Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/O3XVoxcX7RUFtt-cd67PoSEx7xE.roa
File: O3XVoxcX7RUFtt-cd67PoSEx7xE.roa (raw, json)
Hash identifier: Otm+6w2N4ngCRoITdWq/O/5TevzdmRr2lTEBY4JZfOc=
Subject key identifier: 3B:75:D5:A3:17:17:ED:15:05:B6:DF:9C:77:AE:CF:A1:21:31:EF:11
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D49FC0A
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/O3XVoxcX7RUFtt-cd67PoSEx7xE.roa
Signing time: Tue 17 May 2022 09:06:29 +0000
ROA not before: Tue 17 May 2022 09:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.163.68.0/24 maxlen: 24
194.233.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222952458 (0xd49fc0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 17 09:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b75d5a31717ed1505b6df9c77aecfa12131ef11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:17:b0:2a:94:7f:60:ad:50:93:34:bd:39:b9:
22:6a:87:7e:0c:93:4b:c1:db:6a:09:8d:4e:0c:58:
95:26:84:cf:0a:ef:9d:7f:a0:27:94:1c:ae:83:9b:
a6:45:f0:6d:81:cd:a5:c7:8b:50:97:13:e7:fd:e8:
db:91:91:b1:63:f3:40:de:d2:ce:0c:44:72:50:4d:
03:84:e4:13:c7:bf:12:ee:e0:93:10:93:95:2f:44:
6b:67:54:7d:1a:65:c5:99:46:02:61:f7:98:3e:10:
f3:2a:50:a5:f6:7b:41:60:28:60:68:c6:50:43:4f:
c6:2b:f2:6d:06:82:14:6e:65:b7:c2:a4:f0:4b:5c:
40:56:00:d2:9c:d1:bc:12:31:4f:dd:15:71:06:df:
7a:83:3c:bd:fb:5d:3b:c2:94:ac:e5:8e:17:aa:0a:
5d:c7:59:08:d1:e9:3f:dd:7f:b5:b1:a6:0c:ed:ee:
b7:77:e6:7d:87:07:d4:4e:aa:94:64:c9:f3:4c:a9:
a6:25:da:83:6e:bc:bf:b4:b9:bd:41:f4:d4:6c:40:
17:4d:6f:76:fd:2f:a5:75:21:1c:f5:1e:1b:72:de:
13:43:28:cc:cf:b8:e5:5f:55:df:8e:66:3e:94:30:
ef:65:9d:0c:cf:1d:62:c7:78:8a:d4:7e:b1:45:0d:
e8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:75:D5:A3:17:17:ED:15:05:B6:DF:9C:77:AE:CF:A1:21:31:EF:11
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/O3XVoxcX7RUFtt-cd67PoSEx7xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.68.0/24
194.233.150.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:58:df:e7:e5:6a:f6:e2:ea:72:8f:a6:b1:43:46:d4:05:7c:
6e:97:fc:4c:e4:fe:82:b7:5b:20:80:4e:82:c8:ae:e7:57:67:
96:5f:94:e4:9d:8b:3a:0b:d2:5b:42:c4:5d:4a:81:85:72:c5:
8e:67:2e:d1:a9:fe:01:d0:24:2a:50:6d:70:4c:bd:0d:35:c2:
eb:fe:6b:37:58:f7:38:d2:05:9e:c8:e3:22:5f:fa:e6:99:c5:
40:45:99:49:b4:7e:69:5e:69:90:56:1f:76:fc:1b:4a:60:92:
fd:8e:34:a2:3d:fa:3f:b4:59:09:8d:fe:c0:d3:89:3b:c4:57:
aa:ec:50:da:4c:23:35:19:f2:42:b3:97:df:52:34:3d:7e:de:
c8:fd:a2:9f:c4:67:f0:f6:b5:8c:e4:67:44:81:db:11:f6:67:
c2:1a:e3:54:79:24:05:d4:e0:01:7c:2a:54:94:11:f9:de:aa:
8d:b5:82:44:6c:8a:a9:33:f4:f5:c4:e0:32:16:0e:07:a1:63:
53:00:c1:94:e3:f0:e6:2c:d8:81:c4:b0:ea:47:ea:3c:04:10:
50:25:ef:6d:a3:6d:ef:95:11:fb:57:d6:ed:ed:39:60:a9:8c:
c4:23:a6:fe:4a:d3:64:5d:6e:d7:de:5e:c2:4e:60:10:47:6e:
0c:26:78:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org