Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oZPa4eBnhyzvcsKwd2Pfen2S4wk.roa
File: oZPa4eBnhyzvcsKwd2Pfen2S4wk.roa (raw, json)
Hash identifier: NwkZ8Q6d4OHUFL9J7qJ/THwYuWwWKlb/Uob4HnalfeM=
Subject key identifier: A1:93:DA:E1:E0:67:87:2C:EF:72:C2:B0:77:63:DF:7A:7D:92:E3:09
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0181D29329A73BF0F86202DE02DDFCFB8B5D
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oZPa4eBnhyzvcsKwd2Pfen2S4wk.roa
Signing time: Wed 06 Jul 2022 08:14:28 +0000
ROA not before: Wed 06 Jul 2022 08:14:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 185.199.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:93:29:a7:3b:f0:f8:62:02:de:02:dd:fc:fb:8b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 6 08:14:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a193dae1e067872cef72c2b07763df7a7d92e309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fb:44:0f:d3:bc:d3:d1:22:80:e7:59:47:c8:
c8:28:e7:98:95:f3:af:c4:6d:e6:b3:7a:27:ee:4e:
61:6a:8d:42:6a:a8:c6:84:74:55:49:e6:b7:c9:1c:
8e:2b:79:64:8e:29:e3:23:5b:92:51:1b:5f:8a:03:
a9:cd:d3:b4:a8:d0:20:2e:56:e0:9f:51:93:cd:d1:
ac:9b:50:5d:25:c5:19:9b:3d:bc:9e:b6:3d:e7:2c:
ff:20:7f:70:33:dc:fd:1c:fa:ac:4c:70:ca:c6:4f:
6f:1d:63:12:36:20:c2:2c:a8:40:c1:eb:40:f2:f1:
87:53:4f:13:8d:c7:88:1b:4e:46:08:66:53:9d:61:
df:e1:80:ee:be:c5:a2:8a:0c:b5:cb:84:6d:21:41:
6b:76:7e:ce:8d:be:c9:39:92:3a:4c:da:9c:95:58:
30:f0:6c:fb:05:78:9f:43:eb:ee:0a:e1:f0:b8:b5:
18:9f:1b:08:17:20:f2:cf:99:52:80:2e:72:42:f0:
a2:dd:18:93:a9:85:14:bf:1c:cf:04:57:97:52:99:
36:d2:3d:04:8c:27:45:ea:d9:34:04:87:29:c2:a1:
20:1b:18:22:b9:82:bf:6b:c9:48:12:58:52:86:11:
5f:2d:11:d6:17:16:d6:1c:16:5a:55:79:bb:ec:2a:
cd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:93:DA:E1:E0:67:87:2C:EF:72:C2:B0:77:63:DF:7A:7D:92:E3:09
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oZPa4eBnhyzvcsKwd2Pfen2S4wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.150.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:eb:f3:5a:fe:be:b1:d3:d2:14:9b:73:70:0c:bc:fc:e9:33:
04:33:70:57:f3:0a:8c:ab:aa:b1:33:c2:28:c0:03:c9:37:fa:
d9:fc:10:6a:02:82:9f:7d:ed:6b:f9:03:c3:84:3e:1f:50:a1:
53:e7:26:3d:29:dd:81:f9:c0:45:7d:9d:e3:f7:c6:33:ae:bf:
e3:b1:02:3a:66:9f:c7:ac:2b:06:33:41:64:f7:b2:11:16:15:
1d:79:b0:9c:f4:f3:84:67:ee:c9:69:ae:f9:7a:ee:c2:56:a7:
7b:de:98:f3:73:bf:07:0e:87:ec:87:ce:84:e0:4f:20:42:a6:
8b:1f:c7:2f:ef:e2:05:73:c8:33:53:e6:2a:cd:48:ca:89:fc:
f9:24:07:90:c2:0a:d4:16:ce:ae:db:22:d9:50:49:f1:34:e4:
c5:26:2c:35:a5:d7:2b:e9:df:11:56:17:a9:fb:5f:57:be:f1:
7d:a8:d4:97:39:a8:c6:52:1e:8b:f2:82:4a:20:7d:92:23:96:
bf:21:ea:0b:7c:e5:72:e3:49:6d:7a:74:75:65:9e:af:67:0b:
4c:8b:12:a6:6a:1a:0e:bc:03:97:d9:8b:84:45:48:b7:ab:27:
36:b5:a6:f1:6b:4b:73:92:00:78:6e:00:f4:2b:0d:87:85:6e:
30:51:5b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org