Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/oKHVneMPJtPwRehKPrM1loloZtQ.roa
File: oKHVneMPJtPwRehKPrM1loloZtQ.roa (raw, json)
Hash identifier: P2XRLUAYJ0CMFCv9q9eX3Dahm6nbQpBHsWZ7EoHfSWg=
Subject key identifier: A0:A1:D5:9D:E3:0F:26:D3:F0:45:E8:4A:3E:B3:35:96:89:68:66:D4
Certificate issuer: /CN=bcec8c732aa43ef0b39bd34d140fdd3a73aedb79
Certificate serial: 1069E1CC
Authority key identifier: BC:EC:8C:73:2A:A4:3E:F0:B3:9B:D3:4D:14:0F:DD:3A:73:AE:DB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vOyMcyqkPvCzm9NNFA_dOnOu23k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/oKHVneMPJtPwRehKPrM1loloZtQ.roa
Signing time: Sat 01 Jan 2022 07:53:24 +0000
ROA not before: Sat 01 Jan 2022 07:53:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.57.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275374540 (0x1069e1cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcec8c732aa43ef0b39bd34d140fdd3a73aedb79
Validity
Not Before: Jan 1 07:53:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0a1d59de30f26d3f045e84a3eb33596896866d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:ac:21:da:4c:54:7a:a5:0f:78:8a:3e:ad:
9d:56:7e:5b:78:e8:b0:cb:b9:aa:65:1c:7c:b7:c6:
10:bf:fa:d8:78:6d:ec:50:09:e8:c7:25:65:d8:7e:
1e:0a:f8:bc:c6:99:fe:26:38:3c:e8:ca:44:bc:2c:
0a:76:90:6d:62:55:36:08:c2:5e:8f:fa:7d:5b:b9:
f6:e0:e3:a5:8b:10:b4:29:e1:be:6a:93:b6:eb:33:
bd:e4:4f:c6:13:b3:8a:8e:03:6f:23:f5:54:fc:f2:
3e:b8:cf:d7:ff:a6:80:4c:50:d6:5f:7f:42:a5:5d:
be:21:0c:df:22:41:ea:54:df:8d:5d:cb:2e:23:d3:
cb:4a:c4:45:c9:e9:07:d4:a0:d3:83:26:d1:e3:51:
00:9d:a7:9a:ea:b8:82:ba:75:7f:f6:5f:d6:fb:68:
b6:21:40:83:28:ef:cf:3c:62:ec:f0:0d:96:f0:da:
2a:b7:01:55:c1:11:77:71:30:bc:d0:18:72:33:1c:
4b:e3:dd:ce:3c:a5:b6:2a:b7:3e:c8:4c:bb:77:ef:
7f:42:27:bb:b1:c6:0a:77:85:38:80:15:ef:7f:58:
23:35:b9:e7:d9:4f:7a:60:09:be:53:b0:b2:50:d2:
4b:3c:2a:a7:6c:04:cc:43:72:e4:9f:60:31:06:08:
6a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A1:D5:9D:E3:0F:26:D3:F0:45:E8:4A:3E:B3:35:96:89:68:66:D4
X509v3 Authority Key Identifier:
keyid:BC:EC:8C:73:2A:A4:3E:F0:B3:9B:D3:4D:14:0F:DD:3A:73:AE:DB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vOyMcyqkPvCzm9NNFA_dOnOu23k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/oKHVneMPJtPwRehKPrM1loloZtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/vOyMcyqkPvCzm9NNFA_dOnOu23k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.57.0.0/16
Signature Algorithm: sha256WithRSAEncryption
53:e3:84:85:d2:c9:4f:a5:b5:12:33:65:a0:7d:d6:f1:d7:10:
6e:8f:88:84:4d:22:4e:e2:98:01:ea:65:0d:98:31:f6:16:ad:
f8:95:7d:44:9e:79:bc:b2:b1:21:2c:92:78:f2:b0:ad:39:39:
97:33:14:24:80:72:ed:b9:14:d5:4c:c8:bf:10:b4:cd:df:dd:
91:dc:0e:f8:20:ff:00:19:a1:49:bc:da:8b:02:14:83:f0:81:
14:da:d2:cb:89:79:e8:ea:29:1c:30:5a:08:2e:3c:ce:b3:8d:
8c:ff:39:9a:be:83:c4:d8:8a:98:87:c3:9d:db:e7:3f:36:84:
6d:5d:9b:6d:8d:a0:fa:97:1a:22:17:62:aa:f0:15:7a:71:ba:
1c:da:5e:72:01:76:4e:03:ad:63:c9:59:88:f4:c6:c9:81:42:
a7:55:4b:6c:1e:12:43:c9:be:1a:87:b6:83:83:a5:02:79:03:
ba:42:bc:47:91:09:94:0b:8c:5f:a2:ac:23:03:f5:73:84:d5:
b9:f7:6a:11:14:f7:3a:13:14:c8:74:6a:8d:64:fc:f4:10:c2:
aa:00:e1:64:98:61:9e:22:70:94:cf:41:ec:3d:75:c8:26:f5:
c3:5f:4d:19:09:32:05:0b:c2:e8:6f:50:ac:a3:53:80:68:8e:
28:76:9d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:56 2024 by rpki-client on console-fra.rpki-client.org