Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oP4EvpomZjmqTJ1cmkbBFmr8kNE.roa
File: oP4EvpomZjmqTJ1cmkbBFmr8kNE.roa (raw, json)
Hash identifier: u2img4j+aARR9tR2MVBEz/+gV/HVGAJbcowW1sC+pVo=
Subject key identifier: A0:FE:04:BE:9A:26:66:39:AA:4C:9D:5C:9A:46:C1:16:6A:FC:90:D1
Certificate issuer: /CN=a0e381b6e76cb9520e8d8f56776eca0fe176cc40
Certificate serial: 018446E392F4E371AF97AF413D8F98DCCF28
Authority key identifier: A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOOBtudsuVIOjY9Wd27KD-F2zEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oP4EvpomZjmqTJ1cmkbBFmr8kNE.roa
Signing time: Sat 05 Nov 2022 08:23:50 +0000
ROA not before: Sat 05 Nov 2022 08:23:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 185.164.72.0/24 maxlen: 24
185.164.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:46:e3:92:f4:e3:71:af:97:af:41:3d:8f:98:dc:cf:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e381b6e76cb9520e8d8f56776eca0fe176cc40
Validity
Not Before: Nov 5 08:23:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0fe04be9a266639aa4c9d5c9a46c1166afc90d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6c:0e:5e:87:1e:c9:18:2e:c0:3c:c3:ae:be:
dd:4f:33:97:dc:b3:cc:94:3a:92:ea:b5:fb:01:20:
4c:1b:02:7c:34:61:09:31:e0:94:73:2a:21:e2:3b:
70:19:d1:9f:b5:19:ee:c0:08:c7:c4:61:e0:65:40:
76:22:6c:30:21:2b:f5:3b:4d:24:0f:bd:12:cf:84:
74:64:8e:30:29:f5:ba:8f:15:d5:46:b8:f1:70:03:
98:b3:29:bf:b4:55:84:ad:9a:6a:9c:ef:68:eb:17:
69:90:99:6b:d4:f0:12:d2:25:8d:35:fa:9f:6e:21:
3d:90:64:03:af:6d:82:95:e4:56:b6:0c:62:bd:b4:
27:e5:e3:7d:66:3c:8f:73:15:a5:6f:8a:97:35:6d:
52:00:93:7f:1b:ef:37:09:f6:b0:40:ff:5d:a7:38:
0a:01:82:0c:dc:eb:f2:64:5d:25:17:bc:1d:18:bd:
15:87:34:13:d1:9e:c0:e4:47:95:5f:18:46:f1:a2:
49:80:70:8a:59:df:b4:55:80:85:e4:d0:b1:c8:c3:
11:55:48:b1:78:14:9f:88:9b:59:5e:34:8b:69:6d:
8d:9f:ed:a8:4e:b3:02:e6:ec:6f:04:b6:71:7b:d8:
e8:ff:05:7d:c9:b5:3e:ea:31:89:06:f7:c9:62:4f:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:04:BE:9A:26:66:39:AA:4C:9D:5C:9A:46:C1:16:6A:FC:90:D1
X509v3 Authority Key Identifier:
keyid:A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOOBtudsuVIOjY9Wd27KD-F2zEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oP4EvpomZjmqTJ1cmkbBFmr8kNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oOOBtudsuVIOjY9Wd27KD-F2zEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.72.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:d3:12:68:25:fe:95:8e:c9:65:ec:08:54:6d:14:bc:80:82:
70:eb:9e:ca:16:fb:ba:b0:ac:a8:99:a7:f3:bf:2f:49:f3:19:
72:c7:0f:c0:fd:57:ae:6c:57:16:c9:f3:b0:03:18:4a:fd:4a:
dc:37:28:28:40:0b:92:42:2b:5c:39:e2:1d:7c:86:00:fc:dd:
27:47:55:fa:ef:85:80:4d:7b:5a:53:87:12:2b:c0:71:59:d1:
4c:ee:02:1a:1d:a1:38:c2:0d:cc:13:1a:4e:fc:27:f9:33:09:
a1:61:54:82:de:7d:90:08:93:6a:50:57:ed:7e:eb:42:56:0e:
70:37:1d:74:16:62:29:80:10:2d:63:bb:d0:d7:77:27:08:f8:
82:d2:dc:74:a1:fb:92:dc:30:a1:ef:89:f5:a8:c3:39:4b:6a:
57:bc:8f:db:ff:6d:2e:7a:27:fb:8f:64:79:73:24:2a:5c:f6:
ab:66:ff:51:84:b0:5e:3e:6b:82:70:d1:0f:fb:6f:72:b3:14:
50:c3:ee:b9:77:8e:41:97:fb:8b:1c:37:af:da:82:f8:b4:4f:
a8:d0:7a:56:6c:09:75:3a:ee:cc:1e:21:0f:e0:41:ae:97:64:
bc:66:61:f3:7e:33:d7:b4:1e:08:a7:84:b8:bd:8f:ad:14:d3:
1b:3f:47:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:46 2024 by rpki-client on console-ams.rpki-client.org