Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/oGUhv3r7TII39BUy0n8xDg9v1wE.roa
File: oGUhv3r7TII39BUy0n8xDg9v1wE.roa (raw, json)
Hash identifier: ysjJupk94lZjt7lXwMUDLbWJdN+XDJeQvgMidBW/izo=
Subject key identifier: A0:65:21:BF:7A:FB:4C:82:37:F4:15:32:D2:7F:31:0E:0F:6F:D7:01
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: E5DB1E
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/oGUhv3r7TII39BUy0n8xDg9v1wE.roa
Signing time: Sat 01 Jan 2022 08:02:02 +0000
ROA not before: Sat 01 Jan 2022 08:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12578
IP address blocks: 195.35.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15063838 (0xe5db1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Jan 1 08:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a06521bf7afb4c8237f41532d27f310e0f6fd701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:31:8f:5f:6a:68:5f:ee:9a:de:d3:ac:63:e1:
29:32:09:1a:d9:80:55:57:51:76:37:c7:b6:c6:c6:
87:60:d3:ab:a8:49:d2:3d:1e:96:f9:d1:24:e5:56:
cf:6d:f0:6b:8c:26:ab:e2:26:25:9c:e4:da:5b:fb:
f1:be:a0:a0:67:b9:aa:48:32:59:1a:22:c3:72:f7:
6c:66:de:b4:e7:d2:68:d8:6c:b8:c7:62:bf:71:bd:
bc:17:da:16:14:c7:01:b3:35:3d:8d:74:90:07:d1:
f1:65:99:7a:92:4f:8d:77:74:33:30:e8:48:09:ec:
33:08:59:f2:b9:d5:ad:41:11:a8:bb:fe:6a:30:58:
d1:53:25:9f:fe:af:af:da:90:7f:fb:5e:a6:42:84:
b0:7d:4f:62:15:a1:89:f5:9a:83:b0:31:08:99:5f:
ce:d7:ff:b0:2b:a7:2f:72:46:3d:61:f9:87:0e:67:
ec:f6:03:70:f0:ad:19:a3:8e:52:73:40:f6:26:cb:
b7:d2:21:fb:0d:3c:8f:7f:08:d3:a5:2f:fc:3a:60:
fb:c4:f8:4d:e3:56:5e:09:b2:b7:ea:99:b8:04:1a:
72:4e:8b:66:7d:fd:63:3a:97:72:26:7d:a7:03:38:
20:01:a3:bf:dc:a6:7b:21:79:9f:94:05:b2:3d:1e:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:65:21:BF:7A:FB:4C:82:37:F4:15:32:D2:7F:31:0E:0F:6F:D7:01
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/oGUhv3r7TII39BUy0n8xDg9v1wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.107.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:79:cb:60:8d:0b:58:3a:eb:49:fe:0d:50:cd:15:45:57:f1:
49:39:a0:ae:e0:97:a0:8d:ba:b7:05:ba:9c:6d:0d:e6:e7:86:
dd:bc:bc:4c:c0:58:24:2a:37:07:58:de:a0:2f:40:49:12:7d:
22:a6:52:42:8d:d1:b5:84:43:c5:93:d0:cc:57:1a:33:b6:9e:
b4:a6:14:63:b7:5b:53:fe:e4:b0:22:0d:29:81:87:a8:2d:49:
43:37:a2:10:cb:65:17:8b:8b:c8:5c:1b:f5:ec:74:73:8c:1a:
a9:1b:35:4a:d3:7d:20:97:64:a0:0a:af:3a:5d:4c:b5:86:cd:
4b:39:a7:79:88:2f:89:80:d5:49:d4:ce:36:0d:02:ae:4d:29:
5f:e4:78:8e:e9:d7:5d:1d:fa:e7:b2:ad:d1:50:c4:1b:0c:bf:
f6:56:3e:0b:31:ce:e4:b0:73:80:6f:f2:41:3b:e0:62:79:0d:
a5:90:f0:2f:11:24:75:58:38:e9:27:cf:1d:b3:de:55:df:e6:
21:8b:b2:51:a4:6b:d0:9c:26:a0:55:0f:06:5d:8e:1b:cd:27:
7c:1f:d5:6b:cd:4c:1b:11:ec:cf:e6:59:5b:32:88:2c:af:3a:
23:e9:4e:83:84:80:eb:9f:85:f1:b7:b4:51:14:98:55:09:0e:
23:e1:21:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:49 2023 by rpki-client on console-fra.rpki-client.org