Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/A7OTZyZer7t_hnkZH3oCedSZ0JI.roa
File: A7OTZyZer7t_hnkZH3oCedSZ0JI.roa (raw, json)
Hash identifier: VFW050SDRqus6oucaUNim+ve7Q32fgsoCJr26mf59gw=
Subject key identifier: 03:B3:93:67:26:5E:AF:BB:7F:86:79:19:1F:7A:02:79:D4:99:D0:92
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 0AF2FFBD
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/A7OTZyZer7t_hnkZH3oCedSZ0JI.roa
Signing time: Sat 01 Jan 2022 09:56:10 +0000
ROA not before: Sat 01 Jan 2022 09:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 185.243.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183697341 (0xaf2ffbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Jan 1 09:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03b39367265eafbb7f8679191f7a0279d499d092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:58:de:94:7f:3a:84:6f:a2:68:4e:80:b2:
8a:4f:b0:5c:1e:10:ce:2b:0a:8b:33:99:a0:a2:98:
eb:73:bd:8c:d6:22:2a:c8:c1:89:f9:ab:2a:72:e8:
23:23:a4:81:e0:75:ce:bc:b9:2e:89:dd:b3:83:c4:
56:70:23:ea:5a:62:4e:dd:32:89:c5:ee:a3:ee:b1:
55:69:e4:6c:8c:73:b1:02:b6:fc:f2:e9:99:76:36:
16:d3:6d:4f:1d:44:e2:9b:28:6f:20:39:6e:71:1d:
47:04:52:e5:bf:f5:c9:59:81:8e:c5:3c:45:cd:7a:
82:1c:6a:4e:c9:68:47:23:60:db:07:c9:02:76:92:
82:83:a0:5b:0f:94:1e:79:08:21:ed:88:2c:81:5a:
c6:30:a4:ae:f1:83:52:92:bb:40:1a:fe:3e:55:25:
9c:22:6b:dd:f7:b2:7c:ed:b2:6c:f2:2d:fb:5f:8e:
21:ff:67:bf:67:7b:a8:7c:00:38:da:69:28:35:61:
96:49:b0:04:35:21:78:be:0a:17:be:86:31:46:a5:
2f:4a:10:e3:63:1d:03:14:d1:f1:02:7e:fe:e1:c4:
9e:1b:28:8c:63:0f:43:a8:3d:08:42:ef:92:64:a1:
22:91:2f:e7:2f:b6:ee:f5:8d:3f:63:36:98:52:58:
74:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B3:93:67:26:5E:AF:BB:7F:86:79:19:1F:7A:02:79:D4:99:D0:92
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/A7OTZyZer7t_hnkZH3oCedSZ0JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.68.0/22
Signature Algorithm: sha256WithRSAEncryption
95:52:6c:0e:97:49:66:09:a7:09:52:e3:4b:df:4a:fd:6e:02:
31:ba:59:d4:ed:25:89:34:a5:ca:3f:14:09:b3:3e:85:2b:aa:
bc:de:c3:85:23:d5:2a:8c:ed:0b:85:d6:f9:c4:6c:57:fd:af:
db:02:c0:46:56:03:89:1e:82:1c:20:6e:b1:a4:6c:25:2f:9b:
fc:b8:2b:4e:b5:77:a6:e4:6d:20:42:10:76:c7:a5:ef:f4:54:
4a:6f:9b:4b:01:9d:f7:d1:af:b8:d0:8d:bf:d7:ff:54:45:ce:
82:38:fd:08:60:ac:b4:45:c0:f1:35:1c:0b:2e:40:c9:00:9a:
39:70:7e:b0:ee:eb:e3:4b:02:24:51:a3:ae:3c:de:f2:6b:f8:
26:e6:4d:99:c6:76:e5:85:c3:53:a6:ef:13:fa:d6:9f:a1:a5:
ee:4e:34:88:62:0e:bd:6d:5d:42:c5:54:44:df:68:4d:82:0a:
93:0d:bc:c2:1e:00:7a:f9:2d:23:1a:b7:92:34:f6:cb:6f:2b:
ee:44:e8:a0:cf:d4:01:e6:cf:18:45:f2:bf:01:ad:3a:36:0a:
1f:13:d1:98:8d:da:e2:93:8c:5e:16:6c:fe:80:81:61:5d:98:
21:9a:7b:fd:3d:f9:ee:72:50:5d:1f:27:be:1c:d6:53:3d:9b:
b0:6f:dc:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org