Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Ovb7dBr39ii2zeozdPQgxPAvCWg.roa
File: Ovb7dBr39ii2zeozdPQgxPAvCWg.roa (raw, json)
Hash identifier: 2QB9b89aTiSWebKZ25T2sQMAh86csn4YgX4lMcN/oag=
Subject key identifier: 3A:F6:FB:74:1A:F7:F6:28:B6:CD:EA:33:74:F4:20:C4:F0:2F:09:68
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1CD6CDDB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Ovb7dBr39ii2zeozdPQgxPAvCWg.roa
Signing time: Sun 23 Jan 2022 00:45:02 +0000
ROA not before: Sun 23 Jan 2022 00:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209628
IP address blocks: 87.121.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 483839451 (0x1cd6cddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 23 00:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3af6fb741af7f628b6cdea3374f420c4f02f0968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d2:43:77:7e:85:8b:38:e8:24:d4:78:95:05:
36:3e:72:78:df:88:25:b7:1b:e9:66:6f:41:b3:3a:
18:5c:f6:f4:57:0a:bc:0c:2a:1f:e3:b6:89:4b:a9:
3c:04:96:5e:0f:d5:4d:20:fe:10:4e:8e:73:eb:1d:
6a:42:4d:5e:c8:fb:ad:d4:92:d2:8c:1c:6e:6f:ef:
06:1d:cf:b3:40:96:0e:3d:bd:c2:17:8a:c2:ab:db:
2f:c9:af:39:5f:15:e2:28:bd:d4:05:5a:d0:77:da:
1e:bd:ac:b9:2f:c0:18:33:47:4e:09:ad:78:dd:6b:
58:0b:b7:09:a8:d6:06:ed:81:6c:7a:34:68:b4:8c:
f1:3f:2e:2f:ad:44:fd:12:c4:35:c6:f6:4d:e5:9d:
37:1e:d6:df:f0:b6:5a:b1:5f:80:31:48:f2:22:31:
9d:83:a2:67:82:a4:e7:4b:4b:21:af:6e:f1:f7:03:
6f:e2:71:5d:06:26:61:7c:5c:74:11:b4:8e:7f:55:
71:72:44:7c:8f:30:ea:32:71:a6:ec:8a:9f:fa:47:
ad:f1:42:76:9b:de:35:d5:73:09:11:ea:8b:da:4d:
ae:ed:58:ea:46:7e:5d:9c:27:51:4b:15:05:8a:1a:
07:16:79:6d:13:96:42:00:ba:d7:8c:da:1e:e3:95:
fc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F6:FB:74:1A:F7:F6:28:B6:CD:EA:33:74:F4:20:C4:F0:2F:09:68
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Ovb7dBr39ii2zeozdPQgxPAvCWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.54.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5a:8b:e3:c2:04:3b:25:8e:80:2b:d4:64:67:00:69:6c:ed:
10:ea:0a:a7:c5:e3:6e:8a:97:16:09:af:eb:af:b4:c6:9a:b3:
90:37:d3:1c:2d:8f:46:85:48:a6:2c:3c:13:ef:6d:5a:2d:17:
eb:96:87:41:e0:4e:73:a9:f6:ad:31:31:f1:35:21:42:69:a3:
52:cf:96:ff:7a:a5:f0:ae:6a:31:4c:04:b5:9c:7d:d5:c0:a0:
f2:de:0b:78:ce:a3:b8:f1:20:cb:59:b4:8e:52:b2:2e:1b:87:
47:29:75:a1:03:41:90:e3:fa:ae:c0:71:bd:c6:4a:3a:7c:7c:
c1:19:c4:29:ec:fc:ea:79:96:48:88:9d:18:37:86:f1:20:5e:
14:03:a1:c0:64:f8:75:ba:75:4d:28:0f:8b:8e:fa:76:5c:44:
69:af:1f:17:36:5b:2a:7c:d7:1d:9e:38:e1:bc:68:0b:e2:40:
03:6d:92:77:eb:81:4f:39:99:f6:57:37:29:00:ac:f0:b2:b7:
3d:58:43:ff:20:28:82:bb:88:59:14:8c:da:bf:ca:4a:02:d5:
ac:26:f8:b4:b1:8e:5a:74:67:59:0c:c6:66:a5:f6:71:99:24:
eb:a9:58:3f:70:87:a6:f1:5b:8d:21:23:db:04:05:69:69:3f:
59:23:71:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:32 2024 by rpki-client on console-ams.rpki-client.org