Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Oa2Bkrny7wkw9O9IevCekFJdvSA.roa
File: Oa2Bkrny7wkw9O9IevCekFJdvSA.roa (raw, json)
Hash identifier: O7iauyNVWAqQAibtVKDqJ5ZZHsRPG6/qcr+hSR1nplM=
Subject key identifier: 39:AD:81:92:B9:F2:EF:09:30:F4:EF:48:7A:F0:9E:90:52:5D:BD:20
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 0183891FD70BBDEE18D4CFA05F6726D0916C
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Oa2Bkrny7wkw9O9IevCekFJdvSA.roa
Signing time: Thu 29 Sep 2022 12:01:48 +0000
ROA not before: Thu 29 Sep 2022 12:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 83.136.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:1f:d7:0b:bd:ee:18:d4:cf:a0:5f:67:26:d0:91:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Sep 29 12:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39ad8192b9f2ef0930f4ef487af09e90525dbd20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:a0:76:8b:8b:e9:cc:77:69:13:4a:4b:e6:
01:4a:00:c4:c4:0b:08:66:a5:18:7f:b7:b5:c3:58:
6c:5d:d1:62:11:cb:ea:9a:ac:97:6e:bd:a4:75:32:
d9:c6:b7:6e:c5:18:7c:2a:87:fb:12:23:96:44:3e:
65:18:6d:5b:4e:0f:cc:70:ba:8f:7d:52:41:b4:8a:
1a:83:16:ce:0f:c9:f8:13:2f:60:69:7e:00:b5:b9:
2c:fa:53:ba:85:4d:fb:c6:eb:1a:40:df:3e:9f:ec:
6c:8a:53:70:90:e9:b4:9f:d8:a1:0c:46:44:09:00:
25:a4:37:96:3d:85:42:18:8b:95:48:e8:2f:53:80:
cd:e8:5d:ad:11:02:20:e2:b9:37:ec:e5:4a:c6:f8:
4f:0f:a8:aa:fd:51:90:e4:5f:12:08:58:74:53:80:
fd:96:02:df:69:de:82:b0:b1:5b:59:be:5a:6e:49:
fd:0a:f1:60:0f:a0:10:62:67:be:a4:11:1a:3b:2a:
cb:82:aa:15:db:d6:de:ca:50:23:e5:a8:ed:ce:28:
f5:4c:1d:ee:aa:14:bb:d1:05:b9:d6:44:26:d9:05:
9e:46:a4:47:c0:46:15:c9:9e:8f:8e:e4:ac:f3:f2:
f2:3c:1a:a4:77:1f:42:40:ad:10:b8:a4:ba:72:9d:
2d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AD:81:92:B9:F2:EF:09:30:F4:EF:48:7A:F0:9E:90:52:5D:BD:20
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Oa2Bkrny7wkw9O9IevCekFJdvSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.213.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:aa:9f:1b:53:79:f3:01:de:c4:dc:37:7c:0c:02:78:cd:95:
13:48:00:c8:e8:9e:dc:53:6d:d1:37:10:94:f3:14:d6:2f:11:
08:80:e5:dc:76:88:e6:df:43:7a:4b:61:ae:06:88:86:e5:0b:
b7:cc:fe:b7:4c:ac:c1:75:26:11:9b:bd:2b:d7:0e:bd:54:d2:
ae:a4:e0:8d:c1:5f:fd:7e:d0:94:e8:84:8e:80:fe:73:91:bc:
f0:a3:0c:53:af:4d:4f:30:6f:31:c0:77:84:89:e9:ec:17:57:
61:37:c3:04:a6:af:25:c9:25:21:83:45:18:49:28:d8:70:a3:
c8:6e:b0:dc:a2:3e:81:5f:55:e4:4f:9a:cd:09:01:82:f5:79:
cb:8d:c5:22:be:0c:cf:57:91:42:3e:3e:f3:0d:70:de:f4:c1:
63:5f:17:11:c6:21:8d:8d:8d:97:ba:b7:ff:c0:ae:85:dd:06:
aa:30:31:60:c3:ca:32:4d:a6:e8:d3:0e:73:80:4f:ac:bd:6e:
fe:47:37:3c:9c:c3:91:6c:cc:a1:70:e0:e8:85:10:ea:85:35:
3f:a4:2e:af:28:81:65:40:d5:f8:3c:f7:92:d6:71:b1:df:db:
92:08:b0:d8:75:dc:e1:fe:52:ef:92:39:1e:9e:4d:f2:55:17:
8f:d3:08:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-ams.rpki-client.org