Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/owifJLEgUyWhjWx8YqJcTiWL8ik.roa
File: owifJLEgUyWhjWx8YqJcTiWL8ik.roa (raw, json)
Hash identifier: PROQquW9FFPUmCeLMfMGcd8UQtTljcT7dRJ998TwhSg=
Subject key identifier: A3:08:9F:24:B1:20:53:25:A1:8D:6C:7C:62:A2:5C:4E:25:8B:F2:29
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01A2251D
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/owifJLEgUyWhjWx8YqJcTiWL8ik.roa
Signing time: Fri 21 Jan 2022 14:14:34 +0000
ROA not before: Fri 21 Jan 2022 14:14:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200672
IP address blocks: 185.238.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27403549 (0x1a2251d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 14:14:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3089f24b1205325a18d6c7c62a25c4e258bf229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:da:5b:ed:8f:9e:0b:6b:2a:be:5b:21:7f:23:
56:40:c2:f7:a8:b9:ab:79:a3:98:51:75:44:58:95:
da:4c:97:0f:05:3e:b5:a8:55:b6:15:91:25:cd:04:
d1:e2:e4:bc:ea:87:b9:c1:77:05:47:21:5c:1d:bc:
9f:d3:fb:97:ac:85:c7:9b:5d:0e:ff:d8:e1:6a:b3:
23:a6:86:bd:18:b6:0a:ec:e4:30:83:ff:88:26:7a:
1c:e9:89:9b:7a:c4:9e:82:20:b9:41:5d:c5:ec:8c:
5d:d0:a8:db:6f:f1:ba:56:18:3b:14:64:60:4b:6c:
8f:ed:c1:e8:02:b9:b2:ea:94:8b:73:9d:f6:6c:6b:
be:0f:ee:c1:ef:39:27:57:4a:27:24:da:3e:96:a8:
a9:0f:05:f2:07:39:ed:d1:f2:3b:8c:da:ed:72:2b:
fb:0f:ea:9d:53:84:e4:72:0c:47:dc:d7:1f:22:1f:
67:0c:91:5e:8b:65:63:6d:25:32:cc:4b:02:b5:5e:
12:fd:41:71:fb:71:a0:25:bb:d7:0c:6a:b5:0f:d7:
c4:bf:c2:3a:ec:27:42:f7:20:b1:63:53:f1:f4:2a:
18:a0:06:fa:a0:a6:e2:62:92:7a:d3:e3:82:09:82:
1d:5d:61:58:81:8e:77:7b:10:ab:53:67:9b:ff:8f:
b5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:08:9F:24:B1:20:53:25:A1:8D:6C:7C:62:A2:5C:4E:25:8B:F2:29
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/owifJLEgUyWhjWx8YqJcTiWL8ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.61.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e9:5f:04:49:e6:ca:b0:7d:61:5d:6d:06:64:16:c9:9a:75:
7b:0e:03:b0:fc:1e:7e:61:8c:0f:ce:03:cc:33:cd:98:bb:3d:
d6:04:f8:6d:35:63:68:3b:03:45:21:df:70:fa:22:f5:e9:17:
35:0a:9e:b1:09:20:44:ae:3a:bf:ad:63:91:bd:8c:fd:ff:49:
1a:d2:06:ba:47:c6:87:8e:75:b2:42:59:a3:6c:54:dc:4a:fd:
21:56:71:a4:da:21:eb:5a:2f:71:1b:b2:85:77:eb:62:b8:8a:
1b:af:56:cb:28:7c:24:23:d3:d9:f8:06:a8:76:eb:a1:dd:a5:
eb:4d:8f:b3:8b:54:27:ae:e1:95:13:05:58:74:10:85:0b:11:
83:9d:21:38:22:e9:06:b4:86:43:5b:c3:f7:74:cc:2f:ac:5e:
bc:09:b6:56:4c:13:8f:88:3a:59:9d:18:e1:c6:40:be:c1:0e:
f7:57:a6:70:ba:db:74:f8:2c:71:24:63:2a:64:4a:4a:65:f6:
8b:60:e4:4f:b2:bf:cf:54:5c:ec:01:7d:70:6a:c5:7c:f9:25:
82:58:40:41:06:63:07:a3:f8:f4:fb:5a:3a:70:0e:08:a7:a1:
27:6d:58:a0:72:5b:cd:c9:03:5d:98:54:23:f0:58:00:26:43:
6e:22:d8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org