Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/OQYUfbwllI-DiL5IyzQb9YlGOaM.roa
File: OQYUfbwllI-DiL5IyzQb9YlGOaM.roa (raw, json)
Hash identifier: YIzHV9BvD1mn8rvzOhUx/TN8bl7YCO8QvMUJjxUsKtA=
Subject key identifier: 39:06:14:7D:BC:25:94:8F:83:88:BE:48:CB:34:1B:F5:89:46:39:A3
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CB648EB
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/OQYUfbwllI-DiL5IyzQb9YlGOaM.roa
Signing time: Sat 01 Jan 2022 04:59:45 +0000
ROA not before: Sat 01 Jan 2022 04:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202162
IP address blocks: 85.232.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 750143723 (0x2cb648eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3906147dbc25948f8388be48cb341bf5894639a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:20:9b:ba:8a:15:5a:6f:77:70:58:8a:c3:07:
fb:df:1a:db:a8:a3:7e:25:e0:80:90:c7:7e:ef:23:
6c:4b:dd:62:75:4d:d4:62:60:ee:10:6b:90:69:45:
6d:c3:2a:d5:73:86:25:db:6a:0b:f4:9b:d8:22:29:
32:1a:cb:46:ed:ac:de:8e:e0:aa:31:57:00:fc:1d:
7f:68:17:44:be:cc:27:88:68:43:bb:64:bb:ba:bc:
6b:d4:2a:92:53:51:0c:ae:0f:5b:e0:d3:f8:2f:ce:
aa:65:b7:e2:d2:9b:f5:b5:7f:1d:95:d3:c6:3a:8f:
1d:8d:0c:de:c5:19:24:86:57:26:63:ef:e1:13:b1:
9e:f3:6e:fa:65:cc:91:a5:e3:03:74:03:1c:c7:af:
b7:3a:99:54:8a:a1:14:d6:e8:33:11:84:a2:4d:c7:
ef:55:9c:cf:1e:38:e3:aa:36:21:09:0b:2e:87:a9:
3a:19:3f:40:71:a7:a8:c5:40:81:2e:e5:22:71:8a:
a2:a7:cf:ef:6d:c9:bd:c4:65:8c:6f:27:20:2f:4b:
a0:9f:52:84:6d:8d:71:c2:df:12:c3:c1:2c:4f:a1:
89:4b:1f:52:a4:8a:d6:69:69:47:17:a5:ff:99:9e:
0c:8f:49:13:cf:92:8f:04:7b:9d:35:78:b1:5a:b1:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:06:14:7D:BC:25:94:8F:83:88:BE:48:CB:34:1B:F5:89:46:39:A3
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/OQYUfbwllI-DiL5IyzQb9YlGOaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.236.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0e:65:07:34:a2:2c:6e:5b:a1:45:a0:f2:09:87:7c:bc:9a:
f6:55:e1:04:dd:4b:47:ff:c8:90:bd:c2:f8:0b:a3:dc:d6:0d:
66:37:08:b1:ba:9d:ff:25:82:39:cc:29:8f:84:9f:6a:8a:e7:
17:ec:0a:78:da:70:87:8a:e1:20:cd:58:f1:02:8f:d6:50:06:
42:29:25:1a:70:0f:55:a7:99:d9:e3:79:73:05:81:50:e2:e3:
4b:40:62:42:99:f7:84:97:86:10:89:ab:3d:4e:cb:42:13:9f:
02:f2:96:a1:64:7c:f5:96:e3:1d:ce:64:44:8c:97:29:72:cb:
74:41:22:42:e9:6b:1f:a9:6c:74:50:56:9b:2e:c2:d5:ea:e2:
ce:fb:fe:69:78:a6:10:8e:fc:2a:30:79:6e:c0:f1:34:91:69:
b7:f2:46:bc:29:99:2c:dd:be:e6:66:8b:79:6b:4a:80:b7:13:
aa:4d:37:f2:19:d8:62:a9:ac:ed:af:67:bb:4e:05:3a:6c:3b:
ca:89:5f:63:3e:dc:5b:56:2b:fb:a6:8e:7f:53:8e:36:f8:94:
47:09:75:49:48:66:c6:aa:51:05:64:2e:62:a3:29:27:ca:aa:
74:2b:3e:17:1d:7d:03:52:7d:74:81:7c:d9:72:00:84:13:b3:
04:da:d5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:29 2025 by rpki-client