Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Oo9Gq6XGNIGPuLuEVld9uNp8mUA.roa
File: Oo9Gq6XGNIGPuLuEVld9uNp8mUA.roa (raw, json)
Hash identifier: flDoRbwXDgECYZVgTVSSszFaJvFLh6TaMG02pzFDfBg=
Subject key identifier: 3A:8F:46:AB:A5:C6:34:81:8F:B8:BB:84:56:57:7D:B8:DA:7C:99:40
Certificate issuer: /CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Certificate serial: 0538ED71
Authority key identifier: F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Oo9Gq6XGNIGPuLuEVld9uNp8mUA.roa
Signing time: Sat 01 Jan 2022 06:03:32 +0000
ROA not before: Sat 01 Jan 2022 06:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213063
IP address blocks: 185.159.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87616881 (0x538ed71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Validity
Not Before: Jan 1 06:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a8f46aba5c634818fb8bb8456577db8da7c9940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f7:1c:d9:16:7f:a9:f0:ad:2b:6f:b3:e6:f8:
15:c2:e3:5a:39:6e:0b:35:e0:d7:71:89:90:9b:c2:
81:a9:6f:cb:cc:98:e4:5d:49:b1:73:50:68:9e:ef:
39:51:2e:ab:04:51:48:ef:67:64:fc:51:5e:d6:e6:
e8:67:ff:d0:ae:4f:dd:1d:7a:34:a0:2f:65:27:a7:
07:ea:51:58:25:98:ac:ce:70:ba:55:b5:fc:02:17:
32:3c:1b:d7:4d:61:ab:0d:9e:ce:0e:89:ea:95:3c:
36:af:22:1c:28:60:05:ce:b3:aa:59:fe:84:d4:b8:
a4:c3:7a:3e:ed:68:2b:23:6c:d4:6a:86:ac:9d:e7:
31:5e:de:fb:a3:cf:85:4a:38:ff:16:2b:71:da:47:
07:f5:26:3f:e6:67:4c:a8:60:b1:c1:22:06:5a:03:
eb:6d:6f:67:37:d5:42:22:84:09:aa:c5:95:c7:5a:
9f:da:1e:bc:8e:fc:aa:09:25:98:31:1c:5d:02:3b:
dd:e9:57:a0:a1:1a:f2:fa:30:2b:ad:f1:93:a6:d8:
9f:18:1f:9c:7c:e2:b7:cf:fa:1e:2b:78:9f:20:7d:
73:ba:d3:a3:4c:cc:bd:84:80:48:b2:e2:74:9c:d8:
ac:52:71:eb:38:9e:0b:a1:c4:f4:28:1c:bf:01:0a:
ee:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8F:46:AB:A5:C6:34:81:8F:B8:BB:84:56:57:7D:B8:DA:7C:99:40
X509v3 Authority Key Identifier:
keyid:F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Oo9Gq6XGNIGPuLuEVld9uNp8mUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/88huoplek0tlBBkRy562WHLCKJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:2a:a8:74:58:3c:48:5c:bc:97:c4:c2:18:55:62:fd:88:e1:
d5:66:c6:0b:3e:60:34:bf:3a:45:f8:4d:e5:7c:d8:1d:21:77:
f4:51:56:fc:ea:43:77:2b:60:64:c7:3e:99:08:5d:16:5a:d0:
42:cf:7b:b4:a9:a5:f4:a7:96:62:d8:3c:c7:36:d9:8b:ba:ae:
49:cd:23:71:54:56:6d:0b:c1:83:de:f4:8c:b3:2f:93:8d:de:
b0:44:c5:c5:3c:de:ef:e8:de:fe:31:3b:00:7f:a4:b6:45:4d:
31:db:71:b0:62:bb:60:8f:b5:d9:46:a9:bf:f5:e6:a9:f9:35:
59:a9:b1:a0:f3:1e:37:37:3a:4d:79:bf:dd:ad:28:c5:37:75:
03:26:82:12:a9:b8:56:80:fc:c5:d3:f4:12:1f:74:c0:84:ea:
61:12:49:58:37:c2:c4:36:30:f7:3b:6f:e6:f9:e4:9c:27:ba:
19:bd:d2:b2:f6:46:a7:e5:41:6b:cd:96:77:58:7c:49:3a:b5:
4b:b1:9f:93:f7:c6:99:a7:7b:4d:47:7b:f9:36:1a:d1:63:bc:
16:6f:c0:0f:ca:14:1d:ae:4c:3d:9b:33:b0:07:e1:91:e8:91:
d2:26:1c:66:29:13:b6:91:88:ec:9b:d3:16:93:20:8f:9c:9a:
0d:c2:7c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:06 2024 by rpki-client on console-fra.rpki-client.org