Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/OTFFygTR8_DwRhFP4i1aFSwt61Y.roa
File: OTFFygTR8_DwRhFP4i1aFSwt61Y.roa (raw, json)
Hash identifier: hmQxXGVk1iCAE2CE/BNWORFAtg9I4KNBvYpc69NFpeA=
Subject key identifier: 39:31:45:CA:04:D1:F3:F0:F0:46:11:4F:E2:2D:5A:15:2C:2D:EB:56
Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Certificate serial: 04D3B7EC
Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/OTFFygTR8_DwRhFP4i1aFSwt61Y.roa
Signing time: Mon 18 Apr 2022 05:58:33 +0000
ROA not before: Mon 18 Apr 2022 05:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207479
IP address blocks: 81.95.43.0/24 maxlen: 24
82.194.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80984044 (0x4d3b7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Validity
Not Before: Apr 18 05:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=393145ca04d1f3f0f046114fe22d5a152c2deb56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:95:bd:79:c8:79:c6:50:b8:e7:e9:29:86:
8b:f5:96:ca:3c:cb:0d:6c:3c:c7:4a:de:c9:b1:36:
8a:dd:72:fa:00:57:b9:18:c5:1d:89:1b:7f:b7:f0:
61:9c:ab:bb:bb:81:68:b1:46:06:e0:3c:ac:e6:ef:
82:78:f4:7b:f2:df:95:48:61:59:f0:d3:b9:19:24:
60:95:42:b5:92:d9:3d:84:42:ae:50:13:fe:d6:1c:
43:b2:fb:ef:9f:66:75:e2:3b:c8:ba:46:a4:e5:42:
30:85:13:6b:74:73:7f:ed:65:94:d9:72:84:b6:17:
2e:69:c2:a3:0c:ac:1d:4d:a6:8e:11:e9:b0:36:61:
5d:c2:c1:06:86:cd:71:21:2f:6f:8c:35:4f:c9:e7:
f3:02:b0:16:c1:70:1b:79:b2:41:03:5a:ca:55:0f:
16:f7:6b:24:75:a6:29:36:56:7b:cd:3d:61:ab:eb:
d3:61:6a:6f:39:77:d8:93:a4:f3:cb:f7:e5:b6:10:
48:3e:01:cc:aa:52:24:1e:8e:4b:25:6b:1e:86:e6:
33:b9:5e:0d:2d:22:82:a7:0c:69:66:aa:dd:9c:4d:
cf:4b:aa:18:27:3e:86:d3:98:db:30:fc:76:6f:07:
5a:af:ff:50:22:93:99:29:e2:43:99:de:b6:24:09:
97:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:31:45:CA:04:D1:F3:F0:F0:46:11:4F:E2:2D:5A:15:2C:2D:EB:56
X509v3 Authority Key Identifier:
keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/OTFFygTR8_DwRhFP4i1aFSwt61Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.43.0/24
82.194.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:cb:b6:47:bb:99:f6:04:30:96:7a:7f:c6:1b:8c:98:17:9c:
84:0a:2c:47:cd:cf:82:60:32:ed:5c:46:d6:4d:0a:c7:4f:c6:
54:95:74:3d:83:66:04:89:8a:46:e0:81:2c:b0:01:3a:0d:eb:
e6:53:3c:56:e1:25:02:0b:4e:27:54:96:20:30:3a:72:10:3d:
7b:b3:40:50:c4:66:d8:70:92:cf:21:b3:00:44:57:d6:be:a5:
16:b8:3b:75:6c:76:97:55:aa:4a:6e:1c:86:04:57:39:5f:02:
27:bc:35:5f:5c:f0:5a:d7:fb:38:83:a2:a5:14:8c:33:59:76:
c6:9a:88:69:ce:93:42:82:d3:79:ed:18:25:df:16:8a:90:75:
64:a8:4d:0d:26:8b:14:66:7b:95:6d:ec:fc:7b:35:32:f2:e1:
da:de:df:7a:30:66:3e:a2:c1:4a:cc:4c:ed:f9:b5:69:fb:da:
4d:8e:75:88:6e:e3:fb:c5:dc:e0:3c:33:4d:fb:31:19:c5:c9:
9b:cf:43:26:a4:da:47:43:96:32:f8:ba:c0:c4:b5:41:51:7f:
2f:f9:6a:a6:ae:99:30:74:c9:a4:61:34:68:6c:04:41:99:c7:
80:8d:70:a1:e5:50:a5:f9:e1:96:12:67:75:7b:a0:46:72:c8:
2a:ce:1f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org