Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5403d9-bc76-4e43-a658-d48c91a65007/1/oHLe5F2vNyFinagdC5izbzz_1sE.roa
File: oHLe5F2vNyFinagdC5izbzz_1sE.roa (raw, json)
Hash identifier: 54bjD73rTSJAxlDqCe8YfMKUBP3uga74JHmIyryaE+g=
Subject key identifier: A0:72:DE:E4:5D:AF:37:21:62:9D:A8:1D:0B:98:B3:6F:3C:FF:D6:C1
Certificate issuer: /CN=d15943e7d3ceca453279cbb5127bd9747129c3ee
Certificate serial: 089EAFF8
Authority key identifier: D1:59:43:E7:D3:CE:CA:45:32:79:CB:B5:12:7B:D9:74:71:29:C3:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0VlD59POykUyecu1EnvZdHEpw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5403d9-bc76-4e43-a658-d48c91a65007/1/oHLe5F2vNyFinagdC5izbzz_1sE.roa
Signing time: Sat 01 Jan 2022 08:02:18 +0000
ROA not before: Sat 01 Jan 2022 08:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201435
IP address blocks: 193.39.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144617464 (0x89eaff8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d15943e7d3ceca453279cbb5127bd9747129c3ee
Validity
Not Before: Jan 1 08:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a072dee45daf3721629da81d0b98b36f3cffd6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:32:14:5f:11:8c:92:cf:04:1a:51:26:da:5d:
f9:3e:4b:8c:c9:89:23:54:07:6f:e9:05:49:13:82:
7b:1c:a7:1b:16:5e:3e:16:a8:9e:96:b9:7e:11:0c:
5a:c1:2b:8d:c2:0e:c2:d1:82:e6:f3:e4:1a:c6:1f:
d9:d2:d8:35:7a:fc:b7:3e:6a:85:2d:e7:29:d7:93:
34:08:1f:b3:e9:86:dd:02:12:e1:cf:91:32:64:92:
e9:b8:f7:2b:f1:0a:75:85:e2:a2:3c:5a:26:0a:85:
f7:ef:3d:62:d4:9d:88:ea:56:7d:1b:f6:c7:17:4d:
c8:e0:8d:1b:50:05:72:83:68:fb:28:7e:28:e8:fb:
86:dd:91:d4:fd:ba:6a:9b:ba:d6:64:d0:01:15:5e:
80:3d:7f:e4:37:f1:fd:cc:06:f8:3c:a6:4f:6c:48:
7e:50:4f:25:0e:25:21:cb:42:39:86:65:2b:bd:74:
13:5e:44:0e:8b:e9:65:1f:0f:05:92:1c:e8:fe:07:
de:73:82:e3:9a:cb:1b:52:59:ee:cf:3b:85:53:fb:
13:41:51:86:9f:df:ee:2d:8d:74:7a:59:49:63:6c:
7c:71:b5:ce:f5:23:d3:41:98:fd:cc:d3:e9:71:9f:
d2:16:4d:7e:aa:9a:b1:49:c3:5a:09:67:b5:0b:d8:
e0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:72:DE:E4:5D:AF:37:21:62:9D:A8:1D:0B:98:B3:6F:3C:FF:D6:C1
X509v3 Authority Key Identifier:
keyid:D1:59:43:E7:D3:CE:CA:45:32:79:CB:B5:12:7B:D9:74:71:29:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0VlD59POykUyecu1EnvZdHEpw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5403d9-bc76-4e43-a658-d48c91a65007/1/oHLe5F2vNyFinagdC5izbzz_1sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5403d9-bc76-4e43-a658-d48c91a65007/1/0VlD59POykUyecu1EnvZdHEpw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.216.0/22
Signature Algorithm: sha256WithRSAEncryption
ef:47:c2:a9:20:e0:32:1d:07:b0:ca:d8:20:07:1f:3a:f4:2b:
4e:9d:92:24:e8:ec:86:d0:72:b8:ec:da:72:9b:eb:94:af:7d:
79:c7:d6:04:40:0f:be:f7:78:4d:8b:79:15:cc:a4:65:d7:07:
44:f1:0e:4b:68:e0:4b:6f:e4:da:ba:74:1a:68:f8:86:dc:ef:
ce:d4:eb:87:ac:1c:fb:40:4d:a1:cb:7c:f4:85:c3:fb:b5:a9:
93:2a:2a:bd:73:fe:87:b7:3e:4f:3a:19:a6:0f:01:03:4b:69:
ea:c8:f0:54:6f:f1:f1:9d:18:10:71:a3:75:1b:76:e0:0f:59:
36:e2:c6:41:5a:df:69:26:cb:d6:19:ec:c6:02:e6:f4:17:66:
ec:10:0d:49:16:e6:c6:ee:28:77:ce:12:f2:b8:53:6c:84:85:
b3:88:dd:ba:a0:67:6a:2c:b8:5f:b0:df:d2:b4:de:23:dc:06:
55:e9:04:81:9d:06:c7:64:42:00:a2:90:5b:ea:b6:0b:12:19:
96:60:b7:a8:0e:e6:f6:4a:22:b5:47:df:bb:87:22:93:d1:8d:
81:80:c7:3b:9d:84:c8:70:af:7d:ac:81:41:76:0a:33:05:40:
e6:91:43:ca:16:15:29:6c:d7:8a:51:b9:4b:56:64:22:76:13:
8f:bd:11:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org