Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/OqFLgkgBmZ7dG1ujzwWYbskHBnw.roa
File: OqFLgkgBmZ7dG1ujzwWYbskHBnw.roa (raw, json)
Hash identifier: YZPnylngPXSx+gzM6DUoqOqyhdTuWXkUa/79jXOF+vA=
Subject key identifier: 3A:A1:4B:82:48:01:99:9E:DD:1B:5B:A3:CF:05:98:6E:C9:07:06:7C
Certificate issuer: /CN=1d61cb4bbee5cdd7eceda7560aa249c6d11f23a9
Certificate serial: 7E88
Authority key identifier: 1D:61:CB:4B:BE:E5:CD:D7:EC:ED:A7:56:0A:A2:49:C6:D1:1F:23:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWHLS77lzdfs7adWCqJJxtEfI6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/OqFLgkgBmZ7dG1ujzwWYbskHBnw.roa
Signing time: Mon 04 Apr 2022 12:05:57 +0000
ROA not before: Mon 04 Apr 2022 12:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198142
IP address blocks: 193.150.27.0/24 maxlen: 24
193.150.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32392 (0x7e88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d61cb4bbee5cdd7eceda7560aa249c6d11f23a9
Validity
Not Before: Apr 4 12:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3aa14b824801999edd1b5ba3cf05986ec907067c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:49:08:3b:c0:d3:03:26:51:93:9e:df:b3:
30:8b:e4:ae:ec:88:23:1a:69:b1:2c:5e:2e:d9:cf:
a7:ba:d2:d2:b0:e6:8c:54:cf:a9:91:26:18:52:30:
e5:86:bf:6d:3f:e2:8a:f6:44:39:84:91:2b:b9:75:
a4:b0:51:cc:08:c7:1b:22:1d:c8:70:2d:62:21:8c:
23:64:72:e8:52:7e:2b:81:d8:3a:d1:23:4d:6f:35:
21:6c:5c:46:75:bf:04:21:73:47:f1:53:01:82:74:
10:fc:7a:e2:3e:fe:f3:23:d3:24:b2:87:f4:a6:27:
c5:4e:05:33:7a:f7:0c:a2:0c:b9:fa:fa:40:68:b9:
e7:d5:81:fe:36:d7:73:d1:9e:2a:69:32:f2:6b:c6:
42:fd:c5:ed:8f:41:53:d6:b8:fc:56:62:56:f1:3b:
41:27:9f:01:0f:d1:b5:8b:0c:66:25:04:ec:65:7a:
18:20:45:77:13:30:b7:42:55:53:40:69:ca:22:6f:
3f:8f:5b:94:6f:d1:a5:d7:88:23:db:dd:ca:ff:0f:
10:6f:21:f7:70:9e:f0:56:af:98:28:2c:4a:1a:03:
ae:cb:f9:53:35:e8:44:24:72:30:30:24:13:03:70:
a0:1f:19:92:d4:9e:50:4b:cf:fa:be:61:a0:d9:c9:
a8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A1:4B:82:48:01:99:9E:DD:1B:5B:A3:CF:05:98:6E:C9:07:06:7C
X509v3 Authority Key Identifier:
keyid:1D:61:CB:4B:BE:E5:CD:D7:EC:ED:A7:56:0A:A2:49:C6:D1:1F:23:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWHLS77lzdfs7adWCqJJxtEfI6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/OqFLgkgBmZ7dG1ujzwWYbskHBnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/HWHLS77lzdfs7adWCqJJxtEfI6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.26.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:1e:4e:74:2e:ad:65:9b:ad:39:7a:54:d6:bd:f0:9a:86:fe:
f7:a0:7a:8d:4c:a3:68:b9:c3:81:31:77:ba:6d:14:55:62:2b:
5b:e7:72:d8:e4:62:56:d4:2f:b5:23:9e:d0:6c:82:1d:77:19:
4a:f3:18:95:f7:19:8b:5e:48:ca:b5:2b:fd:47:44:03:80:da:
27:47:52:97:8a:16:05:7d:a2:8b:69:2b:9d:ce:bc:40:4e:c3:
87:93:e4:b0:fd:a5:82:ee:de:b9:14:33:66:df:f2:0f:3d:8c:
91:cb:c7:17:92:fd:61:ea:34:79:44:1d:ae:b8:0e:18:a6:09:
80:39:f7:13:76:d9:41:52:1f:c5:f8:c3:19:5a:09:83:e9:c1:
d8:d3:31:e0:94:09:af:8f:86:62:98:11:67:12:8d:6c:e7:87:
76:a5:40:fb:a1:e8:49:30:0e:7c:85:1b:c6:bc:b1:a5:f9:0f:
76:aa:b1:9e:80:3c:b0:a8:11:8f:ea:c2:24:dd:8a:2f:28:6c:
f9:d0:1e:32:9e:95:3b:5c:55:7d:0b:41:4c:5a:d9:97:6e:82:
2d:41:b9:ee:dc:a7:1c:02:d1:b6:93:c0:dc:fd:68:fd:e0:e5:
7d:49:43:48:b5:cf:7f:9d:b1:3f:4f:45:f7:c5:ff:3e:33:4e:
b7:13:d4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:56 2023 by rpki-client on console-ams.rpki-client.org