Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OuQ-1nIAjojNMkUnP6W7QHn4EdI.roa
File: OuQ-1nIAjojNMkUnP6W7QHn4EdI.roa (raw, json)
Hash identifier: 0IzIUmqXnxJ01oEGsGmoFUM9yPVydRDZhtL2k8AfvGw=
Subject key identifier: 3A:E4:3E:D6:72:00:8E:88:CD:32:45:27:3F:A5:BB:40:79:F8:11:D2
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C81CF96
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OuQ-1nIAjojNMkUnP6W7QHn4EdI.roa
Signing time: Sat 01 Jan 2022 01:02:46 +0000
ROA not before: Sat 01 Jan 2022 01:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200009
IP address blocks: 87.120.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478269334 (0x1c81cf96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ae43ed672008e88cd3245273fa5bb4079f811d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:55:dc:4c:52:55:9f:0a:3c:0b:d0:50:57:75:
02:0d:83:32:c2:cb:0a:62:35:e8:d4:b8:63:1b:43:
34:13:1e:24:56:fd:de:97:79:ff:4c:be:d5:60:9a:
07:c0:03:cd:cd:34:58:fd:30:51:84:ab:a6:8e:e6:
2f:b8:56:ea:dd:c7:cf:a0:94:a8:51:b3:65:4d:d9:
0f:1d:5c:3a:24:5c:18:29:ee:d9:fd:73:c6:c4:d0:
11:2a:26:0e:7f:f0:d1:07:66:62:59:5b:7a:b9:1c:
b2:ec:c9:b9:a1:50:3a:65:74:65:0e:5a:cb:87:1e:
80:0d:e5:6f:f1:3e:43:b2:36:d8:92:64:40:45:64:
16:20:02:ff:d9:35:51:46:b5:ab:65:f2:25:4d:24:
4b:10:3e:ae:fb:aa:64:10:e7:5d:ee:6d:31:d3:40:
02:6b:ff:60:11:de:35:95:c9:af:f0:94:27:59:27:
95:d4:bb:28:f4:c8:5a:2c:dc:d8:1b:eb:56:5a:bb:
45:5f:65:ce:b7:48:41:98:11:06:b7:d6:ac:f5:e9:
e6:4c:36:b8:8e:4c:c7:37:f8:b2:38:47:fc:a5:e8:
77:03:49:06:94:6a:5b:01:d3:e7:eb:d0:d6:15:71:
b1:5b:db:a4:38:8d:44:84:0b:02:fc:00:95:3e:df:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E4:3E:D6:72:00:8E:88:CD:32:45:27:3F:A5:BB:40:79:F8:11:D2
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OuQ-1nIAjojNMkUnP6W7QHn4EdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.5.0/24
Signature Algorithm: sha256WithRSAEncryption
48:87:9f:2d:b8:ec:62:fc:5f:fd:62:17:28:3d:4c:90:e8:12:
8d:e4:01:fc:97:13:28:73:06:74:c6:95:ab:c0:d3:8c:9e:d1:
95:f0:31:96:16:04:7a:f6:06:77:2a:07:c7:b9:bc:c4:2d:54:
6a:78:a3:7c:94:5a:c2:d6:ea:b9:8f:d3:5a:10:9c:9e:32:4c:
70:ed:56:2a:d8:bb:6b:dd:f3:19:75:25:95:bc:94:e0:4f:b8:
02:7f:c6:af:aa:87:f8:e5:e9:d2:be:0e:4d:1e:85:74:99:58:
4c:18:60:a7:ea:e9:54:c2:95:23:a5:04:28:8b:5c:23:71:69:
04:d8:88:8d:58:f1:b0:87:3b:fe:34:bc:ad:28:c4:8d:f8:49:
c1:97:ed:5d:ff:ff:7b:fd:66:e8:53:62:79:84:ff:df:bf:8e:
b5:61:65:7b:32:16:7f:d3:73:ce:e1:71:02:97:17:0e:1b:52:
0a:cb:de:6f:40:10:96:09:63:82:b5:11:f8:63:9d:bf:77:1e:
ab:9b:b3:17:9c:f4:65:71:bc:53:3f:d4:b4:88:ba:d7:ab:c4:
4f:ec:45:92:bf:1e:69:b6:42:d1:41:2e:42:ff:3a:1e:8b:0f:
70:e1:e1:d7:ee:4d:b1:26:ce:33:81:ff:30:de:00:4c:3c:84:
a9:75:45:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-ams.rpki-client.org