Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/ozJfHNkR-PZRAALxAiUZo8sko_c.roa
File: ozJfHNkR-PZRAALxAiUZo8sko_c.roa (raw, json)
Hash identifier: PacPcdZtweA3Gyydgy1YPrePxQYVlIcrMamJ6xdR3s0=
Subject key identifier: A3:32:5F:1C:D9:11:F8:F6:51:00:02:F1:02:25:19:A3:CB:24:A3:F7
Certificate issuer: /CN=0d7901c430ae39fcb05beb5b34267f5224f04f61
Certificate serial: 051CF5D5
Authority key identifier: 0D:79:01:C4:30:AE:39:FC:B0:5B:EB:5B:34:26:7F:52:24:F0:4F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXkBxDCuOfywW-tbNCZ_UiTwT2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/ozJfHNkR-PZRAALxAiUZo8sko_c.roa
Signing time: Sat 01 Jan 2022 06:58:08 +0000
ROA not before: Sat 01 Jan 2022 06:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15422
IP address blocks: 193.104.231.0/24 maxlen: 24
195.24.246.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85784021 (0x51cf5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7901c430ae39fcb05beb5b34267f5224f04f61
Validity
Not Before: Jan 1 06:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3325f1cd911f8f6510002f1022519a3cb24a3f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2f:b4:ad:6b:54:32:4d:49:a8:b5:5c:3a:0c:
f3:fb:d0:5b:46:62:04:6c:79:ee:b1:ca:31:81:15:
72:20:aa:7c:89:38:b0:d6:99:1e:3d:59:10:8c:58:
f0:26:ce:d8:71:a6:88:96:62:af:25:39:a1:ab:8c:
2b:48:02:3a:60:22:8b:88:cd:64:db:d4:0b:9d:45:
6b:8d:15:01:56:99:02:d3:01:d0:b3:d4:6d:d5:4a:
2f:95:a9:88:06:3d:93:4a:e9:d9:cf:d5:d9:f5:4b:
98:73:5e:c2:94:de:8c:3e:95:4c:f9:09:37:91:66:
cc:e0:93:c8:03:91:98:96:a3:c8:6a:00:62:42:24:
76:f4:40:dc:94:15:fa:4e:a3:f9:98:07:90:b4:23:
5a:34:cb:9d:32:30:9a:6e:85:be:a8:3f:39:03:2b:
b7:38:78:6e:c2:4d:51:4b:24:8f:15:8b:f5:6a:cf:
a7:4c:05:02:86:3c:4c:a8:53:38:11:71:70:d4:b1:
e9:1e:d6:c6:cb:98:00:86:1b:3d:f2:da:91:ce:e1:
06:2b:8e:37:d4:7d:ce:29:ce:bf:f3:2b:1c:db:77:
10:a2:29:e5:ce:72:fb:4b:46:11:7a:af:ec:14:62:
f8:1a:41:5c:69:24:5c:5f:c0:50:0e:ee:fb:b6:71:
67:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:32:5F:1C:D9:11:F8:F6:51:00:02:F1:02:25:19:A3:CB:24:A3:F7
X509v3 Authority Key Identifier:
keyid:0D:79:01:C4:30:AE:39:FC:B0:5B:EB:5B:34:26:7F:52:24:F0:4F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXkBxDCuOfywW-tbNCZ_UiTwT2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/ozJfHNkR-PZRAALxAiUZo8sko_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/DXkBxDCuOfywW-tbNCZ_UiTwT2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.231.0/24
195.24.246.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:16:bc:d1:d0:53:92:66:cb:94:5a:4d:59:43:54:d1:f3:e0:
78:ad:38:9a:07:ee:b5:ff:f2:a1:45:58:00:e3:f0:ba:9d:8a:
94:c0:40:3e:76:a9:3d:3f:e1:61:66:74:15:ff:91:f6:6c:85:
cb:a3:2c:20:4f:bd:bf:1f:47:7e:66:9b:32:3f:df:33:3c:2a:
ec:e4:d9:71:06:aa:20:e1:53:72:13:53:7a:6a:72:20:bc:e0:
e3:69:22:c6:f7:7a:a5:7b:53:3f:df:c2:38:82:25:48:58:9b:
6a:ef:a6:84:7a:6e:66:4e:67:6e:e4:e9:ab:ab:de:6a:b4:72:
33:45:1f:2a:cb:eb:d2:e8:33:1f:bf:dd:c4:15:30:aa:b4:07:
2b:67:08:50:4c:ff:b9:cb:f0:10:99:b2:b1:e3:75:b4:33:c1:
74:25:fb:78:a7:f3:b0:5d:c7:85:d7:83:93:1c:c3:75:c1:ea:
a2:96:8d:a0:e1:85:0d:2e:72:e9:b5:21:2b:a7:b2:71:32:ba:
e1:e5:de:4c:18:d7:f0:e4:f7:57:32:62:fa:c1:a3:42:e8:67:
b2:11:f3:bf:ef:74:3b:83:cc:9b:73:98:92:34:f3:b0:52:21:
ed:df:98:29:57:ff:e8:c7:72:a0:e1:c8:68:b8:8c:13:d4:1e:
65:9a:35:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:17 2024 by rpki-client on console-fra.rpki-client.org