Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/0odCTj-NckwADeKn-of8FDCsQQ0.roa
File: 0odCTj-NckwADeKn-of8FDCsQQ0.roa (raw, json)
Hash identifier: R69mFAIi8cXXS+ahhKQYErUcIfx7hjWTaOGl18ua2z4=
Subject key identifier: D2:87:42:4E:3F:8D:72:4C:00:0D:E2:A7:FA:87:FC:14:30:AC:41:0D
Certificate issuer: /CN=49596cecc21dd02677a727ef37f0689546ea5097
Certificate serial: 192B0F3B
Authority key identifier: 49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/0odCTj-NckwADeKn-of8FDCsQQ0.roa
Signing time: Sat 01 Jan 2022 06:02:54 +0000
ROA not before: Sat 01 Jan 2022 06:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 83.118.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422252347 (0x192b0f3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49596cecc21dd02677a727ef37f0689546ea5097
Validity
Not Before: Jan 1 06:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d287424e3f8d724c000de2a7fa87fc1430ac410d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:e9:17:f2:cb:ed:52:21:0c:45:90:c5:53:
ae:d6:9d:23:8c:1c:90:94:0f:d0:28:0a:04:e3:82:
e7:95:95:00:40:4d:5b:b8:e6:9c:36:d1:d3:e9:9b:
cd:dd:7e:c6:ce:6b:ed:02:6d:c0:b7:96:33:bf:aa:
1e:e5:f8:1b:8a:c6:64:6a:73:f0:a0:79:1c:ee:db:
fd:93:4b:9f:6d:1c:24:c2:cb:93:6f:bc:d0:f3:aa:
9c:c0:31:0f:ed:39:cf:79:fd:9d:5e:ec:63:9b:0f:
5f:10:f8:ab:10:d9:6f:b3:06:6b:04:86:14:bf:d9:
8f:9f:50:bc:d7:3d:63:3b:21:f5:0c:20:82:b1:64:
91:f3:2d:db:26:c3:6e:0f:d8:24:73:4f:42:b3:b2:
61:6f:8a:5e:f8:f4:72:4f:f1:75:f8:38:4c:a2:d3:
1a:83:81:22:09:31:32:09:ee:b4:5d:a2:af:34:1d:
2a:d5:cf:8b:b2:73:24:bf:b9:be:ea:90:b0:71:df:
cd:09:6e:ff:0b:41:f8:92:9b:8e:81:b2:47:65:05:
60:e1:3f:51:d7:7a:42:d3:9e:0f:25:03:20:13:a8:
2c:91:13:4a:ca:48:9b:85:fa:85:c2:2e:0e:29:48:
3b:88:d1:d4:5c:ad:b4:64:23:03:b3:cb:7c:bc:9f:
d1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:87:42:4E:3F:8D:72:4C:00:0D:E2:A7:FA:87:FC:14:30:AC:41:0D
X509v3 Authority Key Identifier:
keyid:49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/0odCTj-NckwADeKn-of8FDCsQQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.224.0/22
Signature Algorithm: sha256WithRSAEncryption
62:29:4f:64:f0:10:f0:16:32:17:07:8d:4e:c7:09:c8:cd:b7:
c6:cf:1c:a0:14:32:fa:70:93:3d:75:89:06:d7:7c:4f:f1:44:
43:c8:dd:dd:fd:de:b2:b8:18:3e:a9:a8:c6:a9:4a:d3:4d:85:
9e:8e:37:86:1c:15:b5:72:57:c5:3d:aa:a9:a0:ad:35:91:56:
a8:6c:1a:61:3f:fb:f9:11:ce:b9:3b:a8:b0:43:46:27:81:9f:
dd:8e:9b:d4:ed:18:11:65:cb:4e:3a:eb:7a:ab:f7:25:67:be:
6b:81:1b:b3:09:26:7c:5a:01:4e:af:60:f9:7c:d3:41:db:00:
ce:4a:63:db:65:73:00:0f:3e:df:cf:1e:6a:bb:7d:79:04:57:
29:4d:c3:22:d4:3b:57:05:00:6e:ae:40:cc:57:43:99:38:d8:
c0:17:0f:72:a5:5c:da:5b:fb:c9:e0:29:0a:80:e1:16:12:d7:
dd:23:93:6a:69:53:6c:15:ff:ea:0e:cc:c8:62:c8:e6:56:fd:
79:27:5b:71:86:ef:48:f9:68:24:0f:cf:f4:81:63:0d:14:87:
f3:3a:06:4b:6a:75:a6:0b:af:9d:28:db:39:4c:3d:43:3d:f3:
75:eb:4c:de:d5:12:77:2e:7f:15:f0:94:3e:2b:9e:85:15:1a:
f9:bd:37:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:07 2024 by rpki-client on console-fra.rpki-client.org