Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/ODQDeFDhiQXEcLTf9wGt04Ho1pM.roa
File: ODQDeFDhiQXEcLTf9wGt04Ho1pM.roa (raw, json)
Hash identifier: jbla4HBMWca49Ho3wXrNyEDHrYBUmLjl8gAhZer15Uc=
Subject key identifier: 38:34:03:78:50:E1:89:05:C4:70:B4:DF:F7:01:AD:D3:81:E8:D6:93
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 018265F3F78ADCE9A02E72A0AC8B8FBF438E
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/ODQDeFDhiQXEcLTf9wGt04Ho1pM.roa
Signing time: Wed 03 Aug 2022 23:04:23 +0000
ROA not before: Wed 03 Aug 2022 23:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42338
IP address blocks: 185.203.32.0/24 maxlen: 24
185.203.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:65:f3:f7:8a:dc:e9:a0:2e:72:a0:ac:8b:8f:bf:43:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Aug 3 23:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3834037850e18905c470b4dff701add381e8d693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e4:26:f0:96:a3:eb:a0:54:01:12:82:45:cb:
00:8d:6d:93:47:3a:a6:d3:dd:bd:88:28:e4:bc:ba:
d5:70:2e:c9:b5:6e:76:8a:d8:4f:e9:cc:c8:6f:17:
3d:e7:db:15:f6:7f:f7:0c:1b:c1:33:2d:85:5a:28:
d2:df:63:bc:ba:51:33:c1:0d:e5:b8:98:3f:18:2f:
6e:f4:f5:ee:8d:b8:3e:00:d8:07:3d:08:86:e8:bb:
89:9f:d3:b6:93:ed:5c:a8:71:1a:d3:ea:36:62:71:
23:67:97:40:a4:ba:4e:ce:ad:93:9e:28:69:1f:3a:
d7:e6:ba:06:ac:af:b8:22:51:11:8e:75:be:5a:3a:
9f:a3:4d:08:62:69:7c:bf:01:f4:f9:a7:08:c6:3c:
fa:e9:1b:fe:52:ad:37:43:3b:53:e4:b8:8c:5b:64:
02:fc:c6:d2:9f:24:d7:41:6b:fb:d3:d1:db:af:50:
5d:7d:98:54:d8:06:b3:c3:5a:2c:b1:55:9f:e6:2a:
85:8a:73:8a:54:4a:3d:ee:b8:f2:b4:59:1b:05:25:
cf:50:03:a9:5f:b7:5a:51:55:9d:23:cd:f4:68:0d:
70:96:9c:f6:60:53:58:ad:3e:26:ca:68:92:1c:c5:
26:3d:6a:e0:a3:0e:d1:c6:9a:6c:05:dc:6d:4c:b4:
2c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:34:03:78:50:E1:89:05:C4:70:B4:DF:F7:01:AD:D3:81:E8:D6:93
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/ODQDeFDhiQXEcLTf9wGt04Ho1pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.32.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:cf:57:68:0b:f1:a9:d7:e7:4e:c4:6b:9a:5f:bf:53:f7:3e:
6c:ee:08:09:df:41:c7:ae:58:84:a5:36:88:0f:8e:77:33:a2:
54:0f:9f:0f:45:fa:b0:cc:d8:9f:d9:63:76:28:9a:f1:1a:a3:
a0:b4:e1:b4:13:6a:c4:a6:00:d2:ac:bb:38:d6:c2:21:6b:47:
7b:2f:61:0f:a2:43:57:1a:77:f1:6a:10:17:9f:c1:9f:ea:65:
58:d3:d9:9c:1c:ef:21:0d:1a:75:0e:81:d4:b7:59:99:10:46:
9c:ce:5f:3b:17:a4:fe:5d:6d:2f:38:0f:bb:e4:2e:35:f5:32:
7f:30:35:19:c7:82:69:40:b8:7b:e1:6f:d8:d5:cd:a2:22:8e:
ad:0a:cf:83:b9:8e:a1:01:d4:70:27:21:9d:0b:c7:5b:38:33:
8f:fc:32:69:49:f5:47:25:00:4d:bb:aa:36:00:6b:05:3c:29:
63:5d:c5:d6:69:19:3b:36:6f:38:c8:37:8d:5e:68:44:a7:53:
23:c5:28:63:30:be:89:5a:33:61:2a:b5:42:1e:39:36:44:0a:
87:6e:2c:03:e1:9c:8a:a7:df:69:8e:6e:17:8d:b9:04:e4:0a:
65:8b:d0:9e:a4:95:12:d9:72:4f:14:51:83:79:47:09:dc:bf:
c6:15:cc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:57 2023 by rpki-client on console-fra.rpki-client.org