Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/OiZv3Q-3GrVoRSMwV-f1vk-BNA8.roa
File: OiZv3Q-3GrVoRSMwV-f1vk-BNA8.roa (raw, json)
Hash identifier: JmrglTSnUXmGalq3qHELAD3NTt8lvVxK/GE7byihCSM=
Subject key identifier: 3A:26:6F:DD:0F:B7:1A:B5:68:45:23:30:57:E7:F5:BE:4F:81:34:0F
Certificate issuer: /CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Certificate serial: 0181DDCC023CD319DD9E82A512ACDDFADC94
Authority key identifier: E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/OiZv3Q-3GrVoRSMwV-f1vk-BNA8.roa
Signing time: Fri 08 Jul 2022 12:32:23 +0000
ROA not before: Fri 08 Jul 2022 12:32:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25054
IP address blocks: 81.90.192.0/20 maxlen: 20
185.94.36.0/22 maxlen: 22
212.101.32.0/19 maxlen: 19
130.193.96.0/21 maxlen: 21
2a02:1318::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:cc:02:3c:d3:19:dd:9e:82:a5:12:ac:dd:fa:dc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Validity
Not Before: Jul 8 12:32:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a266fdd0fb71ab56845233057e7f5be4f81340f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3d:12:94:6f:ce:46:fc:25:b4:67:e5:d8:55:
a5:f4:59:d1:17:2f:5b:a3:ef:96:63:3e:2e:47:79:
90:7b:8b:a5:14:c6:ab:a4:bf:5d:a6:99:7f:02:c4:
de:f6:49:4f:79:b8:b4:db:56:73:f7:54:6e:9b:c8:
90:ab:ef:69:28:ec:ef:33:73:4e:23:bb:7c:2e:03:
ff:7f:06:b7:35:34:92:54:9c:aa:94:83:70:e7:dc:
a1:1f:30:5f:45:51:ad:d0:4c:6b:88:d8:75:61:80:
43:d3:a7:19:d2:41:cb:7f:26:dd:01:d8:02:30:5b:
88:b6:81:87:88:4e:ca:47:4d:d7:e7:a1:5e:51:c2:
53:b2:27:35:d1:20:ea:8f:75:96:39:76:b8:0c:a8:
77:79:9f:e1:48:df:7d:19:49:ad:bf:5c:02:df:1f:
45:e8:c2:0b:68:99:6d:b1:2e:c2:cb:64:30:67:0e:
fe:61:70:10:0e:1f:e5:98:1f:fa:52:25:4c:ba:5f:
17:44:12:59:98:ed:03:21:74:84:7c:61:e2:8a:b9:
cd:ea:9f:07:ed:f5:25:18:d2:bc:85:b7:d9:02:0f:
85:af:01:aa:43:19:e9:1d:47:0a:d4:b6:df:6d:25:
8b:88:09:bf:ec:3e:4a:ff:8d:5d:ae:61:ae:5e:25:
61:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:26:6F:DD:0F:B7:1A:B5:68:45:23:30:57:E7:F5:BE:4F:81:34:0F
X509v3 Authority Key Identifier:
keyid:E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/OiZv3Q-3GrVoRSMwV-f1vk-BNA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/458aboTAJ378tW2UKw615FZHESk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.192.0/20
130.193.96.0/21
185.94.36.0/22
212.101.32.0/19
IPv6:
2a02:1318::/32
Signature Algorithm: sha256WithRSAEncryption
77:0c:8c:e4:54:b7:28:cf:4d:7a:28:c6:9b:fd:8f:4d:2e:43:
76:9d:bb:49:b2:4c:49:d6:99:0d:d7:cf:eb:5d:6d:7b:ed:c7:
f9:e5:6e:78:e9:28:96:37:b4:fb:78:5a:6a:61:b0:46:5d:a0:
3d:c3:db:01:3f:24:4d:33:9b:02:81:93:f9:9c:7e:06:7d:c1:
93:29:9c:a2:96:e7:b3:62:d7:fb:03:02:50:12:00:d7:1b:1f:
10:13:2a:48:ef:6e:8e:c5:58:1d:ab:be:e6:d6:9e:86:67:4a:
55:8f:28:84:e0:ff:7b:95:d0:ac:ea:8a:35:96:c8:a3:8e:de:
12:bc:1b:f4:be:cc:89:3e:a2:92:c0:75:2d:64:f2:e1:b2:64:
07:e5:d7:58:42:a8:b8:47:4a:80:22:c5:f3:c8:9c:f8:81:98:
6f:0b:70:f6:4c:e5:ed:8f:7f:db:92:41:fa:6f:59:f8:58:d4:
12:d1:32:27:a7:9f:11:b1:60:ad:23:e0:bf:10:70:56:36:57:
b2:b5:6d:59:b0:05:ae:7e:39:65:ca:ac:e3:76:35:0a:8c:90:
e6:dc:05:85:02:85:31:87:7e:ad:3b:de:2b:b4:a8:a1:ce:01:
f1:a6:79:d3:9d:9c:0b:b1:b6:ef:1d:7a:ed:55:26:24:e6:69:
fa:0f:2d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:27 2024 by rpki-client on console-ams.rpki-client.org