Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/O-clB7mwReOgdAmfLaEOgAWNKHo.roa
File: O-clB7mwReOgdAmfLaEOgAWNKHo.roa (raw, json)
Hash identifier: bDPmKSjKDOm8fMSMOsNNL8fDUkR6kRB8wiBXShaGrr0=
Subject key identifier: 3B:E7:25:07:B9:B0:45:E3:A0:74:09:9F:2D:A1:0E:80:05:8D:28:7A
Certificate issuer: /CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Certificate serial: 03AD474F
Authority key identifier: 99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/O-clB7mwReOgdAmfLaEOgAWNKHo.roa
Signing time: Sat 01 Jan 2022 12:58:20 +0000
ROA not before: Sat 01 Jan 2022 12:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44072
IP address blocks: 185.178.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61687631 (0x3ad474f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9917f777e71ac34122edb35edd60cf14d75b9ef6
Validity
Not Before: Jan 1 12:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3be72507b9b045e3a074099f2da10e80058d287a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cc:32:93:99:5b:e5:15:61:58:4c:d2:1b:ba:
f4:6b:e9:a5:b2:7d:73:cf:ef:bb:e5:4e:a0:b8:2b:
b8:99:3c:c3:73:4d:8e:f9:3c:f9:2a:af:07:ca:84:
92:6e:80:eb:fd:3e:cd:87:d3:65:bb:c3:3e:4c:21:
ef:1e:05:89:30:e6:fd:47:84:f1:64:16:d7:4a:28:
9a:15:fd:09:a5:b2:54:03:fb:bb:bd:e6:4e:11:b1:
9f:23:bf:87:7e:e5:f9:a3:1d:70:bb:67:60:2f:fa:
58:be:70:17:f0:44:7a:47:19:91:5c:5e:14:9a:f7:
86:26:4b:d1:5b:cd:d6:2a:51:fe:80:00:bc:4b:32:
33:6a:2d:00:7d:2c:6c:3c:16:3d:33:ce:a7:62:51:
06:4d:6b:5b:a9:f8:71:a9:6f:60:55:0f:1d:0a:35:
be:74:93:0a:65:21:04:19:60:82:e2:96:71:cf:90:
81:99:94:dc:ac:d9:3f:75:52:7a:62:b9:d8:1e:61:
27:22:c6:52:50:fe:38:9a:f8:4c:c1:99:50:0a:41:
85:81:12:0b:a9:09:e7:ff:ea:05:bc:b5:f6:81:89:
13:a9:64:67:91:fa:51:85:86:83:ab:eb:2d:d2:37:
2e:d8:12:05:7f:75:4f:aa:15:d9:93:85:bb:50:c9:
ab:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E7:25:07:B9:B0:45:E3:A0:74:09:9F:2D:A1:0E:80:05:8D:28:7A
X509v3 Authority Key Identifier:
keyid:99:17:F7:77:E7:1A:C3:41:22:ED:B3:5E:DD:60:CF:14:D7:5B:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRf3d-caw0Ei7bNe3WDPFNdbnvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/O-clB7mwReOgdAmfLaEOgAWNKHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/be8d59-7704-45f8-b399-a88f574152b6/1/mRf3d-caw0Ei7bNe3WDPFNdbnvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bd:d7:63:3c:4f:13:40:66:7c:87:cd:69:6e:b6:76:16:99:
1c:74:a3:ae:7c:a6:66:d7:09:71:97:5b:ef:4b:4c:e4:38:11:
13:01:3a:85:8d:95:5a:56:37:ab:f0:ab:46:c5:63:b9:10:90:
29:ba:9e:39:ac:03:67:d8:5b:20:2c:a0:27:4a:5a:70:13:bc:
6b:d6:3b:da:01:0f:d3:53:a0:ce:30:81:13:f9:b4:6d:ba:24:
a6:cf:e3:16:a1:06:6d:3b:3d:46:fd:13:05:70:c6:60:29:37:
6e:c9:83:c2:c2:28:d8:e6:36:ab:de:61:fb:66:15:2f:09:16:
c1:f7:87:ba:d5:44:54:e2:0b:04:d4:56:ee:a9:2b:ce:6b:ed:
01:17:ad:4c:21:63:29:b2:f6:86:06:c3:3f:12:be:14:c4:00:
a1:78:11:33:92:43:80:6e:b8:8a:39:de:d8:f3:f2:c9:1a:4a:
9e:1a:9c:68:40:75:36:d7:47:50:35:8e:3b:8d:55:2c:34:05:
45:33:cf:94:d5:65:bf:db:df:b7:87:74:dd:61:f6:eb:0a:34:
2b:bf:4e:84:f9:a4:50:b0:ea:8e:92:b7:99:6e:72:3e:16:88:
9b:c5:c6:73:d7:19:05:37:0e:2e:7b:46:91:b4:46:7c:66:89:
d8:2f:45:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org