Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8a707a-5ced-4c75-ae38-56596beed1c7/1/OABuYGGVqEsDNKOzkApbZZDJGjU.roa
File: OABuYGGVqEsDNKOzkApbZZDJGjU.roa (raw, json)
Hash identifier: 3CtbO0RbEb0zXrJpDGEMaufaatLqMMP6VTCwcDcJr84=
Subject key identifier: 38:00:6E:60:61:95:A8:4B:03:34:A3:B3:90:0A:5B:65:90:C9:1A:35
Certificate issuer: /CN=940b9e18eeb094d912deb595dc7aac8661b0d6c7
Certificate serial: 082A082A
Authority key identifier: 94:0B:9E:18:EE:B0:94:D9:12:DE:B5:95:DC:7A:AC:86:61:B0:D6:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAueGO6wlNkS3rWV3HqshmGw1sc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8a707a-5ced-4c75-ae38-56596beed1c7/1/OABuYGGVqEsDNKOzkApbZZDJGjU.roa
Signing time: Sat 01 Jan 2022 09:00:59 +0000
ROA not before: Sat 01 Jan 2022 09:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204861
IP address blocks: 185.121.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136972330 (0x82a082a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940b9e18eeb094d912deb595dc7aac8661b0d6c7
Validity
Not Before: Jan 1 09:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38006e606195a84b0334a3b3900a5b6590c91a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:47:22:6d:19:6a:e9:9b:20:0b:a8:1f:32:33:
74:2a:4b:53:b4:bb:a4:c2:52:0c:9c:6a:77:d3:65:
92:cd:eb:dd:28:d7:3b:fd:88:1b:fe:1d:4a:5d:39:
cc:7c:6e:7b:2e:35:c9:dc:20:1c:64:c6:33:9c:13:
ff:23:b6:84:90:35:6a:8a:a0:71:b6:97:7d:53:d1:
85:dc:12:da:34:80:6b:7d:7f:c8:42:99:58:a5:d9:
ad:b7:70:35:27:27:a1:0d:61:56:b9:f9:1d:e8:cc:
4c:4c:54:08:42:62:27:d0:22:4a:49:73:de:24:51:
c1:07:9d:21:17:da:56:e3:37:4f:c7:1f:60:66:6c:
f8:04:e7:8f:13:91:be:4b:81:f2:cb:25:58:7d:18:
f7:93:4d:3f:89:cb:6e:59:3b:c5:45:9c:2d:45:5d:
68:a8:f1:69:eb:fd:4d:9d:ae:e4:1f:e4:9d:b9:7a:
bd:62:da:93:b5:10:53:f6:5d:bc:f6:0b:88:00:62:
68:7f:7f:87:e6:9f:48:9a:57:97:ae:54:18:cd:1b:
c3:8d:43:da:f7:8e:1e:eb:9d:88:39:31:1b:c3:a7:
63:a4:e8:5b:a6:de:bd:1e:4c:98:30:0c:ac:ee:d3:
df:84:06:0d:97:2e:c7:e7:92:25:a7:a8:cb:65:63:
18:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:00:6E:60:61:95:A8:4B:03:34:A3:B3:90:0A:5B:65:90:C9:1A:35
X509v3 Authority Key Identifier:
keyid:94:0B:9E:18:EE:B0:94:D9:12:DE:B5:95:DC:7A:AC:86:61:B0:D6:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAueGO6wlNkS3rWV3HqshmGw1sc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8a707a-5ced-4c75-ae38-56596beed1c7/1/OABuYGGVqEsDNKOzkApbZZDJGjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8a707a-5ced-4c75-ae38-56596beed1c7/1/lAueGO6wlNkS3rWV3HqshmGw1sc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.106.0/23
Signature Algorithm: sha256WithRSAEncryption
34:26:6f:49:4b:36:e1:29:d8:44:69:de:fb:e0:19:67:07:0e:
da:4c:e5:a6:a7:a4:09:68:64:a0:95:cb:76:16:2c:1b:63:67:
8a:77:18:bc:79:01:98:8e:15:bf:c5:3f:ce:e3:d4:9d:db:75:
50:72:1f:bb:c6:0c:95:99:40:8c:03:23:29:4f:81:ba:ca:ee:
00:8f:5d:b7:4c:9b:42:62:0b:5b:3f:67:6f:0f:a9:e0:21:9c:
8d:b3:b5:b0:8d:91:7c:9e:80:17:0b:86:c0:cd:1c:14:b3:b6:
88:9e:1e:8c:c5:09:e9:d3:5e:5a:2b:ed:64:37:78:67:2f:cd:
79:50:ec:69:84:65:51:02:50:98:40:1e:d5:43:20:a7:04:df:
0c:1b:d0:24:67:7d:8d:5d:2d:3b:67:25:ba:a9:6b:47:dd:c1:
06:53:fa:a8:94:41:65:94:0b:15:a5:20:9e:f9:8a:fb:df:75:
3a:e3:c6:a0:e7:cf:18:a0:bd:2c:76:4f:94:2f:1f:46:12:ff:
ab:8b:26:bc:9f:06:e5:38:75:26:6c:c5:dc:8a:89:91:84:51:
5e:6d:13:37:4f:35:a8:42:4f:3d:8b:ef:f9:90:34:0b:d7:8c:
66:7e:61:a3:1b:e8:7f:9b:cb:bd:ca:58:5c:c0:3a:0a:62:1b:
21:2c:fa:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:31 2024 by rpki-client on console-ams.rpki-client.org