Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/obbzKp3HzEijOBMvtg5vlOu7Oxc.roa
File: obbzKp3HzEijOBMvtg5vlOu7Oxc.roa (raw, json)
Hash identifier: WKMvbmbMSN8V40gWAA0FEsf/6K2eu4O4f2xGZmtdVto=
Subject key identifier: A1:B6:F3:2A:9D:C7:CC:48:A3:38:13:2F:B6:0E:6F:94:EB:BB:3B:17
Certificate issuer: /CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Certificate serial: 084B842E
Authority key identifier: 5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/obbzKp3HzEijOBMvtg5vlOu7Oxc.roa
Signing time: Sat 01 Jan 2022 02:00:46 +0000
ROA not before: Sat 01 Jan 2022 02:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57651
IP address blocks: 193.247.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139166766 (0x84b842e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Validity
Not Before: Jan 1 02:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1b6f32a9dc7cc48a338132fb60e6f94ebbb3b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3d:ea:d5:df:07:5e:a6:33:d8:9e:37:91:84:
6c:bd:b3:d4:f4:dc:6f:3d:69:f4:10:a8:44:05:fe:
00:06:6d:5a:87:c2:25:53:cc:30:8d:0c:ac:68:cb:
09:05:eb:6f:bb:04:bb:d7:f7:5f:d7:8c:b9:31:df:
d4:8f:16:60:80:5a:cd:14:20:4c:61:b8:7d:05:12:
8c:da:db:eb:ed:d0:d6:12:ee:e2:9e:58:d2:d0:cb:
47:91:2b:15:9f:e5:6b:5a:30:f0:a9:c2:12:df:c5:
8b:6d:5a:7b:0c:0b:18:d1:91:eb:a1:84:e9:96:d8:
14:57:9e:62:6a:0b:8d:9e:30:1f:3c:29:29:09:8a:
9b:c6:84:af:3a:74:d3:14:7e:81:21:c6:2c:32:b5:
11:19:01:88:81:d5:f2:2c:c4:a7:d8:ca:f4:86:c2:
ba:e2:08:dc:32:8d:72:ca:c3:66:e3:e4:9d:41:7f:
9f:cb:c8:3f:96:29:b5:53:33:3a:b1:b3:d7:47:3a:
06:11:61:8c:ae:7a:86:19:14:0b:4a:50:cd:a6:1b:
da:d9:6a:4e:11:fe:74:2e:b4:b6:b0:16:0a:82:ef:
1d:9b:a6:26:a2:94:57:c4:da:6b:ef:85:8e:81:c1:
7a:6a:cd:52:03:b5:1c:32:df:1a:bb:35:fd:d2:a9:
56:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B6:F3:2A:9D:C7:CC:48:A3:38:13:2F:B6:0E:6F:94:EB:BB:3B:17
X509v3 Authority Key Identifier:
keyid:5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/obbzKp3HzEijOBMvtg5vlOu7Oxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.238.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a3:f7:c5:b1:1e:9c:1f:fb:6e:a5:d8:85:9f:e2:47:82:aa:
0e:da:c3:72:74:8f:8d:da:64:44:55:50:2d:68:e5:91:4d:5f:
0e:d9:ce:a3:13:05:b6:49:4b:6c:60:c4:ca:4b:3f:7a:e9:4f:
10:1e:8f:62:e3:1b:b5:fa:32:cc:d1:90:72:8d:ca:67:94:5e:
fb:d0:b1:3d:82:89:da:11:b4:0f:23:e0:1b:9b:58:ca:e7:83:
d1:e4:0c:07:7a:3b:c5:23:14:c7:8f:90:77:f7:de:1b:1a:fe:
52:c3:e1:27:65:20:96:d7:5f:c4:3d:e2:52:d1:9a:f5:f8:60:
ec:85:eb:fa:15:d0:b6:50:b2:0b:05:66:65:30:b7:14:7f:3f:
31:e1:64:42:aa:46:a7:cd:8c:b8:26:96:f6:e7:d2:49:0a:0f:
83:91:3d:d3:eb:c5:59:5d:35:64:40:cd:0a:db:20:66:e7:26:
a9:11:89:f9:33:df:17:50:1d:96:38:95:bd:8e:8f:25:75:44:
26:07:db:ef:51:0a:0b:b2:c2:2e:16:be:76:6b:b3:16:70:ae:
23:37:89:31:8e:f5:fa:23:9e:3e:c8:f1:cd:47:5f:91:f9:f4:
12:37:c7:6c:30:14:aa:da:8a:4b:70:e8:d6:04:16:29:cd:e0:
f9:37:6f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:16 2024 by rpki-client on console-ams.rpki-client.org