Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/1-OuREDVvKtbFVmyfsBhfwrG2ojA.roa
File: 1-OuREDVvKtbFVmyfsBhfwrG2ojA.roa (raw, json)
Hash identifier: r9KId/uuIN8w8Y4CvfsY970hHX7rjS5Hl7sOQkYbc1M=
Subject key identifier: F8:EB:91:10:35:6F:2A:D6:C5:56:6C:9F:B0:18:5F:C2:B1:B6:A2:30
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 35EA9320
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/1-OuREDVvKtbFVmyfsBhfwrG2ojA.roa
Signing time: Sat 01 Jan 2022 03:02:10 +0000
ROA not before: Sat 01 Jan 2022 03:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 82.150.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904565536 (0x35ea9320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 03:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8eb9110356f2ad6c5566c9fb0185fc2b1b6a230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:ce:2b:90:21:c3:ad:3a:1f:e2:cf:ee:5d:
db:f9:87:67:3a:f5:96:d0:de:97:b5:7f:f7:2d:7b:
37:b8:1a:d3:d7:de:d9:30:e2:0d:cd:b6:e3:c6:0c:
71:44:b8:49:c2:53:dd:90:7d:7c:f2:11:df:8d:b1:
8e:2f:91:ea:b6:aa:cc:3b:72:31:c5:9e:fa:b6:ce:
b3:79:99:c7:70:ea:8c:98:a6:f9:a3:39:ac:3c:98:
6e:fa:a5:8f:19:b1:72:f9:d5:65:3f:11:50:9a:f8:
42:4b:62:57:d0:35:3f:27:42:80:cc:3b:2d:2b:0f:
6d:5c:24:e0:05:05:d1:a1:af:e9:0b:c5:b2:52:8b:
d4:9d:0a:91:be:db:f2:17:47:06:8c:53:8f:71:01:
e1:15:37:9d:5a:d0:c5:74:23:8c:1c:97:a8:7b:63:
db:6f:72:7b:30:e6:b8:53:ca:fc:5e:77:f7:05:ef:
5d:f0:37:83:3d:7f:be:53:84:7c:7b:92:19:97:53:
0e:52:de:30:d2:29:1d:f7:d9:a4:05:2c:81:8d:de:
8a:7f:66:7b:2a:40:f4:9b:55:8e:86:09:3d:3e:49:
ee:46:4a:41:c0:b0:44:a6:b9:5f:b6:77:a7:ab:ee:
b2:9a:dc:ed:32:ea:7d:bc:0b:ba:45:d0:02:92:b4:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EB:91:10:35:6F:2A:D6:C5:56:6C:9F:B0:18:5F:C2:B1:B6:A2:30
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/1-OuREDVvKtbFVmyfsBhfwrG2ojA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.137.0/24
Signature Algorithm: sha256WithRSAEncryption
32:47:7e:ed:52:8c:43:c4:e9:b0:6f:32:9f:7b:b9:2a:67:de:
7e:ac:c3:f0:0d:0f:64:f4:06:6b:ee:6f:02:68:52:2f:95:de:
b7:3c:08:45:46:db:2a:b6:74:16:2e:16:07:c6:2a:77:87:ae:
22:4d:16:c5:0d:01:af:8a:f8:1e:94:26:ce:96:03:78:f7:3b:
16:85:15:90:b4:58:a3:b1:bb:c4:15:4c:02:df:d3:db:a7:a5:
39:aa:fd:b6:d2:85:5c:41:b6:67:2d:cf:0b:34:a8:61:62:5d:
96:1f:f5:33:5e:71:25:f4:28:10:47:91:3a:83:bb:43:5b:73:
05:cb:6c:95:c3:1c:94:22:fb:b6:b0:25:65:8d:75:16:cc:7a:
27:5f:b0:d6:5e:1d:0a:70:b4:c7:21:b3:6e:60:50:13:d5:79:
9f:95:3f:42:cc:c0:5f:6b:ae:9b:1b:41:15:32:4a:c7:25:7c:
08:eb:c8:3d:da:a3:48:89:72:55:0a:d8:8a:d8:9c:2b:67:7f:
63:b8:40:50:9b:5e:fb:09:94:a5:ee:1a:4b:fb:b4:fa:37:28:
b0:10:99:01:b3:a2:6e:10:c6:73:9b:56:26:fe:7b:32:64:9f:
f1:60:e8:cb:10:76:a0:40:14:85:dc:d6:e3:26:86:61:b4:6b:
45:f0:d5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org