Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/OMzOWagszJeplUfIPq3Ul4ggMCc.roa
File: OMzOWagszJeplUfIPq3Ul4ggMCc.roa (raw, json)
Hash identifier: CqQavy8F6gl4cl34IabOOyUQFHX9hAF92U7aXneOt6s=
Subject key identifier: 38:CC:CE:59:A8:2C:CC:97:A9:95:47:C8:3E:AD:D4:97:88:20:30:27
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 14D2D015
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/OMzOWagszJeplUfIPq3Ul4ggMCc.roa
Signing time: Sat 01 Jan 2022 05:51:58 +0000
ROA not before: Sat 01 Jan 2022 05:51:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207066
IP address blocks: 176.103.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349360149 (0x14d2d015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 1 05:51:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38ccce59a82ccc97a99547c83eadd49788203027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:2e:78:2f:20:95:bd:3d:d4:40:80:9e:3c:
0d:3d:a8:3d:83:94:0a:59:b3:a3:4c:eb:dc:f9:50:
c7:b2:d3:db:5c:7e:38:3e:2b:6b:7b:c2:fd:fd:d6:
82:5d:30:0a:13:ca:58:12:94:c9:12:78:ab:89:50:
75:ef:f6:c1:0c:32:ba:be:2a:ec:d2:95:ce:d2:75:
95:87:0b:82:20:07:8d:1b:d5:04:98:3c:68:fe:b8:
c4:06:ea:45:45:d0:c9:89:8d:a8:e7:48:7d:c5:35:
ab:d8:ab:66:d1:60:41:e0:1b:2c:6d:39:b2:59:01:
11:7d:71:1c:50:96:d6:12:60:68:ef:e4:98:04:18:
68:07:a2:36:85:37:a2:08:88:2c:cd:98:07:bd:67:
67:67:2c:ca:3f:13:4b:b6:86:1a:ba:dc:3d:0c:c6:
92:f1:b5:bd:80:19:3e:d0:8c:8c:ca:d4:43:34:f4:
73:cb:63:61:11:e8:b2:95:0d:f4:aa:4c:5a:ed:83:
e7:76:01:74:93:32:fc:c3:7e:a6:2d:f2:c5:87:a9:
82:a4:eb:80:16:49:17:5c:77:18:d6:ce:c2:3d:d1:
e5:38:1f:9b:9b:07:db:d4:ba:4f:dd:2a:37:44:3b:
07:42:54:e0:aa:39:58:89:19:66:b2:63:e7:f7:fe:
5e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CC:CE:59:A8:2C:CC:97:A9:95:47:C8:3E:AD:D4:97:88:20:30:27
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/OMzOWagszJeplUfIPq3Ul4ggMCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.185.0/24
Signature Algorithm: sha256WithRSAEncryption
07:62:a3:d4:42:39:8f:83:de:26:17:4a:b8:bd:c1:d5:d2:94:
78:15:e0:ae:19:3f:e4:73:a2:73:18:6e:fe:52:a0:86:17:6e:
c8:1d:e7:7e:99:88:ca:4f:b1:71:1e:c8:a9:e8:79:86:00:39:
0e:1e:ba:61:79:62:37:a5:03:a2:d1:b2:64:40:b0:01:15:12:
fb:4d:29:18:5c:94:af:4d:e3:81:32:e9:b4:ce:d5:cc:6a:3a:
e3:32:13:3d:06:1f:36:a5:8a:c3:2c:44:55:95:97:98:2f:44:
46:e1:63:02:80:92:d0:2a:be:6c:03:3e:a4:bf:56:8d:05:fb:
66:9d:74:96:ad:4f:f2:c1:4a:48:d9:a8:42:33:26:be:c9:19:
42:48:45:69:59:5d:d8:26:95:e7:64:60:cb:6b:74:98:35:f1:
12:90:f5:24:d2:c6:c1:80:08:d6:9e:2e:56:ed:ea:26:c6:4b:
3f:23:65:7c:27:a4:73:65:5c:0e:cc:2a:79:d8:7c:06:80:bb:
10:b2:61:ea:5c:e8:ee:be:bd:82:4a:4b:ed:89:53:a6:47:bc:
23:9e:78:43:45:48:84:81:0a:b5:da:4e:f1:b2:c4:16:0c:b3:
53:d9:51:76:db:30:6d:c8:f4:c2:c9:ee:82:fd:36:68:ef:e7:
16:7b:00:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:02 2023 by rpki-client on console-ams.rpki-client.org