Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OVIdEWXIfQ81Ii-a41zppNQQGoI.roa
File: OVIdEWXIfQ81Ii-a41zppNQQGoI.roa (raw, json)
Hash identifier: kKH3mBFBo3EaAGKbmZuaenZVDdirp2gicYLsFMLf0wk=
Subject key identifier: 39:52:1D:11:65:C8:7D:0F:35:22:2F:9A:E3:5C:E9:A4:D4:10:1A:82
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 03987799
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OVIdEWXIfQ81Ii-a41zppNQQGoI.roa
Signing time: Sat 01 Jan 2022 06:06:48 +0000
ROA not before: Sat 01 Jan 2022 06:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211028
IP address blocks: 185.78.232.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60323737 (0x3987799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 1 06:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39521d1165c87d0f35222f9ae35ce9a4d4101a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1d:a8:c5:52:7a:55:d7:a1:c1:60:a9:55:8f:
b3:03:1d:82:52:01:95:17:0b:ea:ae:cc:79:15:fe:
96:5c:1a:ca:06:0c:9b:cf:71:42:8c:b5:47:f3:8e:
ec:e0:b3:b7:f5:1c:10:76:9f:7b:23:b2:e6:98:f0:
5a:e8:bf:a0:be:08:bb:87:11:76:bf:8b:af:40:3d:
a3:ca:1f:72:69:ae:09:6b:0f:1e:bf:db:9f:04:55:
ed:10:f3:e1:8a:d2:de:af:a4:63:5d:2d:18:5b:c9:
99:d8:19:8c:bd:61:6b:2c:cb:e5:13:dd:79:c8:a4:
ea:f6:80:61:af:59:78:55:04:2b:51:f4:47:56:5c:
b4:60:aa:35:95:ca:f2:65:24:b7:70:dc:78:3c:16:
ed:30:b6:54:48:ae:4b:d6:f9:dc:53:d1:87:bb:af:
3c:c7:8b:84:b6:e3:b7:3a:cd:c0:e3:fe:96:75:99:
28:40:63:77:f7:3f:ac:6c:d1:42:e4:7b:90:47:51:
2e:67:62:0e:ef:79:1f:ea:cc:14:56:de:e3:ba:d8:
93:3e:7b:1f:7a:5f:6e:52:90:b4:0b:38:e0:c2:b0:
c1:2a:42:a1:d9:0d:64:32:64:49:1a:b3:31:6d:8e:
06:f7:f0:b8:8d:dc:03:c3:f4:32:dc:a7:9a:6c:f6:
f2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:52:1D:11:65:C8:7D:0F:35:22:2F:9A:E3:5C:E9:A4:D4:10:1A:82
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OVIdEWXIfQ81Ii-a41zppNQQGoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.232.0/23
Signature Algorithm: sha256WithRSAEncryption
06:c5:21:d0:8b:4a:d8:bd:db:74:58:d5:11:dc:07:48:d5:f7:
fe:05:48:b5:ee:ef:77:c8:ca:4d:00:2e:47:71:b0:40:99:e5:
b4:d4:ad:ff:7d:8f:4e:ab:19:6d:43:7b:6a:4c:de:b7:0d:fa:
7b:1a:5c:79:f4:06:b2:bf:89:3d:0e:44:fa:23:b9:59:ca:fe:
25:1a:f9:dc:d3:dd:f3:2d:7d:a1:a9:88:73:0e:12:e9:e3:5e:
18:37:e4:28:32:b3:ae:1f:5d:14:4a:31:90:77:ea:3a:ff:02:
6a:1f:f5:84:97:43:92:76:bf:bf:cd:31:e5:ed:a6:b4:84:4c:
a4:f7:ce:4d:7f:15:f1:cc:a7:f3:e6:b3:24:c3:23:7d:2d:b5:
03:23:fd:f0:bd:e7:c6:75:8a:43:ae:19:37:5d:b3:28:a2:df:
00:88:87:1e:91:4a:ae:76:fb:8f:ed:34:1d:cd:e9:50:27:47:
4e:25:d3:a1:0e:6a:4d:4b:bf:27:15:57:e7:3c:fc:cd:36:84:
eb:42:2b:1b:20:fd:02:85:10:07:f1:d4:8c:32:c9:16:97:9e:
e3:4c:f2:50:8c:a7:3a:3f:c8:b0:43:45:29:3c:23:72:6f:a9:
63:fb:e2:d1:6d:a1:9b:a1:3f:ce:ee:c7:46:13:1e:be:20:ab:
4c:73:16:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org