Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OHqh-mPv-JaxmeNuv8vfy9NOY5M.roa
File: OHqh-mPv-JaxmeNuv8vfy9NOY5M.roa (raw, json)
Hash identifier: h8p0HWXzdhdkmiZzt/cfGYp1hcphp7FX5cB69p95r+o=
Subject key identifier: 38:7A:A1:FA:63:EF:F8:96:B1:99:E3:6E:BF:CB:DF:CB:D3:4E:63:93
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CA54CE0
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OHqh-mPv-JaxmeNuv8vfy9NOY5M.roa
Signing time: Fri 25 Mar 2022 07:11:07 +0000
ROA not before: Fri 25 Mar 2022 07:11:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 194.233.146.0/24 maxlen: 24
194.163.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212159712 (0xca54ce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 25 07:11:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=387aa1fa63eff896b199e36ebfcbdfcbd34e6393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:7a:93:01:0c:88:dd:ef:6a:b4:eb:cd:c5:
89:dd:0b:1a:ef:61:0a:9e:bb:af:25:00:26:54:5d:
32:fa:41:84:5c:e3:91:9f:97:b6:71:d3:31:6c:46:
2e:0c:61:e7:64:e2:df:29:b0:9f:b9:3a:98:ae:85:
db:17:d4:06:00:d6:6f:18:e1:49:b8:51:d9:18:78:
3b:50:2a:19:9d:83:37:ad:64:75:f3:23:03:03:1c:
13:ea:40:92:d2:f1:06:ab:fe:46:58:22:2a:9e:9e:
a6:89:f7:7f:bf:63:dd:62:8c:a4:2e:50:e1:15:d9:
11:b2:d5:19:c0:ee:73:fe:7e:be:b4:a4:fc:b4:fe:
fc:94:37:10:04:e5:45:35:22:f2:47:85:f2:62:e5:
33:b5:4c:33:5a:cc:b1:09:c1:51:dd:e0:c8:ba:d7:
ef:48:de:29:e4:5e:06:3b:10:38:94:a8:db:6e:5a:
68:44:a5:6f:cf:32:3e:2a:a2:c3:97:6c:2a:8f:24:
25:4b:e4:9a:84:29:fd:b4:d6:9f:ff:49:fa:68:f1:
6f:8c:05:f4:8c:de:4f:d9:c4:ff:d0:62:8a:fd:de:
80:2a:84:c3:8b:c0:52:fe:f9:b6:32:6f:d3:33:e0:
1d:e4:0f:a7:f8:41:a6:d8:45:8f:94:a0:7d:ab:d6:
70:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7A:A1:FA:63:EF:F8:96:B1:99:E3:6E:BF:CB:DF:CB:D3:4E:63:93
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OHqh-mPv-JaxmeNuv8vfy9NOY5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.91.0/24
194.233.146.0/24
Signature Algorithm: sha256WithRSAEncryption
49:65:4d:8a:49:e5:9a:91:9a:eb:31:71:0c:0c:0e:79:de:2e:
4e:76:7d:6d:6e:24:ed:ae:17:83:13:af:16:eb:1e:5b:22:bb:
e0:ed:50:2f:14:9b:0a:e4:25:2f:3b:9d:66:fb:c1:8b:a1:56:
45:2e:9d:86:0a:a6:89:ad:3e:29:06:5a:67:77:74:8a:76:dd:
9d:6a:ab:62:64:0c:8a:e0:6c:b2:2d:ee:b3:2d:43:34:3e:a1:
ce:6f:12:28:0b:ac:95:3e:fd:c0:1a:59:49:b8:4b:8f:09:8e:
62:62:7e:f9:16:47:5b:c4:d2:99:59:81:a4:b9:9f:13:96:f5:
c7:e6:fe:fc:78:08:ae:7d:ef:70:d7:25:26:4e:c2:d7:d9:35:
0e:80:c0:fa:b9:c7:51:f9:a2:b5:df:4b:66:ed:7b:82:fe:29:
24:a7:65:7b:f6:f3:ca:b4:12:e0:d0:ca:32:20:f1:af:55:12:
07:e0:30:a2:05:ed:86:2e:96:3e:36:88:f0:80:13:52:06:61:
d8:03:4d:2b:d3:53:35:ae:c0:be:d2:d2:8a:96:62:98:28:76:
2c:af:79:bb:0e:71:df:26:da:31:e7:eb:7c:ed:1f:b1:9a:5f:
ce:27:f1:6b:03:24:60:84:22:b5:e6:22:a2:49:a3:23:8f:a5:
0b:d2:ff:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org