Route Origin Authorization
$ rpki-client -vvf rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
File: 326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa (raw, json)
Hash identifier: kr8B9AMGM0Kc5+gXAmI8ytcPpwh4SNUsSBJl5cQw4q4=
Subject key identifier: 3D:33:73:6E:AE:E5:72:B9:CA:DE:CB:57:10:6C:A2:BD:F6:4C:4F:11
Certificate issuer: /CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Certificate serial: 76A51E58F668F42AA1CE65186B595849AEF3AC42
Authority key identifier: B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject info access: rsync://rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
Signing time: Tue 03 Sep 2024 01:46:53 +0000
ROA not before: Tue 03 Sep 2024 01:41:53 +0000
ROA not after: Tue 02 Sep 2025 01:46:53 +0000
asID: 208476
IP address blocks: 2a07:d883:500::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:a5:1e:58:f6:68:f4:2a:a1:ce:65:18:6b:59:58:49:ae:f3:ac:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Validity
Not Before: Sep 3 01:41:53 2024 GMT
Not After : Sep 2 01:46:53 2025 GMT
Subject: CN=3D33736EAEE572B9CADECB57106CA2BDF64C4F11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ea:e2:70:66:57:7b:64:48:6c:1c:bd:b8:19:
60:13:73:ce:b3:b1:cd:52:b8:8f:c9:52:54:4a:bf:
52:e6:9d:ba:a5:23:80:3d:20:96:d9:9b:e9:52:75:
3e:42:33:7e:e2:53:91:04:13:f6:2b:65:52:6b:d2:
15:6f:56:67:25:49:21:95:90:33:2f:37:92:0c:ea:
7c:41:aa:8a:10:90:10:a5:b5:60:c7:d3:6f:f7:01:
48:1f:85:89:cc:bc:82:25:85:9b:b9:93:61:39:e1:
5f:bc:96:38:10:c5:9c:9d:83:3e:31:d7:e6:8b:9d:
0e:7b:b0:38:8c:14:8b:23:79:2f:e5:2b:40:5d:a7:
a5:4f:ee:6c:fb:48:48:a6:f6:5d:d1:ff:bc:97:07:
4f:ae:3d:80:28:51:7c:d6:ea:46:34:f4:fd:4f:2e:
75:c6:b2:d2:5f:4f:7d:d1:ec:64:3e:9d:e5:6a:f4:
80:69:c3:69:a7:e8:b3:3a:01:c7:30:a4:b8:fa:eb:
6e:7d:7b:c6:f3:c5:c9:31:07:f1:f1:a2:6a:41:52:
f0:05:3a:f2:e7:e8:25:29:30:9c:b1:c0:a0:33:b6:
ff:5d:08:1d:22:cb:4c:e9:d5:d3:c7:0e:55:13:66:
5f:ea:c8:03:80:bf:e5:c1:0b:b3:f2:6b:87:a0:42:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:33:73:6E:AE:E5:72:B9:CA:DE:CB:57:10:6C:A2:BD:F6:4C:4F:11
X509v3 Authority Key Identifier:
keyid:B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:d883:500::/40
Signature Algorithm: sha256WithRSAEncryption
d5:d3:19:df:27:ae:52:98:4d:3e:89:53:a0:c8:d7:fa:a0:58:
f1:fc:a5:42:85:32:19:0f:bd:31:84:38:e2:c2:7e:95:0e:30:
08:14:57:0b:0a:f4:e4:46:e6:ae:c0:75:7b:4d:a1:b8:f5:8d:
f6:6d:96:0f:35:8b:2b:d3:20:61:dc:c1:74:e2:22:48:7c:20:
d9:79:f5:a3:26:d5:f0:9e:0d:7b:90:a6:38:e4:91:71:31:2b:
4e:ef:b6:35:97:60:12:90:5b:bf:b5:11:b9:8f:2c:c3:19:0d:
29:34:07:10:2c:3b:96:99:3d:77:5a:c5:97:c9:88:01:ef:30:
d3:b6:27:7f:4b:09:6c:2f:b3:18:3c:d7:bf:74:3a:10:6d:a8:
14:8b:b8:b3:d4:28:ca:db:ea:13:d3:0d:05:d2:69:d7:8d:2f:
02:fb:b5:81:d0:f9:68:89:8b:4d:39:72:86:1e:8f:fe:f4:ed:
0f:5c:f8:5c:eb:8b:d4:88:3c:08:c7:76:ad:cc:f1:68:40:76:
a3:67:0f:7a:5f:66:1d:32:12:8c:cf:ea:78:dd:eb:65:72:e1:
1e:e6:b5:54:ba:9b:69:49:46:85:b2:15:49:46:df:ca:ba:19:
f9:06:8a:d0:46:81:5e:bf:fd:39:ec:c2:58:74:87:23:b9:7f:
05:a1:27:2e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgIUdqUeWPZo9CqhzmUYa1lYSa7zrEIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjU1ZTJlNzJkN2ZmZGU2YmNlYjczY2UyNmYxODVjNjc4
YTIzODkyZDAeFw0yNDA5MDMwMTQxNTNaFw0yNTA5MDIwMTQ2NTNaMDMxMTAvBgNV
BAMTKDNEMzM3MzZFQUVFNTcyQjlDQURFQ0I1NzEwNkNBMkJERjY0QzRGMTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw6uJwZld7ZEhsHL24GWATc86z
sc1SuI/JUlRKv1LmnbqlI4A9IJbZm+lSdT5CM37iU5EEE/YrZVJr0hVvVmclSSGV
kDMvN5IM6nxBqooQkBCltWDH02/3AUgfhYnMvIIlhZu5k2E54V+8ljgQxZydgz4x
1+aLnQ57sDiMFIsjeS/lK0Bdp6VP7mz7SEim9l3R/7yXB0+uPYAoUXzW6kY09P1P
LnXGstJfT33R7GQ+neVq9IBpw2mn6LM6AccwpLj66259e8bzxckxB/HxompBUvAF
OvLn6CUpMJyxwKAztv9dCB0iy0zp1dPHDlUTZl/qyAOAv+XBC7Pya4egQsFnAgMB
AAGjggHWMIIB0jAdBgNVHQ4EFgQUPTNzbq7lcrnK3stXEGyivfZMTxEwHwYDVR0j
BBgwFoAUtV4uctf/3mvOtzzibxhcZ4ojiS0wDgYDVR0PAQH/BAQDAgeAMF0GA1Ud
HwRWMFQwUqBQoE6GTHJzeW5jOi8vcnBraS5vd2wubmV0L3JyZHAvb3dsLzEvQjU1
RTJFNzJEN0ZGREU2QkNFQjczQ0UyNkYxODVDNjc4QTIzODkyRC5jcmwwZAYIKwYB
BQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVw
b3NpdG9yeS9ERUZBVUxUL3RWNHVjdGZfM212T3R6emlieGhjWjRvamlTMC5jZXIw
fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2kub3dsLm5l
dC9ycmRwL293bC8xLzMyNjEzMDM3M2E2NDM4MzgzMzNhMzUzMDMwM2EzYTJmMzQz
MDJkMzQzODIwM2QzZTIwMzIzMDM4MzQzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgfYgwUwDQYJ
KoZIhvcNAQELBQADggEBANXTGd8nrlKYTT6JU6DI1/qgWPH8pUKFMhkPvTGEOOLC
fpUOMAgUVwsK9ORG5q7AdXtNobj1jfZtlg81iyvTIGHcwXTiIkh8INl59aMm1fCe
DXuQpjjkkXExK07vtjWXYBKQW7+1EbmPLMMZDSk0BxAsO5aZPXdaxZfJiAHvMNO2
J39LCWwvsxg81790OhBtqBSLuLPUKMrb6hPTDQXSadeNLwL7tYHQ+WiJi005coYe
j/707Q9c+Fzri9SIPAjHdq3M8WhAdqNnD3pfZh0yEozP6njd62Vy4R7mtVS6m2lJ
RoWyFUlG38q6GfkGitBGgV6//Tnswlh0hyO5fwWhJy4=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:20 2025 by rpki-client