Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/oqjC6CkcpDwLLBCfZSobyhvGF18.roa
File: oqjC6CkcpDwLLBCfZSobyhvGF18.roa (raw, json)
Hash identifier: QidRHYxl7dFIvTzlY7Ov2lPc86fDuB2eNCYfyBk9Wp0=
Subject key identifier: A2:A8:C2:E8:29:1C:A4:3C:0B:2C:10:9F:65:2A:1B:CA:1B:C6:17:5F
Certificate issuer: /CN=075e993e76f9d7fa404d69a6cb60d4bf98f2ba1e
Certificate serial: 0261B9
Authority key identifier: 07:5E:99:3E:76:F9:D7:FA:40:4D:69:A6:CB:60:D4:BF:98:F2:BA:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B16ZPnb51_pATWmmy2DUv5jyuh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/oqjC6CkcpDwLLBCfZSobyhvGF18.roa
Signing time: Thu 28 Apr 2022 12:16:23 +0000
ROA not before: Thu 28 Apr 2022 12:16:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.11.156.0/22 maxlen: 22
2001:67c:5d8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156089 (0x261b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=075e993e76f9d7fa404d69a6cb60d4bf98f2ba1e
Validity
Not Before: Apr 28 12:16:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2a8c2e8291ca43c0b2c109f652a1bca1bc6175f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ca:c8:c6:b3:65:38:01:6e:06:43:e8:aa:35:
b7:9c:21:ae:bf:03:b7:52:54:79:fe:69:04:70:3e:
a3:25:37:98:ee:29:29:31:41:65:46:58:72:5f:15:
8a:68:37:04:f4:ae:60:66:08:23:1f:b3:4b:ae:ef:
e0:d5:da:cd:ee:fa:9a:ac:eb:73:3f:d6:45:db:a1:
94:77:b0:f3:7f:4d:f2:39:dc:c2:91:9f:f8:f7:57:
b6:38:08:1b:05:31:98:e3:ba:3a:3a:bf:42:2a:fd:
31:66:b5:2e:75:0e:40:d0:ae:a5:91:31:d2:df:e3:
3f:00:58:e4:35:ca:5e:57:7f:c1:d6:d9:54:db:12:
6b:6c:14:81:17:b3:46:8a:e3:09:37:38:1d:fe:37:
07:b8:f4:79:0e:94:c5:0a:2f:32:5a:9d:b4:b5:82:
17:79:70:11:24:ad:f0:44:b7:cf:93:f4:f6:16:1d:
88:f3:e5:42:97:c1:7c:88:72:c5:46:8b:20:3a:a5:
eb:ac:e3:4e:c9:79:12:5d:a2:31:84:ad:05:fa:49:
4f:3c:dd:4a:9d:b2:12:a7:d4:ac:8a:55:72:fd:2a:
19:43:ae:21:84:33:f2:0f:34:3e:16:bf:6d:8a:59:
f4:05:ea:35:6e:63:5a:8b:8f:20:2d:90:54:72:62:
76:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A8:C2:E8:29:1C:A4:3C:0B:2C:10:9F:65:2A:1B:CA:1B:C6:17:5F
X509v3 Authority Key Identifier:
keyid:07:5E:99:3E:76:F9:D7:FA:40:4D:69:A6:CB:60:D4:BF:98:F2:BA:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B16ZPnb51_pATWmmy2DUv5jyuh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/oqjC6CkcpDwLLBCfZSobyhvGF18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/B16ZPnb51_pATWmmy2DUv5jyuh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.156.0/22
IPv6:
2001:67c:5d8::/48
Signature Algorithm: sha256WithRSAEncryption
02:cb:a7:42:54:cd:8a:20:fb:6f:3b:eb:e2:64:65:b9:22:d2:
66:8b:1d:f4:db:98:47:90:a8:0d:98:33:dd:7c:00:2f:09:c1:
3d:8a:48:52:75:8a:5a:1f:41:34:69:5e:fb:44:6b:c6:de:af:
15:6d:ac:09:34:67:56:1f:4f:cc:33:3e:e6:0c:58:8f:81:f9:
18:fc:86:8e:08:a5:3c:e1:3b:4c:1d:f6:c9:22:5c:1b:2a:ab:
52:17:e8:ed:49:a2:70:f5:83:82:31:b3:1b:57:ba:d8:a8:37:
12:62:02:cf:4d:19:f5:f6:6c:36:dd:cc:61:d8:98:6f:6f:28:
fb:93:99:f0:95:42:c3:16:2d:31:c3:75:fe:00:c1:bb:e8:77:
1a:4c:a5:30:d8:6f:3e:61:7e:9c:11:78:1d:82:aa:6c:7b:cc:
da:94:7a:9b:9e:9e:b1:ec:61:21:14:3c:93:da:a0:c5:1a:18:
63:1b:0e:07:b0:73:22:82:da:a4:f9:72:16:7e:1c:c8:0b:28:
dc:d5:f2:ef:cd:9b:a6:0b:ee:87:11:25:1b:cd:78:46:b7:d4:
22:ce:d6:60:e7:d2:c6:c8:fc:e1:f4:41:80:95:ad:3b:6d:46:
3f:02:96:f1:33:06:45:66:1c:88:ce:32:fb:72:e8:a2:0d:98:
c5:06:3c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:26 2023 by rpki-client on console-ams.rpki-client.org