Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Oa0wkM99Ez6tlc5YQwYqr-R0P5k.roa
File: Oa0wkM99Ez6tlc5YQwYqr-R0P5k.roa (raw, json)
Hash identifier: tgrhzhkiH8q1t4dISj6yPIAQz8ilW+kHBfh+eZehtGE=
Subject key identifier: 39:AD:30:90:CF:7D:13:3E:AD:95:CE:58:43:06:2A:AF:E4:74:3F:99
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14A2A3F9
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Oa0wkM99Ez6tlc5YQwYqr-R0P5k.roa
Signing time: Sat 09 Apr 2022 18:33:56 +0000
ROA not before: Sat 09 Apr 2022 18:33:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206654
IP address blocks: 194.180.238.0/24 maxlen: 24
194.213.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346203129 (0x14a2a3f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Apr 9 18:33:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39ad3090cf7d133ead95ce5843062aafe4743f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:85:a6:12:13:31:d8:67:15:31:ee:38:8b:
0b:32:94:4c:41:a3:6b:2b:d0:95:45:02:90:fa:98:
d2:7d:3d:b3:94:18:c3:6a:34:8a:5d:17:4d:35:39:
b7:a1:aa:46:ed:7c:d4:8c:91:6a:a4:31:a8:fa:8e:
2a:51:7f:1b:f8:40:84:93:9c:22:87:08:12:79:80:
78:61:9f:d6:bc:06:06:26:eb:4d:bd:24:6f:fa:d4:
53:87:f2:38:cb:2f:33:2c:3a:44:9c:4f:0d:7e:59:
25:f7:a0:86:8f:0a:89:48:af:dc:66:84:ae:23:1c:
30:91:9a:ad:c8:41:00:36:01:b9:47:64:dd:68:56:
df:7c:29:a8:45:38:28:e5:2d:14:2c:93:88:5b:87:
a3:59:a6:a6:fc:9f:77:f2:44:ff:c1:5e:75:56:ec:
e1:00:4d:a9:64:c8:53:6f:58:0a:64:e5:8f:36:09:
14:78:ca:0f:5d:05:ce:e5:46:db:48:97:9d:40:71:
f9:f8:5b:78:a2:9a:11:aa:83:b0:1a:2b:f4:8e:b9:
77:88:67:51:61:50:16:07:f1:da:d2:19:05:6c:93:
47:2e:94:e5:74:f3:e3:38:96:59:67:7d:0c:95:93:
04:c8:be:46:d9:0b:a4:73:38:2f:88:be:19:62:1a:
7b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AD:30:90:CF:7D:13:3E:AD:95:CE:58:43:06:2A:AF:E4:74:3F:99
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Oa0wkM99Ez6tlc5YQwYqr-R0P5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.238.0/24
194.213.10.0/24
Signature Algorithm: sha256WithRSAEncryption
45:64:f9:ff:e6:23:e7:0f:1f:fc:95:8d:19:d8:9a:aa:cf:75:
de:5d:64:48:c8:ad:e7:38:b8:78:df:83:be:28:1a:04:17:ba:
74:08:d5:e5:d0:e1:7f:df:0f:e1:d0:7d:1f:71:54:87:0a:ad:
12:4d:20:98:5e:60:2a:b9:44:51:6d:cd:d8:00:14:9a:a4:60:
0c:a2:68:37:72:e8:47:1c:0e:41:99:59:cc:77:aa:1f:5f:df:
08:a0:83:96:93:7f:82:be:6f:9d:b4:41:09:07:58:0a:72:7d:
a4:70:9f:52:30:ef:e9:9a:8c:84:99:d2:2e:b0:a8:5c:96:d6:
b0:15:e9:a4:9f:e8:c3:d5:8a:f2:1e:63:dc:fa:1f:e2:cb:02:
00:d3:61:c5:08:6c:18:c6:ff:94:23:15:75:b2:98:dc:9c:6c:
d6:b1:ad:a5:0e:8c:14:1c:c0:18:18:bc:07:68:12:85:af:b1:
ed:9b:86:35:44:71:c3:91:78:2c:d9:7d:53:af:41:3e:75:8d:
0d:a6:67:3f:4c:5d:c3:41:71:5d:ec:b5:69:6e:9d:00:96:c7:
61:ac:72:7e:ed:2a:28:b0:8e:fe:6d:c8:dc:9b:d4:55:81:f0:
88:32:7b:d9:40:37:76:8c:4b:66:22:78:9d:da:5a:0e:ce:58:
db:66:48:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org