Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/oxbBaxLuZc4yefK8jIX_fjG_l5M.roa
File: oxbBaxLuZc4yefK8jIX_fjG_l5M.roa (raw, json)
Hash identifier: yLbJe+fUycfNCbbxXWwfSqxy/jU6nmBMSN8yO+KsZaM=
Subject key identifier: A3:16:C1:6B:12:EE:65:CE:32:79:F2:BC:8C:85:FF:7E:31:BF:97:93
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 3D08B2
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/oxbBaxLuZc4yefK8jIX_fjG_l5M.roa
Signing time: Tue 22 Mar 2022 12:01:50 +0000
ROA not before: Tue 22 Mar 2022 12:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211432
IP address blocks: 185.242.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3999922 (0x3d08b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 12:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a316c16b12ee65ce3279f2bc8c85ff7e31bf9793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bd:bd:ae:b9:51:41:5f:0e:b1:92:e4:4b:88:
71:61:b6:8b:79:94:82:5c:ff:f2:ec:07:47:b1:88:
0e:95:53:a0:f7:25:37:60:ab:d0:c2:7c:a8:5c:10:
5b:7a:7b:bb:e1:22:98:25:d7:a8:54:2f:2a:98:d7:
ad:8e:51:8e:3b:3e:05:2e:fc:2a:b4:fc:70:ba:1f:
f3:e2:4e:dd:b7:b8:b7:12:f3:ef:46:c2:10:10:86:
6b:d4:2f:d1:96:df:b6:84:54:e3:18:17:3b:ab:85:
5f:2c:62:b3:c9:5d:70:b2:29:6d:81:fc:28:69:78:
bc:b3:9c:57:d1:e5:a2:84:1a:4d:b4:b9:8d:3f:ff:
2e:c3:23:87:1f:21:f6:e0:0b:c1:9d:27:8a:99:d7:
c1:50:5e:8d:cb:46:9f:50:3f:cd:bc:c1:ba:26:9c:
1d:65:76:4d:ee:69:08:e8:67:e2:86:39:ee:2f:df:
f1:f1:16:7c:e9:e0:07:aa:6f:1e:c8:16:d2:96:14:
c5:d7:47:1e:bd:98:1e:fe:5d:ad:c9:6a:7d:ab:bd:
6f:24:39:e4:b6:57:58:a4:52:c4:49:89:c4:2b:f1:
75:75:89:9e:e4:5b:89:b5:c5:de:26:ff:54:22:8d:
39:e3:d3:41:84:4b:02:38:8d:8c:7f:c8:83:df:c1:
a3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:16:C1:6B:12:EE:65:CE:32:79:F2:BC:8C:85:FF:7E:31:BF:97:93
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/oxbBaxLuZc4yefK8jIX_fjG_l5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.108.0/22
Signature Algorithm: sha256WithRSAEncryption
16:51:ed:52:ce:d9:e8:3b:81:cc:28:28:b0:49:87:9f:03:63:
aa:96:41:7a:92:59:06:8b:a1:3a:80:ae:7f:c0:04:23:aa:8f:
36:de:d4:b2:18:94:08:31:6d:f3:93:0d:78:0f:ed:75:00:79:
f6:b2:38:67:26:b4:26:2b:6c:db:f9:8a:71:7d:66:12:e4:f0:
aa:8c:90:31:16:f9:dc:3e:28:aa:cb:cb:10:e8:cd:79:7f:0c:
7b:a1:88:79:b0:98:2d:86:98:4a:3b:22:06:59:ad:2d:a7:d9:
09:34:ca:b7:0b:cf:24:90:91:cc:56:e4:a8:86:5f:ec:88:7f:
f1:a9:fa:ae:ea:94:3e:cb:87:91:97:c7:69:ff:f8:d4:26:f9:
0c:7c:d8:bd:69:fa:1f:62:e9:e7:86:38:19:0c:39:68:f2:9c:
15:30:53:39:66:42:11:24:fb:cd:8b:3d:52:d2:96:71:98:2b:
c0:5f:3a:6e:86:21:34:1e:05:e0:ae:9b:65:1c:5f:25:d6:66:
18:71:c7:68:57:b1:8b:1d:c4:19:20:0a:05:67:ee:82:79:b1:
24:7c:5e:c9:df:af:e1:42:8f:c1:b4:fe:49:01:5c:c0:c2:79:
12:81:44:17:6d:bf:57:54:ee:c7:04:91:b0:4a:1b:70:b5:79:
f5:25:e7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org