Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/0DOZOnu834OJLJUmzsmHhIqme8Y.roa
File: 0DOZOnu834OJLJUmzsmHhIqme8Y.roa (raw, json)
Hash identifier: du1UPvyxBjuWU15RbKncrqu3QMElJ5kCnun862q2rWk=
Subject key identifier: D0:33:99:3A:7B:BC:DF:83:89:2C:95:26:CE:C9:87:84:8A:A6:7B:C6
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 06C055AE
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/0DOZOnu834OJLJUmzsmHhIqme8Y.roa
Signing time: Sat 01 Jan 2022 12:57:38 +0000
ROA not before: Sat 01 Jan 2022 12:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49063
IP address blocks: 193.0.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113268142 (0x6c055ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Jan 1 12:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d033993a7bbcdf83892c9526cec987848aa67bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:11:c9:bc:10:fd:82:d9:08:d1:71:25:1f:
18:fc:34:63:8e:37:b0:ea:61:46:c3:67:e4:e7:ed:
47:3f:39:a7:57:a6:10:71:67:05:80:e7:52:0b:ae:
11:14:04:87:7c:49:56:f0:62:9f:14:62:4c:be:21:
8a:a9:8e:dd:46:c8:ad:b0:63:f8:4e:5c:1a:17:05:
cb:fb:cf:77:e5:22:5d:19:dd:b0:30:42:87:49:13:
eb:c2:6c:e8:22:91:4d:ab:3a:24:e4:56:de:09:05:
e9:c2:23:02:1a:9a:6a:94:aa:6e:f5:d9:78:3b:fd:
27:cb:aa:b3:72:dc:5d:30:ee:3c:67:fe:2e:43:7e:
fd:c7:27:21:11:cf:6e:b1:bf:5e:c8:d7:14:41:11:
87:c8:2b:e2:5a:39:42:20:4a:b8:ad:76:4d:94:59:
20:3f:ac:1c:84:6d:71:a4:98:c9:00:ea:88:3d:db:
c3:bc:f9:df:e1:10:d8:d5:2a:25:92:ab:45:19:e4:
65:b6:40:d9:ca:6d:3a:8a:59:bb:40:bb:70:f1:da:
db:e7:e0:7f:3d:68:60:81:a3:ab:34:0e:da:9c:ab:
e8:80:65:7c:af:3d:d4:5a:cf:ea:91:67:9f:a7:40:
8d:0e:ff:9e:a7:1b:55:9b:19:46:34:c7:32:db:f5:
4c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:33:99:3A:7B:BC:DF:83:89:2C:95:26:CE:C9:87:84:8A:A6:7B:C6
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/0DOZOnu834OJLJUmzsmHhIqme8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.229.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ad:a0:cd:fa:2e:56:04:64:54:33:9c:0c:bd:0f:32:ff:d5:
96:77:4c:87:f9:fd:ec:7d:40:bf:69:fb:61:92:44:3f:60:0a:
75:02:84:29:d4:bc:d0:f4:18:88:c9:75:da:83:ee:e0:70:9e:
17:b9:70:bf:79:34:82:01:af:b7:ca:fc:c5:be:f9:0c:16:ba:
c0:fb:2e:70:46:80:ab:03:a1:50:1a:0b:e4:30:3e:82:2d:bd:
45:40:58:75:61:56:3d:ae:f7:c1:ab:ad:26:fd:b3:78:6a:a4:
29:54:74:3d:88:5f:60:04:81:d2:37:dd:6c:1b:0e:83:db:61:
8b:f5:08:c2:63:ba:46:33:20:06:74:0c:5c:09:66:c2:8c:34:
d1:ce:f8:74:c8:43:e6:45:87:13:96:b6:74:fa:50:3b:bf:59:
18:86:44:bd:de:7f:b6:f2:19:58:9f:71:3a:89:93:7e:48:df:
6d:75:1c:81:65:1e:d7:d8:73:97:cb:0d:9d:db:ec:56:b0:7e:
e4:7f:bf:dd:1a:bf:be:15:61:2f:14:96:e1:25:20:78:38:4b:
b3:5f:a9:14:59:3c:cf:1e:ab:0a:9f:6a:08:b1:c8:8e:f4:c9:
3f:4c:36:cb:6e:7c:4f:85:5c:ed:53:cf:4b:68:06:b5:ec:fc:
b3:a5:d7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-fra.rpki-client.org