Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/owBsc_h0JWXmQKtrU0BN-Mezioc.roa
File: owBsc_h0JWXmQKtrU0BN-Mezioc.roa (raw, json)
Hash identifier: 1aiIivm46pRFdFxIENW7xOvIhuPow2Ax9Z+p44DEdKI=
Subject key identifier: A3:00:6C:73:F8:74:25:65:E6:40:AB:6B:53:40:4D:F8:C7:B3:8A:87
Certificate issuer: /CN=5dfb074d47b7e0bc891ed06ea8fc67e38ecf50a1
Certificate serial: 04B5D2B3
Authority key identifier: 5D:FB:07:4D:47:B7:E0:BC:89:1E:D0:6E:A8:FC:67:E3:8E:CF:50:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfsHTUe34LyJHtBuqPxn447PUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/owBsc_h0JWXmQKtrU0BN-Mezioc.roa
Signing time: Sat 01 Jan 2022 06:02:07 +0000
ROA not before: Sat 01 Jan 2022 06:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203437
IP address blocks: 194.77.185.0/24 maxlen: 24
194.105.40.0/21 maxlen: 21
193.218.8.0/22 maxlen: 22
2a02:db00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79024819 (0x4b5d2b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfb074d47b7e0bc891ed06ea8fc67e38ecf50a1
Validity
Not Before: Jan 1 06:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3006c73f8742565e640ab6b53404df8c7b38a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:cc:b5:71:ff:13:d0:d2:9a:29:b0:55:27:
22:fb:93:ed:12:a8:d7:18:39:ce:e1:75:25:48:e1:
23:21:1d:96:50:4c:9a:d4:b2:a1:df:a2:5e:68:64:
8a:5d:25:f2:8e:45:d0:1b:90:5b:09:00:82:d3:57:
df:86:ac:bb:5e:03:2d:84:81:8e:0c:2d:9e:e4:63:
7d:a6:14:89:f5:ae:2b:29:2b:f0:34:8c:e0:ca:ef:
04:86:17:0b:03:58:c5:99:ea:b1:48:6a:1c:0c:54:
1a:40:39:d9:36:e3:42:e2:22:6e:95:02:6f:94:6c:
49:9b:15:83:28:87:da:94:b3:3b:5a:8f:92:99:95:
dc:47:62:11:21:cf:88:68:a3:5b:fb:4a:b5:57:d3:
c2:e1:3d:db:0a:57:ab:65:bd:e6:59:d8:a7:15:d6:
89:f8:0e:f9:b4:28:e9:7a:f6:10:88:5b:0b:b4:bf:
10:e9:ec:3c:6a:d6:2a:cf:ba:33:ff:ad:63:44:99:
55:fb:50:9d:86:84:c4:35:1e:07:cb:9b:62:15:26:
59:72:80:fb:2f:d0:69:f4:e5:2e:15:40:3f:6b:28:
6b:7b:c7:74:2f:de:6a:34:56:18:c5:d7:e3:8f:54:
2a:e2:08:cc:25:df:c1:88:b8:c2:10:79:c6:41:b5:
59:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:00:6C:73:F8:74:25:65:E6:40:AB:6B:53:40:4D:F8:C7:B3:8A:87
X509v3 Authority Key Identifier:
keyid:5D:FB:07:4D:47:B7:E0:BC:89:1E:D0:6E:A8:FC:67:E3:8E:CF:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfsHTUe34LyJHtBuqPxn447PUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/owBsc_h0JWXmQKtrU0BN-Mezioc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/XfsHTUe34LyJHtBuqPxn447PUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.8.0/22
194.77.185.0/24
194.105.40.0/21
IPv6:
2a02:db00::/29
Signature Algorithm: sha256WithRSAEncryption
88:43:4a:55:16:16:ce:44:c7:67:c8:7c:65:8c:0e:3b:64:45:
51:0c:eb:bf:e5:4d:69:f7:30:55:53:17:6a:9a:be:2b:b5:14:
1c:c1:9e:60:1f:05:fa:d3:02:f3:6b:67:30:c5:90:89:c0:b8:
e0:6b:e4:9c:20:3a:79:69:ec:89:70:61:47:95:e7:0b:ab:48:
1a:71:af:7d:5f:03:12:05:42:17:76:3f:34:b7:dd:fb:a9:4c:
9a:e7:23:21:86:d5:af:1d:42:ef:8b:bb:5a:d9:b0:55:e0:f5:
db:4d:60:d7:15:a7:61:4d:93:fc:b5:79:46:55:2f:41:6f:83:
ad:ad:79:85:ba:10:6f:7d:78:2a:cc:0f:0c:c7:30:5d:c1:60:
ca:0f:95:16:5e:6a:20:75:bd:44:48:fb:a8:6e:2f:c5:1e:00:
9f:46:dc:b3:6a:98:1d:00:a8:ed:76:75:40:e1:59:9b:a9:7c:
2e:7a:14:79:2d:77:59:8e:a1:33:93:eb:3f:a0:79:cc:ce:76:
2b:38:c8:32:15:59:47:ea:e7:0d:f1:22:29:5d:86:1d:88:65:
1e:ba:3a:d9:93:18:73:95:ec:b7:09:ba:b2:4e:e8:53:14:aa:
5f:d5:2f:35:c9:3c:3a:9c:8f:08:08:5e:ef:23:17:9d:d4:57:
df:5b:11:f0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:23 2024 by rpki-client on console-ams.rpki-client.org