Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/oG4oHfvOHPcZ1vFq-_lVelojMgk.roa
File: oG4oHfvOHPcZ1vFq-_lVelojMgk.roa (raw, json)
Hash identifier: o+97dzab5LNFYr9rXskZ+TKC0UKnAI2EGaUmL1/9BuI=
Subject key identifier: A0:6E:28:1D:FB:CE:1C:F7:19:D6:F1:6A:FB:F9:55:7A:5A:23:32:09
Certificate issuer: /CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Certificate serial: 0873491B
Authority key identifier: 38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/oG4oHfvOHPcZ1vFq-_lVelojMgk.roa
Signing time: Mon 17 Jan 2022 02:32:27 +0000
ROA not before: Mon 17 Jan 2022 02:32:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54574
IP address blocks: 45.88.192.0/22 maxlen: 32
2a07:aec0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141773083 (0x873491b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Validity
Not Before: Jan 17 02:32:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a06e281dfbce1cf719d6f16afbf9557a5a233209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:12:cb:e8:ed:59:a1:1b:ca:6b:a2:89:81:53:
fe:66:07:c7:6e:8d:7c:79:84:69:e3:60:c0:b2:78:
72:ab:9a:3e:a0:a2:71:93:1a:c0:b8:58:5f:04:82:
53:08:ac:2f:cb:06:ab:0b:e1:18:f5:1f:ec:4b:d2:
62:9f:44:b8:60:90:ef:4b:b0:fc:a8:2e:db:99:9e:
d5:91:a5:5d:e4:93:01:9d:92:a6:0e:2a:28:23:0a:
68:2d:f1:ac:98:db:3d:4f:56:b5:c2:a8:f8:16:6f:
59:c3:44:f6:6c:59:2e:a7:3e:45:e9:75:a0:60:50:
62:ed:2a:b8:26:87:13:17:da:7f:77:03:3c:26:fb:
a9:3a:93:65:c4:10:64:15:2d:c1:6f:dc:dd:0b:89:
57:4b:5f:18:a3:dd:76:20:ec:42:fd:76:2a:a6:52:
c9:de:dc:c2:3d:94:4f:12:37:92:41:fb:75:7b:40:
16:88:8b:b3:cb:1d:71:4e:7b:b7:0f:df:3e:b8:34:
7a:11:3a:79:90:66:85:77:4c:20:df:4c:01:73:5d:
0a:4a:ed:0d:96:72:c3:b3:a7:12:ff:c3:4e:d7:92:
5b:f1:d7:56:ed:3c:dd:56:1e:74:13:d0:dc:cc:e4:
84:87:ec:0f:40:00:36:39:92:bb:c0:c7:db:e2:96:
a1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6E:28:1D:FB:CE:1C:F7:19:D6:F1:6A:FB:F9:55:7A:5A:23:32:09
X509v3 Authority Key Identifier:
keyid:38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/oG4oHfvOHPcZ1vFq-_lVelojMgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/OL1tjruCQE1XCTUbwjKaDuQ6mkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.192.0/22
IPv6:
2a07:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
5b:aa:8f:30:4b:f8:c6:59:b5:dc:fc:6f:8b:a8:29:32:74:42:
00:1f:6e:ec:88:44:d6:52:55:fb:5c:03:21:12:36:f2:4e:19:
8b:b7:6b:4c:e6:49:6a:2e:14:c9:a2:2b:19:4e:3c:86:2a:12:
7a:7f:d5:57:2c:dd:cc:d6:85:76:e6:51:7d:fc:15:14:c3:f1:
70:58:b5:8d:ca:65:58:37:72:72:cd:a3:5f:22:9f:92:6f:45:
c2:7b:94:1f:3e:de:78:30:0d:9d:38:de:d2:8a:05:7c:28:26:
39:28:94:93:36:17:14:eb:3b:ab:fa:e5:77:b1:34:a0:10:92:
e3:4d:6e:26:0c:d4:2e:40:ba:68:ae:aa:ff:b4:62:33:e1:10:
9b:fe:21:89:ca:2e:cb:62:3f:ff:e7:5c:60:ec:e3:12:bb:c8:
5f:8a:26:c9:72:67:fe:8f:e0:2f:43:1c:2a:0c:af:ba:7c:28:
ee:b5:39:23:4d:9b:0f:3f:1a:7c:b8:bf:05:e5:8b:41:31:4b:
d9:2b:43:77:71:86:8d:10:27:09:ed:be:6b:e4:c4:67:24:7c:
3e:bc:6a:7e:f1:47:d4:8f:bf:c8:69:2f:cf:9d:af:7f:44:fa:
d1:f5:69:e6:a9:28:04:72:d2:21:2c:b7:29:8c:5c:a7:3c:39:
5f:57:87:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:10 2023 by rpki-client on console-fra.rpki-client.org