Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/OSY26fNoVLLZZy4perCBMg2LRfg.roa
File: OSY26fNoVLLZZy4perCBMg2LRfg.roa (raw, json)
Hash identifier: ZhzEi0857hAH9f2cRz86G4qnzT8xJ54umJZ97zOg/aQ=
Subject key identifier: 39:26:36:E9:F3:68:54:B2:D9:67:2E:29:7A:B0:81:32:0D:8B:45:F8
Certificate issuer: /CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Certificate serial: 025A1D19
Authority key identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/OSY26fNoVLLZZy4perCBMg2LRfg.roa
Signing time: Sat 01 Jan 2022 05:04:43 +0000
ROA not before: Sat 01 Jan 2022 05:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12552
IP address blocks: 45.15.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39460121 (0x25a1d19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Validity
Not Before: Jan 1 05:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=392636e9f36854b2d9672e297ab081320d8b45f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:8c:7e:06:ae:6b:b9:9d:9e:c4:35:d8:58:
9a:06:63:9e:bb:e3:8a:21:cb:9e:8b:65:1b:ff:99:
71:7f:4f:f2:57:97:ca:00:38:81:c0:5d:38:c0:fc:
b7:c1:4d:20:c9:9d:7f:fa:e7:a6:aa:89:ba:b8:96:
da:80:10:9c:2b:29:71:2e:a1:0f:55:9f:e6:14:fa:
e0:11:08:eb:e9:9f:f8:4c:55:46:62:4b:4c:c3:dd:
eb:ba:d9:a3:e0:27:36:aa:4a:5b:c9:7f:d2:52:d5:
99:22:0f:a6:0e:dd:51:10:78:6c:b1:90:25:85:ea:
24:66:44:d2:f6:54:08:b2:71:e4:ce:bb:e2:a0:a8:
04:10:5a:be:2c:7a:26:2c:2d:cc:63:23:1e:e0:90:
b0:37:fd:22:9d:d0:db:00:ce:db:a6:04:42:db:1f:
1e:78:33:71:6e:8a:66:73:ae:a2:40:3a:c8:71:97:
3c:90:fe:26:86:f1:85:cf:42:7c:64:5d:cd:7c:e6:
fd:9c:bf:29:c5:ab:d7:4e:7b:fe:da:f5:aa:0c:c2:
cf:7f:44:7f:35:4a:bd:1f:9f:e5:25:d8:e6:3f:9c:
1c:2e:b3:9a:03:0d:43:2e:84:f3:31:60:dd:66:1e:
8f:b8:65:ee:11:88:c8:a1:b9:ab:98:bc:0d:19:6e:
94:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:26:36:E9:F3:68:54:B2:D9:67:2E:29:7A:B0:81:32:0D:8B:45:F8
X509v3 Authority Key Identifier:
keyid:A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/OSY26fNoVLLZZy4perCBMg2LRfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:61:b5:9b:be:8c:5f:14:38:cb:00:02:4c:cc:47:d4:db:10:
e2:c5:ff:4e:d7:45:8b:fe:1a:f6:31:50:aa:4c:60:5d:34:88:
9a:8a:82:61:ec:56:8a:21:e0:ae:7f:59:6b:a5:8d:c2:ff:13:
8a:46:f5:01:7f:d3:82:87:83:10:bc:02:c5:d9:29:c2:95:4c:
66:35:81:62:8f:dc:9a:8c:67:eb:83:d7:f8:d1:6a:ac:6e:ef:
e2:81:14:6e:3c:54:02:1e:99:37:f4:69:8d:89:9b:1a:ab:83:
4f:c0:56:d9:b6:94:b4:05:a6:0f:a1:46:e2:0d:4a:90:dc:32:
a2:3a:5c:8b:08:e9:c6:74:87:d9:c2:3c:07:8d:6d:7c:18:1c:
4c:10:75:01:00:c8:34:67:80:e8:0c:ce:fd:f4:72:11:d2:b5:
fb:2a:df:a1:23:96:04:38:8f:1a:7a:2c:af:96:d7:5a:4e:57:
0d:0e:f9:94:55:89:98:e8:a9:8c:dc:c6:46:10:20:72:41:90:
fc:db:2a:77:10:56:a4:6c:f1:4a:b6:22:f9:e2:ab:ca:06:3b:
92:33:c8:3c:c5:fa:0d:27:d9:f0:84:2e:7c:98:e2:07:6d:92:
8e:8b:96:ea:6f:22:9e:5f:93:66:6a:8e:d7:c5:59:ca:af:e8:
c3:52:45:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org