Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/0oKqlKfR8vqo7rQ-3QKBEgcDHug.roa
File: 0oKqlKfR8vqo7rQ-3QKBEgcDHug.roa (raw, json)
Hash identifier: ul4vCuHGj1lJ1API1oJNM6UlsfoB+s1LqocY3+2iQnk=
Subject key identifier: D2:82:AA:94:A7:D1:F2:FA:A8:EE:B4:3E:DD:02:81:12:07:03:1E:E8
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 34FD3191
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/0oKqlKfR8vqo7rQ-3QKBEgcDHug.roa
Signing time: Wed 25 May 2022 10:54:13 +0000
ROA not before: Wed 25 May 2022 10:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198440
IP address blocks: 206.245.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889008529 (0x34fd3191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: May 25 10:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d282aa94a7d1f2faa8eeb43edd02811207031ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6b:6f:a3:e6:6f:97:18:fc:61:11:f8:64:ae:
d1:27:32:66:d4:ac:6b:d8:37:72:f8:00:c4:32:f8:
2e:cd:f6:9d:d6:56:1f:b4:d4:2a:ec:c0:c9:24:f3:
ea:28:65:8f:6d:f2:3f:ae:fd:79:c8:2e:cd:75:82:
1c:b8:35:88:10:eb:ac:d1:61:db:cd:35:b0:5a:3f:
24:42:cc:f7:66:4a:cb:16:8e:46:99:3b:e8:95:84:
10:1c:21:6b:9f:2e:af:23:84:75:6b:78:6f:80:8e:
96:fc:01:2a:15:2d:4e:7e:4a:c9:f9:d3:a1:5b:78:
25:32:46:34:56:a8:2d:bc:36:65:17:80:a9:c5:93:
22:67:27:24:0b:d6:12:00:21:18:b6:0f:5e:53:9a:
c6:01:4c:a6:93:e2:8b:d5:13:d1:ce:5f:62:bd:d2:
ae:ae:5d:74:79:86:04:76:28:fc:51:77:9f:b4:ae:
51:d6:9d:d0:b8:92:c4:1d:7b:a2:de:7d:b1:a0:e1:
86:f0:02:28:9e:c4:7a:34:aa:6d:63:fc:0f:f0:d0:
50:6d:0c:66:5e:0d:a1:4f:34:4e:98:16:22:9f:d2:
96:78:d7:d1:0f:46:25:eb:97:3b:61:87:02:ba:fc:
b4:94:2d:f4:f5:f9:6d:98:92:44:1c:9c:e2:5b:7e:
3d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:82:AA:94:A7:D1:F2:FA:A8:EE:B4:3E:DD:02:81:12:07:03:1E:E8
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/0oKqlKfR8vqo7rQ-3QKBEgcDHug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.245.192.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:5f:25:35:b9:76:d4:72:7e:fa:e4:48:b6:b6:a7:e8:95:72:
b0:56:b1:60:63:a5:6f:e9:d1:1c:20:c4:1a:18:e3:d3:5e:5a:
30:5e:fc:d9:6b:2c:34:37:e5:d3:ea:01:25:d2:21:e8:e5:fa:
4f:48:b7:d7:88:eb:fb:91:45:3e:86:2a:98:9d:14:d1:0f:d1:
83:bb:04:89:5a:3c:6f:e8:b8:84:44:f5:3e:d0:db:ff:dd:d1:
62:34:f8:c7:e0:aa:61:de:3f:13:15:e3:b7:0b:bd:b6:f7:77:
7e:fa:af:b0:52:10:1e:d7:a3:ec:4c:c3:e7:75:b8:88:57:a6:
2f:df:9b:80:c5:20:3c:da:a6:00:7c:0e:23:65:ed:ec:9d:d0:
ae:48:f6:eb:c1:80:33:ea:4b:1a:e0:2d:bd:91:d0:08:4f:50:
e6:f6:19:13:27:5e:49:c4:12:87:6d:ea:fc:92:3b:af:81:bf:
64:49:29:a9:e2:a2:7a:0c:16:0f:67:3c:99:47:d4:82:9b:92:
ed:7e:81:0b:d7:a6:b3:28:fa:d1:00:99:58:75:a8:62:03:17:
d7:a0:46:a1:ac:3e:93:ce:fb:d8:76:d0:fb:5d:6d:a0:b7:5a:
21:e2:8c:6c:12:95:da:5e:57:b2:33:b3:d7:2c:7a:20:65:34:
77:f7:2e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:45 2024 by rpki-client on console-fra.rpki-client.org