Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fd220b-5f70-49c2-9cc7-908419d39401/1/ojz7ygE4CauUUcquhwewtv1QCWs.roa
File: ojz7ygE4CauUUcquhwewtv1QCWs.roa (raw, json)
Hash identifier: HlJqZn/JRVkyAdC11xNpi3QC+xiG69OmDrEpEu+EBFM=
Subject key identifier: A2:3C:FB:CA:01:38:09:AB:94:51:CA:AE:87:07:B0:B6:FD:50:09:6B
Certificate issuer: /CN=bf6c1df662374d4aecd0c8b3f84312df42125599
Certificate serial: 052938F7
Authority key identifier: BF:6C:1D:F6:62:37:4D:4A:EC:D0:C8:B3:F8:43:12:DF:42:12:55:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v2wd9mI3TUrs0Miz-EMS30ISVZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fd220b-5f70-49c2-9cc7-908419d39401/1/ojz7ygE4CauUUcquhwewtv1QCWs.roa
Signing time: Sat 01 Jan 2022 14:01:25 +0000
ROA not before: Sat 01 Jan 2022 14:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 194.33.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86587639 (0x52938f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf6c1df662374d4aecd0c8b3f84312df42125599
Validity
Not Before: Jan 1 14:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a23cfbca013809ab9451caae8707b0b6fd50096b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:17:72:fa:cf:93:92:0c:30:2a:2e:c9:3b:87:
f1:1a:02:7d:76:2d:39:a1:7a:11:01:bd:6f:be:4a:
cf:24:39:13:95:5a:66:8b:27:ff:04:d5:ae:0e:a3:
75:08:36:90:e3:2c:65:2e:e1:33:c8:d4:d0:ad:2a:
b8:f3:77:97:67:8b:0b:67:7b:98:07:24:d0:f5:61:
6b:48:bb:8b:47:e0:23:be:e9:d6:b3:a6:8a:d3:98:
b5:b4:56:8b:c3:d4:bc:24:11:ae:9c:ab:c1:bf:ab:
fe:c1:0f:70:68:44:f2:6b:b2:6d:83:f2:15:04:82:
f1:7f:7b:27:64:f3:f7:aa:3e:66:74:f3:b4:22:48:
88:35:f8:92:ee:34:25:ce:56:6e:be:76:b9:9e:f1:
8c:36:19:a5:ef:20:80:eb:e2:0f:a7:58:59:68:d5:
70:45:2d:99:ba:fd:ae:e8:51:b0:dd:78:af:56:f6:
12:e1:52:a7:00:4a:22:dd:d7:ec:91:f9:1a:0d:cf:
e6:73:8f:af:27:d3:60:0b:84:92:cc:a5:bc:e5:95:
a2:1e:56:51:8c:1b:5a:dc:cc:5e:ae:35:54:85:0e:
87:82:7d:d8:4e:74:c3:7f:60:e9:35:6f:7b:30:bc:
c0:01:11:dc:7f:18:d5:3c:f3:6c:d8:75:86:23:78:
d5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3C:FB:CA:01:38:09:AB:94:51:CA:AE:87:07:B0:B6:FD:50:09:6B
X509v3 Authority Key Identifier:
keyid:BF:6C:1D:F6:62:37:4D:4A:EC:D0:C8:B3:F8:43:12:DF:42:12:55:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v2wd9mI3TUrs0Miz-EMS30ISVZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fd220b-5f70-49c2-9cc7-908419d39401/1/ojz7ygE4CauUUcquhwewtv1QCWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fd220b-5f70-49c2-9cc7-908419d39401/1/v2wd9mI3TUrs0Miz-EMS30ISVZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.184.0/24
Signature Algorithm: sha256WithRSAEncryption
23:75:32:2b:32:58:b6:fc:70:81:75:5a:08:7b:1d:cd:06:1a:
25:6b:ad:1d:80:c0:18:cb:71:78:e2:00:3d:04:9b:2a:62:fd:
8e:a1:ff:96:74:fd:4d:46:7b:4b:e3:b0:4e:e0:76:83:b2:42:
a9:2f:22:43:c0:46:31:e3:f5:a8:9e:53:7a:50:e0:a8:0c:72:
f9:d4:08:07:f7:57:4a:a1:f0:bd:06:58:ff:fe:21:6c:03:fc:
0d:71:67:dd:25:0c:66:c3:92:c9:0d:c1:50:3d:d4:f4:c8:0d:
bd:ab:19:3e:5e:f9:f7:05:81:b9:97:38:39:a2:d6:a3:cb:08:
9e:13:cc:8c:0f:a9:a4:f7:a8:fb:64:53:54:6e:3e:74:71:f6:
45:19:d7:aa:07:04:11:30:f3:0e:db:f8:29:d9:85:f0:fa:84:
f5:ac:9b:85:9d:df:b2:90:89:4b:b6:22:74:7d:8f:cd:35:28:
26:06:50:1e:b5:a4:ac:10:16:73:9e:14:a7:52:4a:8c:6e:6a:
7f:97:e8:96:00:3a:18:1c:ec:1e:93:cd:e6:a7:07:38:62:df:
c9:c9:81:13:a5:4b:81:33:20:66:a4:87:f6:1c:a0:ec:07:4a:
80:26:43:d9:c1:70:5e:d4:ca:00:37:fc:b3:54:2f:e8:83:4f:
89:ec:2b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:03 2024 by rpki-client on console-ams.rpki-client.org