Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ou7TjNHptzd9KFFOaLi5PmfWo4M.roa
File: ou7TjNHptzd9KFFOaLi5PmfWo4M.roa (raw, json)
Hash identifier: RKTi0Hv1LFYtzB1xsqDrlHiU5bQOcKohjWH8dHUn6mU=
Subject key identifier: A2:EE:D3:8C:D1:E9:B7:37:7D:28:51:4E:68:B8:B9:3E:67:D6:A3:83
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F52C35
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ou7TjNHptzd9KFFOaLi5PmfWo4M.roa
Signing time: Sat 01 Jan 2022 13:06:25 +0000
ROA not before: Sat 01 Jan 2022 13:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196914
IP address blocks: 84.47.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351611957 (0x14f52c35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2eed38cd1e9b7377d28514e68b8b93e67d6a383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9a:8e:2a:b3:ed:d4:18:fc:68:c9:82:01:36:
34:19:81:17:61:39:ae:fd:1a:22:8f:84:99:c3:aa:
4c:11:5e:a6:6e:33:62:ce:76:38:f8:50:d4:a8:7b:
b8:37:70:96:f9:be:ab:5a:f6:0c:86:b9:37:6f:dd:
65:49:f6:00:65:13:c4:3c:9f:e4:ca:ce:8b:fb:3c:
d8:14:32:e1:f5:3d:7d:3b:64:f3:f5:ad:2a:7b:30:
68:ad:45:4c:09:46:65:1d:5a:c0:8b:7e:a7:52:86:
aa:35:20:03:70:42:7e:9b:6a:3a:0d:22:c7:a4:80:
b1:1a:33:9d:d9:90:eb:c9:47:6e:56:f9:14:26:57:
0c:d0:0d:f5:0f:a3:f8:9f:0c:38:d1:03:7b:0c:93:
15:08:8c:d4:d5:da:5d:27:1c:52:87:dc:39:db:01:
d1:d0:fc:8f:e9:78:c7:97:67:25:02:aa:c4:f3:cb:
83:00:0e:d4:c9:40:fd:cc:a4:89:a7:06:b5:34:95:
a0:99:b9:f4:e4:3e:38:3b:0f:01:a9:91:26:37:91:
f0:a9:b6:9d:a7:3a:ec:1a:3a:43:b1:44:17:fd:02:
39:eb:b1:9a:8e:f6:4d:e4:4f:40:9c:e3:78:f3:96:
e2:82:52:1f:46:79:af:f9:7d:21:76:5e:44:a2:c1:
00:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EE:D3:8C:D1:E9:B7:37:7D:28:51:4E:68:B8:B9:3E:67:D6:A3:83
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ou7TjNHptzd9KFFOaLi5PmfWo4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.148.0/23
Signature Algorithm: sha256WithRSAEncryption
14:3e:5f:9e:8f:bc:c7:56:d9:80:f2:d5:c6:8f:60:d5:de:9f:
5b:a1:70:d6:c1:98:be:7f:48:52:04:95:50:e5:eb:26:bd:47:
0b:f7:7f:8e:45:bf:a0:68:bf:76:24:5b:12:39:aa:27:5f:fe:
e6:f3:36:1c:3f:bb:87:c0:b7:e8:b0:ee:76:93:02:ed:ca:7a:
74:ca:55:95:92:e8:04:1e:c1:6f:56:d0:35:ec:bf:12:db:b5:
97:e0:1a:3b:7b:fc:c9:90:24:75:72:6e:9e:0a:53:6d:d1:d4:
65:58:f6:e8:50:61:52:16:f2:1b:67:77:cf:76:aa:d4:b5:81:
a8:a0:7a:dc:d3:9f:d7:ff:94:23:df:4a:61:33:65:45:76:e5:
c8:b2:eb:31:b3:71:f8:8d:b7:a2:97:70:b5:af:33:d6:ed:11:
33:eb:4a:4d:f7:4f:5c:74:fd:c9:b3:e0:4f:19:5a:f0:26:e0:
4b:50:93:f4:32:76:d2:28:8e:b2:c4:f2:84:38:2c:05:e1:09:
cf:2c:81:f5:47:b1:33:bd:3a:97:11:51:6e:54:59:60:a7:95:
09:aa:09:3c:d0:24:33:5a:1a:55:32:62:79:13:bd:8b:de:23:
ec:38:61:51:cd:6f:46:9f:ea:e8:b6:3b:0f:c5:67:b5:f1:39:
f7:92:02:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org