Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/o-rwRpBBdLlAO9uihYlICuQJ1Ok.roa
File: o-rwRpBBdLlAO9uihYlICuQJ1Ok.roa (raw, json)
Hash identifier: RLqmY4jEDwtIn373J4R/fQ6SuhCTn9jdH2vxiKOLXto=
Subject key identifier: A3:EA:F0:46:90:41:74:B9:40:3B:DB:A2:85:89:48:0A:E4:09:D4:E9
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 0189D6C9
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/o-rwRpBBdLlAO9uihYlICuQJ1Ok.roa
Signing time: Sat 01 Jan 2022 11:54:23 +0000
ROA not before: Sat 01 Jan 2022 11:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213354
IP address blocks: 194.15.112.0/24 maxlen: 24
194.15.113.0/24 maxlen: 24
2a11:9c00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25810633 (0x189d6c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Jan 1 11:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3eaf046904174b9403bdba28589480ae409d4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f9:d0:0f:e4:d8:1d:30:e7:bd:55:de:1c:d5:
ca:09:f0:ce:51:dc:b3:a1:34:6d:3a:17:76:23:ea:
60:be:97:08:8c:54:e8:44:03:78:dd:48:67:c1:79:
e8:e3:d4:73:de:7f:06:96:e9:52:83:92:8d:5b:99:
38:dc:22:25:09:f3:53:01:81:6a:b5:81:50:6b:42:
76:0a:13:6b:f0:a4:19:52:92:ce:06:85:fb:a1:87:
1b:42:24:1b:10:f1:42:a1:52:d1:c3:3f:c4:e3:b3:
15:ef:57:16:81:b5:1f:84:27:59:69:a0:ed:8f:ec:
a6:76:2b:73:47:4d:9b:4c:02:f9:21:54:3e:dd:47:
9c:81:93:54:31:68:68:14:9e:26:a3:79:14:99:26:
c6:d2:ee:81:d5:2a:10:b2:e4:57:2e:05:bb:f5:1f:
1b:73:cd:01:4b:a6:25:4c:cd:88:d1:c9:43:26:0a:
16:67:da:ff:4d:0c:05:38:1d:cd:92:b2:9f:ed:5a:
7f:69:02:c8:ee:90:9d:a4:2a:5f:e7:af:15:31:26:
f4:b2:92:75:4d:71:04:36:ec:ec:db:99:c2:43:3c:
b0:a1:39:43:23:a4:60:e9:93:cc:f9:5a:87:e3:de:
33:ee:61:85:2c:39:a2:6e:60:52:b6:b9:ad:39:e6:
d9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EA:F0:46:90:41:74:B9:40:3B:DB:A2:85:89:48:0A:E4:09:D4:E9
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/o-rwRpBBdLlAO9uihYlICuQJ1Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.112.0/23
IPv6:
2a11:9c00::/40
Signature Algorithm: sha256WithRSAEncryption
94:d7:e4:20:e8:0f:73:e7:a2:77:88:91:4b:2c:a4:af:30:65:
ba:4e:05:f8:29:34:6b:1a:11:75:fb:d5:e4:11:56:81:f8:6e:
b0:fc:ee:7c:ec:b6:ee:b3:21:74:d2:18:5b:04:a3:91:a9:ae:
8c:7a:47:bf:b0:ce:25:e9:df:c3:8c:9e:52:a3:0c:7f:d1:5f:
2d:fc:49:bc:d1:be:78:9b:75:75:86:40:6e:9c:d0:a9:1f:6a:
3c:61:e9:14:d3:be:fc:ee:07:d9:3c:15:22:5d:a5:28:bb:4b:
04:4d:c1:78:af:fd:97:09:b7:8f:eb:67:93:85:dc:77:86:31:
d6:ef:1d:82:e9:be:ba:4c:9b:2c:36:29:7f:ef:6f:d4:fd:1d:
65:b2:60:aa:2d:ef:2c:7d:af:dc:f2:a7:a6:93:43:b4:02:4c:
0d:97:d1:85:85:97:fa:a0:e9:5b:ce:a2:97:3f:5b:35:90:e0:
c0:ce:41:6b:49:bc:98:d4:3c:00:dc:e2:26:9a:51:74:b5:95:
eb:b1:e3:ae:a0:25:8f:a6:e8:5e:18:fe:eb:a6:30:4b:a3:f3:
05:af:cf:2e:da:bf:fa:85:ef:9a:38:af:96:8d:28:db:e7:04:
bf:3d:27:27:ba:8d:57:7c:0d:58:55:85:4e:c9:e4:9e:99:83:
ec:7a:73:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:30 2024 by rpki-client on console-ams.rpki-client.org