Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/OJwzoag5aQwt5mgXgriGgZtueA4.roa
File: OJwzoag5aQwt5mgXgriGgZtueA4.roa (raw, json)
Hash identifier: S0q9zQjl8SMeI+FGWJQF5JzvWe/8tgsT8Ie7kYtGyJM=
Subject key identifier: 38:9C:33:A1:A8:39:69:0C:2D:E6:68:17:82:B8:86:81:9B:6E:78:0E
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018410522FEBA5671906C0A97D1B3BD22898
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/OJwzoag5aQwt5mgXgriGgZtueA4.roa
Signing time: Tue 25 Oct 2022 18:05:32 +0000
ROA not before: Tue 25 Oct 2022 18:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201079
IP address blocks: 185.254.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:52:2f:eb:a5:67:19:06:c0:a9:7d:1b:3b:d2:28:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 25 18:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=389c33a1a839690c2de6681782b886819b6e780e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:00:47:44:cc:a3:61:bc:95:c9:bf:48:13:7c:
f2:c6:67:36:1c:33:e5:9c:e9:9a:24:e4:c6:bf:93:
69:e7:76:bb:26:a8:21:7d:b6:f2:4b:41:4c:5f:4e:
b4:0a:55:cf:2e:9f:49:0f:ed:8c:4d:8c:9b:b8:80:
d7:c1:f5:ef:58:90:a6:7c:35:ec:e4:80:6d:53:7f:
b2:c0:83:b9:fb:f2:f4:bb:e3:6c:1f:bf:b8:90:35:
75:41:07:dd:68:ed:6c:b9:7b:fc:3c:d5:83:73:16:
2d:d9:35:7d:b5:72:3a:bd:22:23:12:57:9e:d5:22:
f4:51:7a:bc:07:db:db:a8:ae:8b:90:13:91:2f:d1:
ea:4f:e6:62:8f:26:20:51:1d:ef:42:69:76:47:07:
11:74:92:0a:30:c5:e5:f1:67:ec:02:57:79:d0:f2:
4d:cd:4a:49:02:14:b7:d0:c9:7c:3f:7e:4e:8c:91:
e0:f0:db:c8:82:bb:3d:07:cf:1b:bf:ff:4a:96:cd:
7f:11:64:1c:e3:a6:17:6d:b7:b3:53:76:41:83:da:
7e:d6:1b:f1:51:30:54:7b:f6:e3:15:20:43:94:e7:
10:2b:38:17:e3:95:ed:30:50:1b:30:c5:24:32:01:
7f:93:45:31:11:a4:2b:41:3e:22:5a:ad:67:0a:7b:
da:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9C:33:A1:A8:39:69:0C:2D:E6:68:17:82:B8:86:81:9B:6E:78:0E
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/OJwzoag5aQwt5mgXgriGgZtueA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.55.0/24
Signature Algorithm: sha256WithRSAEncryption
17:72:35:08:7a:6e:7f:5a:ff:9a:e6:d0:8e:2f:b8:d4:c9:d3:
7a:e9:5f:5b:8e:d0:a8:5b:f8:7c:d1:ab:1e:90:0c:4a:79:2e:
04:a1:d0:9b:c0:66:7c:f8:b7:9f:69:2d:f7:92:1d:4f:33:aa:
9e:59:e4:90:86:8b:da:11:87:0d:2f:71:60:c0:ae:6c:51:a8:
9b:ce:03:42:17:da:14:02:4f:5f:7e:29:35:19:5d:8a:49:ba:
43:df:36:da:37:01:f9:a0:5f:ff:64:19:ba:ed:17:44:0e:b0:
59:6f:25:3f:fc:2f:89:d9:8e:1f:a0:a0:50:5a:39:f0:0e:56:
55:7d:1d:e1:88:00:c8:64:a8:08:08:d6:fa:a3:32:ab:d1:ad:
ae:21:d6:d1:41:2e:e5:72:ae:f9:10:1d:03:23:e9:39:38:8b:
0c:cb:49:46:4c:45:a2:3d:74:45:38:31:ad:0c:ab:84:24:39:
be:f3:7b:09:4d:50:23:ff:e0:50:24:eb:73:f1:4f:d5:b2:ed:
4b:7f:b2:54:6e:a0:e5:b3:9f:da:31:cb:a0:ee:80:ad:01:7b:
de:ad:4c:d9:3a:fe:48:d1:af:28:8f:74:3c:39:df:dc:b1:00:
df:72:bb:d7:14:26:3c:4d:66:e7:37:0c:7b:3f:88:a5:95:b4:
b7:56:c5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org