Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/oZr-NVbfMxM-mbQsh7LVyMqDDq0.roa
File: oZr-NVbfMxM-mbQsh7LVyMqDDq0.roa (raw, json)
Hash identifier: vSdzqVoX5thCpUahI542IsuVINtYlqzRQQIqNalZkCk=
Subject key identifier: A1:9A:FE:35:56:DF:33:13:3E:99:B4:2C:87:B2:D5:C8:CA:83:0E:AD
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 13D59384
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/oZr-NVbfMxM-mbQsh7LVyMqDDq0.roa
Signing time: Sat 01 Jan 2022 02:52:37 +0000
ROA not before: Sat 01 Jan 2022 02:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.120.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 332764036 (0x13d59384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: Jan 1 02:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a19afe3556df33133e99b42c87b2d5c8ca830ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:59:69:80:95:7a:82:f8:d1:e3:62:9e:7f:bd:
bc:0d:19:49:19:14:cb:a5:78:fa:64:05:42:f8:94:
9e:a0:1a:a8:ea:71:9f:a8:ff:11:86:6f:2f:94:c6:
d2:b8:e6:19:94:01:a7:06:69:2a:b5:bb:a0:7f:dc:
ea:ec:06:7c:5f:78:7e:38:5d:36:9a:6b:b3:30:ae:
b9:90:58:b2:31:c2:99:fd:cf:db:c5:4a:d3:95:be:
14:77:8c:2e:2b:a8:0b:f9:1c:a0:9d:37:57:37:b5:
d8:3c:95:e8:09:29:ff:d7:22:8a:2b:f3:a5:7d:7f:
ce:3f:ea:5c:50:69:39:b6:d3:86:94:e9:ee:56:e3:
35:5d:80:7c:df:d3:f7:a3:04:2b:88:9c:4b:68:72:
64:47:3d:4a:19:ae:47:65:d9:65:60:14:05:15:04:
16:ce:3a:41:14:17:89:9d:b1:7e:c3:1b:1a:d0:da:
c1:44:4c:72:43:99:9d:5a:8c:00:96:3b:16:57:99:
33:b8:a8:fa:d9:e4:77:87:b4:28:de:a1:30:17:01:
20:54:04:15:5b:1c:b0:a7:3d:2c:16:27:ac:06:5a:
cb:cd:f1:20:5f:ed:08:9e:e4:0c:d2:43:ff:7f:e0:
88:bb:5f:b1:c6:e3:0a:0b:c0:9e:f0:19:1f:cb:2a:
5e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9A:FE:35:56:DF:33:13:3E:99:B4:2C:87:B2:D5:C8:CA:83:0E:AD
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/oZr-NVbfMxM-mbQsh7LVyMqDDq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.173.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c7:4a:3d:51:d8:ed:00:72:52:0d:26:80:bf:df:a4:9b:2f:
d3:2c:05:ce:cd:f9:98:63:17:d4:3e:a1:4d:5e:8c:48:da:82:
bb:7e:ca:fe:fb:5a:fe:ed:09:aa:90:b1:52:ee:3f:b2:20:a0:
37:f6:80:9f:43:87:61:9b:0d:1b:29:30:15:01:4b:b8:c7:1b:
e1:cf:09:d0:d1:e3:50:7e:32:ec:8c:cf:5f:a5:36:6a:0c:96:
df:15:a8:46:dc:0c:b0:53:10:e5:05:57:b6:95:a7:c2:9e:34:
5d:00:24:59:42:7a:f6:38:03:3f:79:67:35:bd:35:43:db:cb:
5b:2e:77:18:7e:e9:60:7c:bb:63:64:21:04:2c:06:8a:e0:8f:
98:77:e4:b6:b2:40:57:78:58:cc:e3:ce:8e:2a:82:c5:5e:47:
9f:3a:9e:7a:62:82:66:a4:99:dd:a0:af:95:97:70:6e:09:f6:
53:22:78:f0:60:b8:a1:58:10:8d:be:3c:98:ae:bb:0b:4a:bf:
2c:1b:aa:b8:02:d2:0b:7d:01:0f:1c:a1:33:fa:5d:a9:d7:05:
cb:17:7e:e9:3e:7d:5d:ff:c1:ab:7a:46:3f:5a:de:a3:32:40:
0d:39:73:26:b8:93:5d:e2:99:36:04:91:2e:cc:ad:5c:52:fc:
32:d9:95:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:33 2024 by rpki-client on console-ams.rpki-client.org