Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OJA8G4_hIOgFqxy8ut3XVqT24Dg.roa
File: OJA8G4_hIOgFqxy8ut3XVqT24Dg.roa (raw, json)
Hash identifier: lzwuHvilIC/GQ00Qa81vKjvOQWaEVBjpq9WVaXVYxo8=
Subject key identifier: 38:90:3C:1B:8F:E1:20:E8:05:AB:1C:BC:BA:DD:D7:56:A4:F6:E0:38
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0182B59F0CB67B0DDA09085073DF107E71A1
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OJA8G4_hIOgFqxy8ut3XVqT24Dg.roa
Signing time: Fri 19 Aug 2022 10:21:15 +0000
ROA not before: Fri 19 Aug 2022 10:21:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 193.233.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:9f:0c:b6:7b:0d:da:09:08:50:73:df:10:7e:71:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Aug 19 10:21:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38903c1b8fe120e805ab1cbcbaddd756a4f6e038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:d1:9e:70:95:e4:a6:77:86:52:7c:c0:37:
5f:37:a0:f0:c1:4e:5a:af:9e:06:a6:e4:be:db:86:
f7:2d:a5:a4:a1:a8:b6:bf:b6:d0:fa:14:4c:c6:03:
2b:97:f8:d2:52:e1:b0:26:1e:e0:1e:3f:00:5b:8d:
cb:5a:25:60:72:77:fa:03:e5:8e:62:4a:9b:93:4e:
1b:33:1a:58:db:f1:18:ce:5d:a0:57:86:85:82:ac:
b4:9e:57:55:2d:83:93:a0:c2:da:d8:ac:c8:b8:af:
2e:62:f9:11:c8:11:f5:ab:53:64:9e:4b:63:84:e6:
4d:84:2e:7a:97:dc:ae:25:49:04:ed:f8:91:fc:7f:
fe:d9:ed:3f:49:f2:37:a2:9c:0e:d7:c8:fe:1b:8c:
23:c9:4d:25:f2:d2:13:18:cb:0c:ab:44:9d:e6:7d:
82:3d:84:c2:18:0e:1f:5b:56:ca:2a:f5:ae:ec:23:
d0:52:1c:28:2e:45:de:93:c3:38:ba:a3:fe:dd:37:
22:87:5c:2e:fe:69:41:5b:0f:d1:2b:21:5e:3c:82:
62:18:e3:28:40:ad:5d:01:4b:a7:60:de:00:f9:93:
a9:1f:c0:60:18:02:22:69:5e:96:c1:9e:74:a7:70:
bb:d0:4b:cd:4d:7f:bb:40:84:b7:a3:a2:81:ee:2b:
bf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:90:3C:1B:8F:E1:20:E8:05:AB:1C:BC:BA:DD:D7:56:A4:F6:E0:38
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/OJA8G4_hIOgFqxy8ut3XVqT24Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.208.0/22
Signature Algorithm: sha256WithRSAEncryption
08:ee:58:d3:5a:07:1b:cf:10:63:2a:90:2a:8f:c2:6d:79:38:
de:81:fe:ae:e8:89:84:ae:bd:3a:5a:4c:e4:c5:6c:15:f9:07:
5a:38:c6:60:ee:8d:53:cd:8b:e6:88:92:24:7c:0a:06:ae:da:
ad:c9:fb:08:97:b6:9a:e0:25:69:49:ce:30:65:e9:b2:14:46:
cf:ab:a4:3e:5e:8e:90:78:fc:ab:0a:a7:f7:96:50:9e:98:41:
aa:8a:da:73:e3:53:41:0e:32:75:8c:1b:5a:95:46:d7:ec:f6:
c5:bc:e8:14:2a:56:58:2c:89:67:3d:8f:9e:da:45:c1:39:d2:
52:5b:99:8e:dd:f6:76:e7:3a:58:90:e2:2b:8b:90:f3:35:52:
65:be:a4:b4:23:c2:59:13:9b:c7:72:67:24:1b:5f:1c:cf:dc:
b7:1d:c9:03:cf:21:81:2f:3d:b7:5d:87:27:1d:9f:e0:df:32:
69:1b:64:35:41:6c:4f:46:36:7d:fe:d0:a1:30:40:47:99:ff:
f1:28:cc:d4:34:98:a5:2b:ef:90:48:56:45:49:08:54:71:32:
c2:cb:76:8c:6d:50:c0:45:dc:63:d3:ee:85:e6:1d:f7:52:d5:
14:bf:9b:e5:89:c7:9e:1b:48:90:6a:c9:f6:91:ec:49:00:86:
c2:48:19:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org