Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5596b0-a8a7-45b0-b245-0fe7a0ee6bd3/1/O33zjUhFQ2Dm0aj7nFn1E1YU8sE.roa
File: O33zjUhFQ2Dm0aj7nFn1E1YU8sE.roa (raw, json)
Hash identifier: ARy9mQ6NJn8fXcK7KwQIgk/Z6Yp/kyyr4ibxJ78Qyj0=
Subject key identifier: 3B:7D:F3:8D:48:45:43:60:E6:D1:A8:FB:9C:59:F5:13:56:14:F2:C1
Certificate issuer: /CN=eaf9788c995130d70eac46c06b226672d25d4185
Certificate serial: 01834086BF31A3C9A14F490B1FDA42369856
Authority key identifier: EA:F9:78:8C:99:51:30:D7:0E:AC:46:C0:6B:22:66:72:D2:5D:41:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6vl4jJlRMNcOrEbAayJmctJdQYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5596b0-a8a7-45b0-b245-0fe7a0ee6bd3/1/O33zjUhFQ2Dm0aj7nFn1E1YU8sE.roa
Signing time: Thu 15 Sep 2022 09:41:56 +0000
ROA not before: Thu 15 Sep 2022 09:41:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 185.49.68.0/22 maxlen: 22
2a01:9260::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:86:bf:31:a3:c9:a1:4f:49:0b:1f:da:42:36:98:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaf9788c995130d70eac46c06b226672d25d4185
Validity
Not Before: Sep 15 09:41:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b7df38d48454360e6d1a8fb9c59f5135614f2c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:6c:6f:29:0f:66:95:20:22:f2:a3:bb:cf:
48:b7:33:3a:df:d2:f7:63:2d:9c:1d:a8:01:2b:4f:
76:fa:65:2d:70:e9:40:7f:c2:e9:f5:ac:a0:e1:ac:
9f:ec:d9:50:11:0d:2b:f9:91:0a:4b:d7:0a:d7:65:
25:b4:83:d9:38:32:1b:b9:0e:54:d9:1f:de:74:11:
88:6f:cc:d6:65:d4:76:5a:c9:09:d8:1a:ec:91:2e:
ea:4d:8d:85:ca:76:ee:cf:d4:35:9a:11:3f:bb:39:
de:7d:02:28:f7:e8:38:6d:8a:50:0d:4b:09:53:16:
a4:a6:36:f2:08:18:21:a5:ee:59:70:fc:26:f3:d5:
ac:12:81:05:a6:a9:bd:1e:dc:93:60:43:93:f9:8e:
24:97:09:ad:4c:ba:08:a9:33:50:f0:f7:46:33:92:
ac:59:43:a4:93:53:6d:e6:17:3c:8e:c8:1c:91:15:
51:91:33:ea:ad:70:a1:86:ec:4f:00:75:43:ff:4a:
3d:df:27:24:21:44:4a:0a:be:4e:a9:50:18:48:06:
aa:2d:07:e2:e0:9a:aa:4f:0a:b0:e5:e8:5d:cc:5a:
56:34:72:ed:0f:c5:45:60:7c:b3:33:b7:37:d1:29:
83:14:72:78:de:23:ea:bc:75:d2:bc:66:a5:7c:e8:
e3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7D:F3:8D:48:45:43:60:E6:D1:A8:FB:9C:59:F5:13:56:14:F2:C1
X509v3 Authority Key Identifier:
keyid:EA:F9:78:8C:99:51:30:D7:0E:AC:46:C0:6B:22:66:72:D2:5D:41:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6vl4jJlRMNcOrEbAayJmctJdQYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5596b0-a8a7-45b0-b245-0fe7a0ee6bd3/1/O33zjUhFQ2Dm0aj7nFn1E1YU8sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5596b0-a8a7-45b0-b245-0fe7a0ee6bd3/1/6vl4jJlRMNcOrEbAayJmctJdQYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.68.0/22
IPv6:
2a01:9260::/32
Signature Algorithm: sha256WithRSAEncryption
06:a8:11:b6:c3:86:60:bd:52:f2:b8:07:35:3a:0d:36:1e:76:
97:e9:a2:a3:29:fa:89:d6:6b:26:b7:20:f7:6b:74:ce:0b:97:
79:c3:ed:36:1e:f6:e3:8b:ed:67:b2:ca:95:11:2b:13:9e:8b:
36:a5:7b:87:27:f1:0f:30:80:dd:75:e7:50:4f:26:ae:c5:b1:
1b:af:c7:b6:f8:59:15:fd:e3:77:80:e8:f8:2d:68:6b:bb:c3:
f6:4a:4a:01:f4:87:51:53:f8:47:09:ce:f9:f4:dd:f7:a7:17:
91:81:7f:1b:74:b0:c8:10:ff:48:71:1a:d5:27:6c:d1:d5:2c:
b2:8b:19:87:d0:3e:d9:f7:6e:26:40:13:7e:8b:02:96:48:d3:
3b:bd:22:dc:36:9b:de:aa:ad:3c:d9:30:83:63:9e:c5:3d:e0:
17:e9:21:1f:f6:c2:7a:81:d3:d2:75:ec:be:07:79:9c:ff:b8:
eb:f6:fe:f1:b7:05:c0:7a:18:2a:15:5a:b2:65:83:52:c8:88:
22:02:2d:9b:53:25:8d:ca:e2:88:18:82:f6:01:e0:0a:25:aa:
ba:5c:26:14:3a:b7:7b:f0:8b:82:84:cd:d7:45:71:75:df:c5:
eb:d0:34:02:c1:52:df:f2:bd:ca:ba:cf:b5:16:01:99:f5:80:
4b:ff:0f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:28 2024 by rpki-client on console-ams.rpki-client.org