Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/O8DHQhInj155pnwFq9mqvLmZ5KU.roa
File: O8DHQhInj155pnwFq9mqvLmZ5KU.roa (raw, json)
Hash identifier: L2IbDz8CZjQo4Ta7vddZS7AOa6Qe+JwH7xSeMc6zWZE=
Subject key identifier: 3B:C0:C7:42:12:27:8F:5E:79:A6:7C:05:AB:D9:AA:BC:B9:99:E4:A5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 100ED36A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/O8DHQhInj155pnwFq9mqvLmZ5KU.roa
Signing time: Wed 25 May 2022 10:00:13 +0000
ROA not before: Wed 25 May 2022 10:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212496
IP address blocks: 195.58.36.0/24 maxlen: 24
193.124.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269407082 (0x100ed36a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 25 10:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bc0c74212278f5e79a67c05abd9aabcb999e4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:34:0e:37:44:b6:65:a2:0e:d9:d4:ba:ef:9b:
62:f3:a4:ec:f5:ed:c4:9a:46:f9:43:72:35:11:73:
57:98:26:eb:b9:70:c0:d4:4b:37:e3:c2:ad:2b:4a:
ba:9c:82:bd:ba:20:f1:07:31:1f:ee:24:d3:46:50:
92:56:bd:1c:8b:3e:50:58:39:f5:b8:10:e5:29:10:
8f:2d:4f:00:0d:e6:bf:b3:c9:98:88:c2:93:17:c1:
d8:67:ab:08:1a:ad:83:25:ca:bc:03:ee:42:e8:3c:
45:cb:37:c1:9e:5e:a8:3a:bc:eb:74:9d:cc:2a:29:
c7:44:c5:6b:b1:af:4e:89:0e:a7:a7:7d:ed:30:b4:
31:7c:70:ac:7f:fe:de:3c:4c:57:5d:77:ac:f9:26:
3a:91:8f:b8:f3:22:90:36:9f:26:23:16:d5:bd:49:
2c:aa:6f:f0:c9:57:bd:6f:e2:7a:68:cc:a9:88:9a:
76:17:61:8c:89:90:09:e5:77:c9:bb:f7:a2:9c:e2:
ce:aa:db:cd:93:21:c6:f9:d2:48:73:2f:f5:d2:98:
2a:03:f9:6b:71:5b:d4:0b:97:0f:d9:74:8e:c8:0b:
59:85:47:e2:ac:a6:61:7d:0c:48:32:42:97:46:c0:
c1:6b:0f:28:f7:8c:ee:a3:51:4f:5e:23:13:82:90:
4c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C0:C7:42:12:27:8F:5E:79:A6:7C:05:AB:D9:AA:BC:B9:99:E4:A5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/O8DHQhInj155pnwFq9mqvLmZ5KU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.92.0/24
195.58.36.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:4b:e5:35:40:ab:68:0d:15:33:c8:6c:52:6c:44:5c:75:08:
c0:36:05:67:f2:5e:1b:a7:b5:8a:70:ad:44:94:93:84:e5:26:
38:83:9a:a1:5a:6b:ae:a9:13:f2:a8:2e:bc:41:4d:bd:48:b6:
ce:8a:16:a0:79:b7:ba:00:1a:60:56:e3:e9:e6:43:69:4b:25:
b6:0c:37:75:8d:d0:19:68:44:19:68:e9:74:9f:5b:a1:7d:84:
ed:a7:61:62:65:64:ce:3b:b2:3e:2c:e3:8c:14:ca:12:0c:fc:
97:6b:18:7a:ce:7c:80:82:4e:91:b8:69:61:f5:70:8e:5b:a1:
6a:92:dc:85:48:db:81:d1:1d:5b:0b:4c:ea:1a:ec:49:76:6f:
3b:f1:b1:17:5f:9d:b7:81:41:12:ad:5b:87:89:b6:8c:70:6f:
bc:52:7c:fe:8d:c6:b7:58:46:28:c8:6c:7b:6e:5a:60:0f:11:
b9:67:99:32:9d:fa:1f:01:34:36:0b:ee:3c:53:f8:e9:7c:b4:
a9:a4:f6:0f:be:3d:b2:e3:d8:e8:15:e6:a3:12:63:79:be:7d:
41:10:7d:58:24:06:58:24:36:6a:c5:72:df:39:da:10:6a:e4:
52:78:ce:0a:03:56:2b:83:5f:9b:77:3d:69:da:b0:75:12:40:
68:3c:c7:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:56 2023 by rpki-client on console-ams.rpki-client.org