Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0KtQAO6mbafHXCyvnDqqOqk_vI4.roa
File: 0KtQAO6mbafHXCyvnDqqOqk_vI4.roa (raw, json)
Hash identifier: MJmfDFCY8/+kVg88O/WUCJjAHfy1jAqX3AxlwdU77L4=
Subject key identifier: D0:AB:50:00:EE:A6:6D:A7:C7:5C:2C:AF:9C:3A:AA:3A:A9:3F:BC:8E
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F91007
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0KtQAO6mbafHXCyvnDqqOqk_vI4.roa
Signing time: Thu 28 Apr 2022 12:18:15 +0000
ROA not before: Thu 28 Apr 2022 12:18:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198576
IP address blocks: 84.242.132.0/24 maxlen: 24
212.95.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939069447 (0x37f91007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:18:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0ab5000eea66da7c75c2caf9c3aaa3aa93fbc8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:27:73:ed:da:9b:a3:cd:20:eb:7f:c9:1b:c9:
20:fd:d6:44:0b:70:02:40:34:c4:24:4a:1b:c2:ef:
65:b9:ea:65:72:a3:a7:2b:94:9e:63:ba:df:c6:6a:
72:18:4d:d3:ab:df:f1:47:3e:98:9d:db:56:ae:7b:
98:a5:96:91:3e:b2:e9:98:b4:50:8b:12:b8:16:0b:
e0:a5:c3:dd:b3:d6:13:3e:dc:fe:46:de:e3:88:f7:
3c:cc:8a:18:a8:0e:20:dc:b1:10:56:d7:83:34:65:
a1:6f:a3:cf:e9:f7:5f:a9:4f:a7:e4:6a:8f:73:f8:
74:b6:e5:4e:1e:1e:09:65:5f:3d:85:91:e9:a2:0c:
4e:7a:0c:2d:ab:9f:f5:0d:1c:40:6e:c0:b8:7f:32:
d1:76:d5:90:34:de:23:b1:48:7d:e0:be:dd:21:2b:
65:6b:46:22:73:f4:f0:f8:67:f0:03:c9:f4:ff:44:
18:d2:22:fd:9a:1f:64:6a:e9:2b:1a:c2:14:2d:65:
93:f4:64:a0:b5:0e:a0:32:a7:c0:99:7c:3e:a5:4c:
ac:f1:91:14:17:9e:5f:4f:ed:ab:6f:7d:2c:02:f4:
f6:39:a9:8c:2d:f1:99:51:04:cc:9e:d9:76:91:03:
e3:68:9f:46:8f:8b:fa:d3:a9:a0:ad:84:22:dc:2a:
f2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AB:50:00:EE:A6:6D:A7:C7:5C:2C:AF:9C:3A:AA:3A:A9:3F:BC:8E
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/0KtQAO6mbafHXCyvnDqqOqk_vI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.242.132.0/24
212.95.175.0/24
Signature Algorithm: sha256WithRSAEncryption
81:2e:78:c2:f5:dd:8b:c1:10:98:e4:a6:c9:5e:29:da:c7:30:
69:9c:c8:cd:ea:b6:7b:8d:fe:d2:84:27:d0:97:5e:86:48:71:
07:da:a4:72:bd:d9:50:dd:b0:e8:3d:07:74:a8:c0:64:89:9f:
de:1c:21:10:31:6a:e5:3f:6b:0d:28:b9:48:f9:ec:c1:5f:fa:
2f:e2:66:f9:b8:86:ba:6e:9d:d9:4d:79:69:91:e9:4d:b9:06:
d5:48:39:e6:6b:79:81:c9:cd:bb:a2:80:5f:5b:1d:22:99:b7:
38:ad:f6:64:c7:e5:a2:63:01:42:7f:a6:9d:1d:d3:c3:27:fc:
cb:ff:9a:47:22:36:bc:25:95:84:65:dd:c2:d2:0a:7c:11:e3:
7e:82:1c:bd:b7:10:13:0a:bd:12:65:09:13:18:4c:ea:76:36:
5c:f1:29:4f:f8:c5:be:ff:ad:2d:f7:8e:d0:2d:57:bd:5e:e8:
b9:7d:d9:f7:ef:ec:0f:50:8c:e7:d3:e1:7e:ce:a0:4a:8a:99:
ed:62:f3:a1:c0:7a:37:a5:53:cf:fe:da:02:26:a8:6a:b1:a5:
9e:f4:a1:28:e5:3c:76:8f:51:45:9e:ac:bb:43:71:2d:b1:da:
cc:d6:ea:72:1c:25:b7:f6:8d:f1:23:5c:41:15:40:34:6f:c4:
e7:d2:9f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-ams.rpki-client.org