Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oR5UTAxACxhRDFy9u014gk2E2Eo.roa
File: oR5UTAxACxhRDFy9u014gk2E2Eo.roa (raw, json)
Hash identifier: AVYy+xxPesz7WbOULg+4vV3J9b0ZY9utAAk6cJ97wsM=
Subject key identifier: A1:1E:54:4C:0C:40:0B:18:51:0C:5C:BD:BB:4D:78:82:4D:84:D8:4A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0184C2BDFAE13D4BDB3458CB94190BECBEFF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oR5UTAxACxhRDFy9u014gk2E2Eo.roa
Signing time: Tue 29 Nov 2022 09:35:41 +0000
ROA not before: Tue 29 Nov 2022 09:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60849
IP address blocks: 82.115.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:bd:fa:e1:3d:4b:db:34:58:cb:94:19:0b:ec:be:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 29 09:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a11e544c0c400b18510c5cbdbb4d78824d84d84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0b:f2:39:49:1d:e6:3c:4e:63:1a:ee:20:64:
a7:15:3f:57:82:b0:5c:a1:6e:2e:e5:a2:49:8a:f3:
c1:82:c5:32:72:54:8b:f9:6d:63:9c:65:b6:a7:14:
1e:e2:60:2b:e8:0f:a9:e5:8f:26:b6:4d:60:8c:01:
8a:72:ac:92:8a:87:52:9e:2b:6a:bc:25:d6:85:5c:
92:2d:68:17:46:3d:61:e6:21:80:92:d1:3c:0c:32:
8c:54:9e:e8:b7:8c:0b:6e:aa:57:61:f2:f6:bf:ea:
f0:89:48:1c:ef:a5:96:35:19:80:09:7b:8d:d8:27:
1b:b7:e8:72:76:3c:58:9a:ad:95:89:a3:6c:f7:9e:
4c:59:dd:d1:03:88:99:3f:8f:ef:bb:9a:36:14:e6:
e9:d2:f3:18:97:5d:42:b2:6d:64:aa:36:9f:c3:8d:
46:1d:96:1c:11:2c:8b:47:2a:20:b0:97:03:57:ea:
09:20:ae:a3:5e:2c:63:ee:84:f5:da:44:ff:7f:08:
4e:a3:d5:65:30:72:1a:57:f8:8c:53:a6:79:71:63:
27:e7:b1:a5:ec:ce:fc:46:46:7b:dd:db:44:d8:6c:
9f:89:ed:f4:89:46:9c:4c:00:39:2b:17:09:f9:c8:
e8:bb:ff:22:18:22:df:a9:e0:cd:6f:0c:92:81:8c:
37:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1E:54:4C:0C:40:0B:18:51:0C:5C:BD:BB:4D:78:82:4D:84:D8:4A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oR5UTAxACxhRDFy9u014gk2E2Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.208.0/24
Signature Algorithm: sha256WithRSAEncryption
01:96:20:3d:94:89:2c:c7:98:9d:6d:09:69:e8:99:2b:91:a2:
73:70:31:1a:b1:2a:ad:5c:47:2e:0e:63:20:26:cc:d4:9a:bb:
de:48:d4:6f:6e:38:78:22:2a:cb:ed:9d:fd:61:16:7e:d5:c4:
4c:a7:88:60:2e:ab:10:df:6f:db:b2:8f:a5:7b:49:46:79:55:
3e:e1:c2:84:54:4a:27:46:09:49:fd:2c:8b:32:6d:b6:ac:4a:
b6:0b:6d:80:73:5c:e2:f7:64:51:6b:c7:66:c0:c4:ed:06:83:
53:12:3f:05:15:b3:93:af:12:44:84:35:60:ac:0f:5c:10:69:
b5:00:d3:48:bb:d3:a8:54:b9:2f:b7:c7:66:18:d2:51:12:f5:
fa:ed:d3:95:5f:a3:50:ab:e2:52:29:78:9d:1d:0a:1f:14:4b:
2a:db:43:82:23:ac:b3:23:a9:e6:77:de:a7:63:ac:f0:b8:f4:
4d:14:f3:e0:11:86:eb:51:9c:5b:d9:1b:6b:c2:85:9c:2f:ae:
f5:29:47:09:21:5b:60:17:f6:ad:78:40:0c:47:a2:ff:d1:57:
19:d6:f5:41:3d:e6:06:9b:f4:24:dd:33:d5:78:c4:26:00:ff:
98:6a:1d:d6:f4:2b:5f:11:01:e0:ac:0d:ae:b0:1c:c7:ea:3f:
7c:16:cd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-ams.rpki-client.org