Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/othLh__sz3TGb6HiVKvkaexhH8U.roa
File: othLh__sz3TGb6HiVKvkaexhH8U.roa (raw, json)
Hash identifier: uDfFRd7wAfFSSSNCEZLpUzcJHycaW1KDFkjtsL+LrEY=
Subject key identifier: A2:D8:4B:87:FF:EC:CF:74:C6:6F:A1:E2:54:AB:E4:69:EC:61:1F:C5
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0241B5E8
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/othLh__sz3TGb6HiVKvkaexhH8U.roa
Signing time: Sat 01 Jan 2022 05:56:45 +0000
ROA not before: Sat 01 Jan 2022 05:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 265827
IP address blocks: 94.131.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37860840 (0x241b5e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 05:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2d84b87ffeccf74c66fa1e254abe469ec611fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e7:a7:8d:a6:03:82:b5:a8:af:80:5c:18:43:
b2:fa:dd:30:01:a8:14:24:c1:93:f4:ab:5a:6c:4c:
6c:7e:b6:ba:a0:77:ee:bd:a1:f3:e9:b8:a9:3c:0a:
e8:25:90:bb:cf:7e:1d:4f:96:e4:81:1d:10:ba:57:
f3:4c:c0:91:de:a6:92:53:f7:55:21:4c:ea:89:dd:
98:54:36:79:1b:ba:df:fb:ff:80:4a:ec:cd:41:00:
1e:45:ad:b3:9a:f6:15:ff:67:46:64:ce:84:7b:9d:
dd:8c:41:54:16:96:08:d4:bc:8b:ba:82:72:97:d8:
9a:5b:fb:17:e8:9a:6b:4b:8d:21:cb:27:fd:fa:4c:
be:48:ca:03:7a:1d:fd:25:7a:40:a6:b9:e7:c8:5b:
c1:a4:67:22:a3:a5:91:f7:25:4a:24:a1:38:55:09:
4c:24:99:ef:9e:6c:b0:a1:a8:52:12:5a:a9:5d:07:
5c:8f:76:f8:ae:31:95:63:5d:e9:04:68:7d:b4:c8:
39:f5:bf:ec:7e:d4:ca:15:e4:6b:86:83:5d:05:63:
7d:9b:32:63:f7:4a:54:a9:11:fa:ab:45:46:c0:5a:
2d:43:3d:82:bc:b5:82:5c:37:84:50:f5:d5:c4:33:
0f:6b:97:64:81:04:ed:e3:76:7e:88:32:9f:8d:4d:
73:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D8:4B:87:FF:EC:CF:74:C6:6F:A1:E2:54:AB:E4:69:EC:61:1F:C5
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/othLh__sz3TGb6HiVKvkaexhH8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.16.0/21
Signature Algorithm: sha256WithRSAEncryption
52:ae:7a:4a:87:24:82:53:ee:1e:35:15:d3:e2:b0:da:90:29:
83:85:53:9a:6f:0d:37:71:76:8a:e6:a5:c3:12:6f:31:36:36:
1a:64:b4:73:d1:2c:9a:3d:b5:7e:40:66:79:8b:df:7c:29:a8:
8b:62:fc:bb:54:c5:14:be:c4:22:a3:24:0a:00:2b:77:e2:1f:
28:83:7c:cd:a6:0f:c9:01:87:81:d5:e2:d6:60:4a:b2:2e:d9:
8c:5a:58:c2:ea:d7:90:52:8e:92:1e:a6:d7:d2:c7:be:77:a4:
9f:38:20:84:fc:ae:3c:73:1e:2b:47:9a:43:e3:3f:b5:b4:ff:
96:37:9d:1b:a0:9f:f5:7b:7c:e2:ee:5c:04:94:58:a3:8f:ca:
e9:4b:05:e6:84:60:b5:9a:32:ac:e8:98:19:b2:7a:a8:e4:1f:
7a:c2:d8:f2:eb:c8:63:ce:1e:25:cf:c6:71:8e:97:b9:cf:83:
64:c6:2a:e3:5a:39:64:ad:c6:01:48:cf:1e:6c:16:bc:00:32:
8c:77:22:bc:a6:3a:59:98:36:0d:08:e6:b9:42:88:60:cb:68:
fe:94:fb:bd:0a:e7:b0:a0:16:62:99:23:3c:1b:71:6a:9f:aa:
4c:0e:15:08:a1:08:d0:6e:04:67:63:04:37:db:2e:a3:97:f4:
70:b8:5c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org