Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/oIgarmFJw3d_hBFQ-08pbl1dcJE.roa
File: oIgarmFJw3d_hBFQ-08pbl1dcJE.roa (raw, json)
Hash identifier: 7khPOuoSfUQElZ05JFyjRKAQYVo0eGtqnbXwj1p3k54=
Subject key identifier: A0:88:1A:AE:61:49:C3:77:7F:84:11:50:FB:4F:29:6E:5D:5D:70:91
Certificate issuer: /CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Certificate serial: 0184BE88666D3CF672D0F4E081CCF7BD7EFF
Authority key identifier: 1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/oIgarmFJw3d_hBFQ-08pbl1dcJE.roa
Signing time: Mon 28 Nov 2022 13:58:40 +0000
ROA not before: Mon 28 Nov 2022 13:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 212.46.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:88:66:6d:3c:f6:72:d0:f4:e0:81:cc:f7:bd:7e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f2fbb037b2d98c474b62a60ec88da0cd2e37c61
Validity
Not Before: Nov 28 13:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0881aae6149c3777f841150fb4f296e5d5d7091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fb:d6:26:87:75:45:64:09:66:da:6d:7a:30:
e9:12:74:3c:3a:bd:3f:e7:29:10:2a:da:1b:cd:44:
00:37:0a:17:73:8d:f4:8e:7f:00:ce:12:c0:cf:0b:
76:97:06:4a:12:0a:f4:eb:3c:72:c1:0e:c6:92:81:
a3:5d:a8:5f:90:24:30:93:d1:90:69:98:0b:fd:d9:
9b:fe:c9:29:7c:d1:e0:ad:3a:78:d2:12:b1:d1:3f:
1f:82:01:11:68:47:fc:c5:a3:68:d9:8a:59:7e:33:
52:c8:93:d7:1b:39:f3:8b:2c:07:1d:e3:f4:fd:ff:
9c:3a:7f:40:c2:b2:10:9a:c9:79:3d:c2:55:52:e9:
02:1b:2b:a0:7b:82:6e:22:74:80:8a:8f:df:aa:68:
83:8b:eb:c3:96:26:ec:e8:ef:55:80:d0:42:4b:2e:
9a:95:7f:cb:38:6a:f5:35:67:aa:f2:ca:de:7f:a9:
6f:9f:68:83:ac:fa:0c:ab:72:a2:a9:b7:57:f9:c5:
42:e3:fa:44:fd:0b:dc:2b:b3:67:bd:9a:94:a2:02:
37:a1:0b:18:85:9f:dc:48:20:f9:9f:46:5c:44:c5:
ed:fd:71:a2:53:09:82:43:27:c5:02:8e:d3:8b:96:
cb:3f:93:11:74:d6:5a:ca:87:87:19:89:ab:e6:1e:
64:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:88:1A:AE:61:49:C3:77:7F:84:11:50:FB:4F:29:6E:5D:5D:70:91
X509v3 Authority Key Identifier:
keyid:1F:2F:BB:03:7B:2D:98:C4:74:B6:2A:60:EC:88:DA:0C:D2:E3:7C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hy-7A3stmMR0tipg7IjaDNLjfGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/oIgarmFJw3d_hBFQ-08pbl1dcJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9c797-eb37-4ac2-9593-c44e9ae5f239/1/Hy-7A3stmMR0tipg7IjaDNLjfGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.39.0/24
Signature Algorithm: sha256WithRSAEncryption
60:c9:cd:c0:5e:fd:2a:3d:aa:da:54:b1:a2:ce:62:e0:d6:67:
1b:ec:15:f3:24:85:60:46:c7:a0:c1:45:95:3b:09:f4:29:97:
6a:3d:3f:d2:f8:49:1f:42:0e:24:ef:16:65:c0:bf:c8:87:9d:
57:d4:c8:bf:e3:d3:e0:47:c6:4e:4c:e2:73:c2:e4:0e:6b:49:
f5:b0:ed:16:61:2d:dd:47:f4:87:a3:6b:26:5a:ec:08:9f:e5:
3b:b4:ed:8c:f7:08:5c:b7:c4:db:53:83:21:86:ef:b9:9a:e8:
03:3f:25:24:ee:c0:24:1c:d8:cb:88:f9:7e:35:72:3f:27:4b:
a5:df:aa:94:f4:84:8e:99:73:a6:cd:74:c2:d1:e9:68:13:86:
1f:e7:dc:23:af:cd:6e:72:5a:74:a6:c3:c6:88:e6:a9:0f:08:
78:22:5d:d9:19:17:4d:ab:ff:ef:b7:99:4a:ce:80:0c:72:63:
c7:6f:e0:7e:93:fd:36:30:c1:15:65:0b:d6:12:ef:7c:8a:03:
5b:db:6b:9b:b9:3d:49:27:62:4c:40:d0:47:a8:3d:fc:7d:ab:
08:70:f4:1d:d5:c9:02:fa:b7:8f:50:c8:ca:50:5d:07:55:15:
1a:ec:9d:2c:ae:17:13:36:d4:bf:45:96:47:3c:8f:43:8a:c6:
c6:96:73:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-fra.rpki-client.org