Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Oz2nxNPg9FfMr6JqJMoPDwL-Eng.roa
File: Oz2nxNPg9FfMr6JqJMoPDwL-Eng.roa (raw, json)
Hash identifier: oKsMKyrdW2P/um9nKTjJ5h4aXBSpS/Fu3HQpiuNhO1M=
Subject key identifier: 3B:3D:A7:C4:D3:E0:F4:57:CC:AF:A2:6A:24:CA:0F:0F:02:FE:12:78
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 0861F4D9
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Oz2nxNPg9FfMr6JqJMoPDwL-Eng.roa
Signing time: Sat 01 Jan 2022 11:04:55 +0000
ROA not before: Sat 01 Jan 2022 11:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205455
IP address blocks: 92.38.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140637401 (0x861f4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Jan 1 11:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b3da7c4d3e0f457ccafa26a24ca0f0f02fe1278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:01:00:04:12:b1:a9:0e:a1:36:c6:57:c1:
33:a8:84:51:64:ae:b2:ab:1b:77:4a:0a:07:87:f8:
20:b2:db:b5:ba:b6:dd:38:25:1f:9d:8e:98:db:6a:
8a:4a:3e:d6:2e:dc:d7:dc:e9:a8:9c:59:b0:54:c9:
d9:13:eb:48:43:9c:d6:85:13:35:8b:be:f2:00:f3:
e3:a5:0c:9c:41:db:05:c7:51:39:42:a0:cb:c7:78:
54:73:73:91:1f:44:30:f1:fc:86:5a:a8:55:86:75:
c2:cd:66:ad:81:94:7f:db:43:21:24:13:c6:a0:1f:
a6:dd:1a:5c:30:69:4c:54:fa:17:50:5e:59:6d:66:
4b:e8:e4:d7:9a:2a:3b:2c:2a:07:c5:67:48:95:71:
f9:23:ec:d2:89:e8:b4:d8:34:ce:8d:ce:e0:2b:2f:
8a:c2:0c:2c:ae:12:5f:0c:d3:ee:f2:27:61:47:19:
df:32:71:c3:29:4e:b2:f9:36:2a:cb:5a:6e:a6:f8:
3e:6a:bc:b1:38:48:df:64:81:57:cb:33:c7:b0:d5:
cf:53:df:be:b3:c5:76:e8:b4:84:c7:7f:ad:15:a7:
29:2b:85:c2:3b:52:55:d2:79:08:5c:68:0c:28:4a:
80:27:30:42:62:7f:48:55:75:cf:70:1d:d2:3b:a1:
6c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3D:A7:C4:D3:E0:F4:57:CC:AF:A2:6A:24:CA:0F:0F:02:FE:12:78
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Oz2nxNPg9FfMr6JqJMoPDwL-Eng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:cd:af:af:af:97:86:84:3a:5a:28:c7:80:bf:21:40:70:23:
14:44:1b:f2:e9:d5:66:a4:6b:6f:5e:83:61:e7:eb:ac:9d:43:
46:a5:79:d1:f6:31:c3:09:66:9b:73:0c:f1:3e:e3:8f:ed:71:
27:a4:85:40:7b:5c:2b:8f:b5:78:c4:97:b9:51:02:6b:52:c2:
90:50:f1:84:e8:d5:83:a1:eb:70:cd:53:36:89:69:55:d2:2d:
e6:c9:ce:1f:3a:bc:11:7b:82:60:4c:1e:61:20:c8:d1:b3:a9:
d4:41:a0:39:45:0e:3e:c4:f2:32:d5:64:f6:3d:0a:c8:fa:74:
fe:c9:e1:86:e9:23:e2:a9:4c:d6:43:e3:7d:e9:e0:f3:fa:0c:
83:7b:ec:8c:c2:28:a0:8c:f3:28:ef:f3:ae:7b:50:9c:8f:03:
ab:0a:d7:a4:0a:77:73:fd:41:09:ee:60:d6:b6:8a:0d:26:53:
a3:b0:8f:d2:ed:58:be:63:87:90:b4:7c:67:75:7b:ea:c7:59:
ae:fe:ed:09:a6:27:95:06:c6:1b:34:58:a0:5a:b4:16:85:12:
7e:84:24:04:f2:ad:df:56:63:0f:ca:68:0d:05:2f:6d:ca:f2:
2c:06:2e:50:99:ff:81:ac:00:96:2c:18:fd:82:28:9e:39:a3:
e9:d7:64:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:10 2023 by rpki-client on console-fra.rpki-client.org