Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/OdgSR-xnOVfM0jZ1VZielgHr8ds.roa
File: OdgSR-xnOVfM0jZ1VZielgHr8ds.roa (raw, json)
Hash identifier: ulozM4H7F9ZGK4/0u3K13AKsWCO19V0ygd7NXz74nWA=
Subject key identifier: 39:D8:12:47:EC:67:39:57:CC:D2:36:75:55:98:9E:96:01:EB:F1:DB
Certificate issuer: /CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Certificate serial: 05A229
Authority key identifier: 0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/OdgSR-xnOVfM0jZ1VZielgHr8ds.roa
Signing time: Tue 11 Jan 2022 11:25:22 +0000
ROA not before: Tue 11 Jan 2022 11:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39537
IP address blocks: 185.105.64.0/23 maxlen: 24
185.105.66.0/23 maxlen: 24
2a09:fd40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369193 (0x5a229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Validity
Not Before: Jan 11 11:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39d81247ec673957ccd2367555989e9601ebf1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6b:e6:72:53:bb:ea:ab:6b:f7:d4:ab:a1:9a:
89:73:37:cf:7b:6d:f1:a3:64:ef:0f:9b:25:a6:48:
53:9b:2d:8e:f3:2e:c7:b9:1f:4e:96:d1:db:da:09:
2b:53:7c:69:c9:c7:73:3d:6a:b3:d0:7f:68:d2:ac:
b8:06:bc:f5:3c:59:c9:1a:9f:ff:d6:7d:33:96:a1:
73:59:d4:0e:7d:90:53:c5:8e:c1:1a:53:ab:41:ea:
54:12:b6:e6:51:ab:18:f5:29:f8:c8:a8:e7:3c:15:
8c:e2:89:a6:5f:f7:3f:dc:2e:9b:3c:38:eb:a9:9c:
c3:50:2a:c0:f3:f1:e3:4e:69:31:aa:e5:05:da:8d:
9a:3d:a1:76:57:d6:94:61:67:0f:bb:d4:ad:50:51:
ac:62:0c:9c:a6:c4:0a:16:92:f9:75:f8:e4:e9:97:
d5:cd:93:7e:d0:0c:9c:6e:6a:1c:4b:f8:cd:2e:3b:
05:10:34:24:63:0a:29:f8:fa:ce:67:df:06:8c:80:
81:65:fe:74:5e:3c:47:ad:29:d2:c0:ef:c9:ee:40:
df:5a:13:a3:ad:53:48:e2:42:5b:d9:a2:44:62:fb:
ea:41:5e:ed:5d:d3:41:ef:f7:52:ec:c4:f7:b7:11:
ab:6b:12:2b:fc:b9:7c:98:55:9b:e3:e5:7f:59:d5:
13:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D8:12:47:EC:67:39:57:CC:D2:36:75:55:98:9E:96:01:EB:F1:DB
X509v3 Authority Key Identifier:
keyid:0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/OdgSR-xnOVfM0jZ1VZielgHr8ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/CqLxIFVT-llg8YBcbtk4np4NySw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.64.0/22
IPv6:
2a09:fd40::/48
Signature Algorithm: sha256WithRSAEncryption
21:40:88:52:6a:ff:f1:ba:8d:61:59:db:40:0d:56:9f:1b:51:
5f:49:81:1b:49:a4:97:0e:fe:78:a7:7c:28:f9:8e:22:5c:eb:
34:a4:3a:32:78:fe:da:7b:2e:16:2c:21:47:df:8c:d8:3a:46:
7a:a0:0f:66:f8:4d:fa:79:90:0e:85:80:8b:9c:2c:7c:a8:38:
71:0e:fe:db:09:81:94:ad:d0:95:0f:ee:a6:52:7b:c2:76:5a:
74:72:a1:b0:ed:6e:2f:90:3e:e1:22:12:7b:a0:35:52:9c:0b:
63:24:77:7a:46:61:f0:84:6e:78:df:67:ac:4f:1a:21:b0:8c:
8e:8d:5e:4e:63:01:ee:94:9d:14:74:2e:f2:c0:19:32:b1:2a:
d8:62:6e:96:9b:f7:85:b8:6e:4d:6c:0e:b6:d3:0c:0c:3e:cc:
65:1d:94:47:c4:a6:c5:0c:2d:ba:be:e2:e2:c9:d4:74:10:18:
6a:3f:27:ad:55:99:2d:31:41:aa:24:6b:e9:b6:7b:40:4f:b0:
25:86:80:2a:16:b9:42:42:0e:f4:41:71:94:f7:00:8d:ff:1f:
ae:ee:82:2a:b1:bb:df:7c:e7:20:06:14:11:41:65:7a:66:17:
57:02:4a:3b:cd:f2:c2:44:c1:3c:9b:c9:f5:47:29:a6:ec:26:
df:eb:8c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:08 2024 by rpki-client on console-fra.rpki-client.org