:3b:4e:d8:6d:d7:8f:85:f4:14:f6:3f:38:f1:48:18:05:
6e:a6:8c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:37 2024 by rpki-client on console-ams.rpki-client.org