Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OXQo16iesL-i7zunkcwiWbRfGbg.roa
File: OXQo16iesL-i7zunkcwiWbRfGbg.roa (raw, json)
Hash identifier: MB3ev5RulV69+R0KJdYnMy8SVQYAk7fOdIOh5kRGDAQ=
Subject key identifier: 39:74:28:D7:A8:9E:B0:BF:A2:EF:3B:A7:91:CC:22:59:B4:5F:19:B8
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CB2B72F
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OXQo16iesL-i7zunkcwiWbRfGbg.roa
Signing time: Thu 31 Mar 2022 07:37:27 +0000
ROA not before: Thu 31 Mar 2022 07:37:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 194.163.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213038895 (0xcb2b72f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 31 07:37:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=397428d7a89eb0bfa2ef3ba791cc2259b45f19b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:59:70:8d:c8:1b:82:74:7a:eb:38:6f:8f:33:
05:10:9e:0b:b5:ff:60:64:8a:77:cb:83:99:be:0d:
18:85:1b:19:c3:62:ae:9e:fe:07:8f:90:d0:96:4a:
76:a7:e5:c4:b6:39:ef:fe:43:69:b8:75:54:bc:de:
b0:f3:42:aa:5d:5a:b6:fc:fd:01:7c:86:f1:f2:b7:
dc:1d:57:24:6e:97:16:b0:f8:62:b1:82:85:a3:9c:
ae:bd:51:cd:ec:72:f0:a1:d8:27:f0:13:ab:33:e9:
83:90:dd:58:72:4c:be:91:5b:b7:09:40:f7:2d:31:
83:00:ca:49:42:6d:b5:61:83:4a:ce:bf:00:76:08:
94:2a:93:7f:a0:e6:ed:c6:7f:7f:77:34:70:2f:39:
84:af:a6:ea:71:d8:58:6f:b3:53:00:a7:15:2a:90:
e3:0f:72:5d:d8:c0:5e:0c:a4:b6:6a:8c:90:44:26:
af:dd:2b:23:bc:fb:d5:b4:2e:1a:67:11:d9:d4:ff:
60:e4:4d:45:6c:e0:ca:85:f4:bd:f2:c4:ba:d4:05:
90:54:0c:02:28:b2:cd:bb:09:82:81:65:55:e5:5e:
1a:8b:97:6f:53:7c:48:c5:95:c1:e9:42:70:1e:0f:
0e:2f:c1:de:31:22:a5:28:ac:6c:a7:a1:9d:72:78:
7a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:74:28:D7:A8:9E:B0:BF:A2:EF:3B:A7:91:CC:22:59:B4:5F:19:B8
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/OXQo16iesL-i7zunkcwiWbRfGbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
73:13:18:79:bc:68:92:6a:10:54:61:77:26:42:e5:79:01:2e:
5c:5c:aa:f7:26:01:94:e1:1e:a4:8b:b7:eb:d1:87:65:35:00:
29:f4:25:64:0e:bf:30:87:22:bc:cc:c4:07:2a:49:3a:81:4d:
fa:c0:3d:e1:61:95:6d:fc:f4:b3:f2:b0:f9:00:63:2a:aa:e1:
8b:ad:d2:b4:8c:3b:b4:90:ab:9f:63:d3:9b:cf:ce:01:a4:fe:
40:86:4c:c0:16:d4:2c:cd:25:28:90:b0:e7:97:e8:39:01:a3:
bd:f1:62:d2:13:a5:7e:0b:87:39:e7:d9:0c:84:de:a3:de:d0:
14:d1:a0:83:eb:db:50:a6:f5:54:39:60:ec:1c:09:ff:3d:a0:
6b:db:b4:70:1e:79:d2:23:34:8e:b2:eb:8f:9f:f4:2a:96:8a:
3c:ac:cc:80:0f:2a:81:92:2b:41:47:65:be:96:9f:9e:88:99:
e3:4b:cd:cb:b5:86:09:54:ea:1c:d3:d9:13:2b:b5:78:04:d9:
90:dd:9c:f2:26:80:92:c7:46:18:37:fa:8e:41:28:fe:14:2c:
ff:17:34:f2:ac:0e:64:54:f4:c3:ac:63:61:10:ce:ee:7d:38:
7f:1f:84:47:d0:c2:60:4b:b8:00:c3:d4:b9:52:97:bd:33:3c:
56:18:86:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org