Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/oIgTFvUG9abelYzA6u0E4PHUqs4.roa
File: oIgTFvUG9abelYzA6u0E4PHUqs4.roa (raw, json)
Hash identifier: AsCMGBdSmcwUguQwn5vyox3Bpalbfn40/QDRH/nqUHs=
Subject key identifier: A0:88:13:16:F5:06:F5:A6:DE:95:8C:C0:EA:ED:04:E0:F1:D4:AA:CE
Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Certificate serial: 038C0075
Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/oIgTFvUG9abelYzA6u0E4PHUqs4.roa
Signing time: Thu 10 Feb 2022 14:04:09 +0000
ROA not before: Thu 10 Feb 2022 14:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211246
IP address blocks: 185.232.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59506805 (0x38c0075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Validity
Not Before: Feb 10 14:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0881316f506f5a6de958cc0eaed04e0f1d4aace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:52:1b:fa:23:94:94:00:18:69:1d:0a:7e:93:
12:72:56:79:ef:97:fb:8c:fc:e5:f8:10:aa:6b:5a:
53:21:ad:51:e5:a2:1e:08:9a:30:e5:3e:95:40:cc:
73:09:e7:6b:ae:bd:c4:e1:d5:e5:99:29:e1:e2:d5:
2c:0f:a3:77:d0:84:7a:30:0c:af:8d:48:2b:78:5f:
9a:e9:a3:09:6c:44:43:19:79:ab:c3:3e:19:98:68:
94:06:53:4a:8c:c0:60:18:11:c8:1e:ac:97:f9:8f:
aa:24:74:b0:77:15:c7:fc:e0:41:2d:f7:56:bd:2c:
43:3d:65:10:2b:ae:a5:a6:47:9e:ba:13:18:57:be:
f0:5d:3a:6f:7c:05:5e:9a:7c:02:b8:04:0c:c7:af:
a2:1a:56:fc:d8:25:21:14:4c:c4:53:43:c0:96:24:
d2:e8:21:b8:50:f6:9c:eb:26:f5:76:2d:35:ba:72:
7c:6c:77:bf:96:e5:2b:49:3a:ae:6f:41:63:56:dc:
32:15:24:4f:c5:aa:cc:56:ae:cd:6e:a4:6d:e0:a6:
22:62:22:ca:65:d0:10:4e:b9:b8:ff:ec:69:12:56:
f1:7d:b0:8c:8b:91:00:91:5e:3a:45:4a:2c:96:0d:
a9:59:53:5a:30:cc:0e:b9:67:46:94:1f:70:8f:3a:
23:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:88:13:16:F5:06:F5:A6:DE:95:8C:C0:EA:ED:04:E0:F1:D4:AA:CE
X509v3 Authority Key Identifier:
keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/oIgTFvUG9abelYzA6u0E4PHUqs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.235.0/24
Signature Algorithm: sha256WithRSAEncryption
44:22:7c:7b:23:95:e9:f1:27:38:60:f4:6f:34:14:46:e2:cc:
84:5c:a7:c1:b7:bb:ca:f7:b2:2f:f7:24:38:b6:86:cf:e4:d7:
cc:c4:2d:35:07:6d:a4:7b:e1:a7:3a:e1:68:a1:1c:c6:26:d8:
37:df:be:5d:a2:bc:04:51:22:3f:27:6c:e0:18:bf:6e:8c:61:
4a:f9:85:f1:31:de:4a:33:3c:e7:80:2e:00:a1:2d:d1:d3:1f:
c2:62:b9:8b:49:0a:55:83:3d:47:77:8c:b1:68:79:59:d0:0c:
d5:78:74:d1:f0:4b:69:03:69:bd:a6:45:e4:2c:63:ae:15:b7:
14:2a:38:ee:df:3f:20:05:30:72:0b:47:26:7d:82:56:3a:ae:
e7:97:bf:de:ab:fa:6f:07:36:8d:bd:f8:fa:a3:7d:27:31:75:
0c:77:53:74:e7:08:8f:23:62:7b:e2:01:5f:cb:c6:56:31:15:
a6:e5:49:c6:ed:af:e1:cb:13:3f:2f:91:16:20:46:b7:02:ca:
9a:ab:7c:15:9e:77:67:e9:31:f1:f4:81:6c:f4:03:96:79:14:
c7:a3:59:f4:4a:92:8d:57:61:8b:bd:91:99:8b:30:cf:d4:7e:
80:6d:97:c8:3d:f3:86:7b:b1:df:7d:33:bc:3c:53:12:f2:6d:
39:f6:b3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:02 2024 by rpki-client on console-ams.rpki-client.org