Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/OA0YkNcJp4qBzGwysH7QObHe4tc.roa
File: OA0YkNcJp4qBzGwysH7QObHe4tc.roa (raw, json)
Hash identifier: i1Uw5YHdLhnVGkeGgZv/i7Rq+BBxbSA7ltMrdwi3LPw=
Subject key identifier: 38:0D:18:90:D7:09:A7:8A:81:CC:6C:32:B0:7E:D0:39:B1:DE:E2:D7
Certificate issuer: /CN=d6fb452a0ae33dfa52aaaacba794df1af6bc4334
Certificate serial: 0144CE
Authority key identifier: D6:FB:45:2A:0A:E3:3D:FA:52:AA:AA:CB:A7:94:DF:1A:F6:BC:43:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vtFKgrjPfpSqqrLp5TfGva8QzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/OA0YkNcJp4qBzGwysH7QObHe4tc.roa
Signing time: Tue 29 Mar 2022 14:34:32 +0000
ROA not before: Tue 29 Mar 2022 14:34:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60720
IP address blocks: 81.25.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83150 (0x144ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6fb452a0ae33dfa52aaaacba794df1af6bc4334
Validity
Not Before: Mar 29 14:34:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=380d1890d709a78a81cc6c32b07ed039b1dee2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:08:30:c9:c8:e4:98:1b:4e:b6:e8:78:a4:a8:
99:59:07:e4:49:f6:b4:3b:db:f1:47:31:79:5e:c5:
5c:04:aa:13:71:e2:c1:40:ab:e3:45:72:62:44:93:
7d:b8:83:8e:9d:c8:bb:f1:35:7f:8a:27:a5:7f:cd:
90:5c:f3:25:01:c6:cf:ad:9e:0a:48:62:5d:d9:49:
ee:d2:4e:c7:e0:26:c3:65:1e:52:4f:55:e2:2b:6e:
56:1e:3b:64:1b:4f:9d:6e:89:86:90:ef:ed:2f:9c:
2d:2d:4e:0e:82:4b:e4:28:55:7e:80:a3:c3:71:a0:
c4:77:9d:d6:25:c9:9a:a4:2f:78:81:eb:e7:80:2c:
95:b1:d0:30:a5:2a:6d:a3:46:e9:86:39:e2:8c:e2:
5a:81:08:bc:45:05:53:80:13:eb:75:87:01:5b:e1:
ab:c3:10:96:c9:91:f3:99:e0:97:8e:da:e3:7e:5b:
78:5c:f8:ec:ae:c3:dd:66:4e:44:bc:ba:da:f1:e1:
a2:7a:d4:5f:b6:a6:bf:94:ba:39:67:44:97:70:2a:
f2:b3:4b:15:ab:9a:92:35:a5:78:20:bc:05:88:6c:
8e:3a:82:c3:1e:17:73:4f:f3:3a:3a:89:a6:6c:b8:
af:28:03:5d:85:67:89:f7:7c:a2:b3:6e:fa:a5:9c:
81:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0D:18:90:D7:09:A7:8A:81:CC:6C:32:B0:7E:D0:39:B1:DE:E2:D7
X509v3 Authority Key Identifier:
keyid:D6:FB:45:2A:0A:E3:3D:FA:52:AA:AA:CB:A7:94:DF:1A:F6:BC:43:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vtFKgrjPfpSqqrLp5TfGva8QzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/OA0YkNcJp4qBzGwysH7QObHe4tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/1vtFKgrjPfpSqqrLp5TfGva8QzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.64.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:81:45:0b:5f:4b:2e:cc:b8:8c:28:37:86:4a:e7:7e:4b:44:
3f:09:3a:50:34:4e:3e:bc:bb:ac:0e:a3:89:33:c1:78:24:c3:
df:47:80:c3:90:8b:7f:47:ca:b0:71:af:36:0a:df:6c:a0:58:
6b:98:57:e9:1c:49:03:58:5d:09:5a:a0:ae:63:4b:2b:b9:39:
a4:ef:b0:1f:17:da:dc:fc:c4:6a:21:f9:58:a5:b7:15:d3:91:
16:e6:9e:4e:24:61:cb:47:6c:c7:bb:09:30:6e:6f:73:6f:ae:
5a:35:f5:c4:e1:64:d9:d2:95:7f:89:fb:fc:d1:7c:22:43:91:
55:94:d0:31:ba:e1:e7:47:3d:ec:11:95:e6:10:1d:3c:ab:e8:
20:11:88:1a:47:38:d1:11:a6:19:c2:dc:d0:04:3a:ae:21:86:
10:48:ab:da:9b:7e:af:da:0d:6d:b5:f0:bb:11:4a:34:e7:5d:
61:b4:d3:42:15:e3:12:95:10:91:3b:e8:25:7d:66:66:75:77:
0e:6e:b4:8a:a9:14:8d:0d:30:97:c3:ef:8a:ae:23:ca:47:84:
e4:a3:cb:1a:90:87:bb:fc:dc:80:e7:43:80:46:bb:c9:7d:cb:
d0:4b:5a:6c:84:19:02:eb:84:e9:b5:f9:a0:84:5f:0b:75:70:
fb:ce:31:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org