Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d66a58-fdf5-491e-b511-fd2915d4cd5a/1/OBu0a2O45YVeqSfIHTJDyabzmOg.roa
File: OBu0a2O45YVeqSfIHTJDyabzmOg.roa (raw, json)
Hash identifier: bh8/P7GP7IzYaS/kf2PVJyWanZ1vxwFHnskBd7nA5qU=
Subject key identifier: 38:1B:B4:6B:63:B8:E5:85:5E:A9:27:C8:1D:32:43:C9:A6:F3:98:E8
Certificate issuer: /CN=4dc391dc615fd4a3ad10c0f2ab8b0a506d039ed8
Certificate serial: 0F94EB90
Authority key identifier: 4D:C3:91:DC:61:5F:D4:A3:AD:10:C0:F2:AB:8B:0A:50:6D:03:9E:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TcOR3GFf1KOtEMDyq4sKUG0Dntg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d66a58-fdf5-491e-b511-fd2915d4cd5a/1/OBu0a2O45YVeqSfIHTJDyabzmOg.roa
Signing time: Sat 01 Jan 2022 07:59:08 +0000
ROA not before: Sat 01 Jan 2022 07:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1241
IP address blocks: 185.117.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261417872 (0xf94eb90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dc391dc615fd4a3ad10c0f2ab8b0a506d039ed8
Validity
Not Before: Jan 1 07:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=381bb46b63b8e5855ea927c81d3243c9a6f398e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9b:65:c6:c7:47:44:c6:5f:30:74:04:d3:20:
54:42:b4:df:41:85:9b:dd:e6:5c:11:1f:6b:85:ee:
ef:4e:f1:4b:e3:b5:f2:dc:f4:c2:fc:a4:be:8a:db:
58:18:c7:64:b1:d4:c4:66:f9:56:99:63:bb:20:da:
1e:a7:af:65:4e:fa:3b:62:87:bb:14:21:74:b8:fb:
1a:0d:97:97:dd:75:5c:be:4c:dd:b5:0e:1a:b0:51:
94:a1:ba:c5:fb:a1:14:af:18:00:3b:65:dd:80:7e:
5d:b4:c8:d1:64:6e:ba:6c:99:db:12:7a:33:7f:7f:
a1:ea:d0:f5:00:e6:9c:b0:bd:e6:74:ab:ea:be:e9:
b3:ee:4a:c4:66:a6:a1:ee:de:ea:3b:ec:84:f7:05:
69:76:f2:a2:a2:bf:50:ac:ba:82:c4:87:d1:aa:ea:
c0:bd:2f:a4:30:01:59:5b:45:e3:d8:5c:1e:34:00:
7c:93:33:3e:98:42:4b:fb:49:e5:33:bb:3d:ed:f3:
58:8f:13:78:02:0a:49:c2:a5:fc:2d:99:83:d2:f9:
b5:7d:07:5f:10:b6:9e:16:86:48:5e:44:e8:50:f5:
90:29:b4:b0:86:cb:84:44:93:7f:33:28:97:39:6e:
ea:db:26:88:f5:7a:f0:8d:98:91:7c:42:b5:fb:02:
46:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1B:B4:6B:63:B8:E5:85:5E:A9:27:C8:1D:32:43:C9:A6:F3:98:E8
X509v3 Authority Key Identifier:
keyid:4D:C3:91:DC:61:5F:D4:A3:AD:10:C0:F2:AB:8B:0A:50:6D:03:9E:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TcOR3GFf1KOtEMDyq4sKUG0Dntg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d66a58-fdf5-491e-b511-fd2915d4cd5a/1/OBu0a2O45YVeqSfIHTJDyabzmOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d66a58-fdf5-491e-b511-fd2915d4cd5a/1/TcOR3GFf1KOtEMDyq4sKUG0Dntg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.229.0/24
Signature Algorithm: sha256WithRSAEncryption
36:06:a5:3b:8c:73:1c:59:c9:f2:9f:e6:28:64:ac:f5:52:dd:
f3:3e:1b:86:36:0e:6c:8d:35:fe:3c:04:cd:db:9c:25:94:84:
12:ba:17:4b:b0:95:67:70:8b:e9:a9:ed:27:5d:1b:dd:c4:56:
34:11:ed:5d:f0:81:a4:a7:87:05:9e:c3:73:a6:29:e8:87:be:
b9:49:8c:f3:1c:e7:73:49:be:50:fa:8b:16:93:c3:2c:05:d0:
c4:fa:5a:16:22:a0:a2:44:89:78:32:ed:4b:52:0e:b6:a0:2b:
9e:35:63:37:4b:c2:aa:91:22:e8:20:3c:87:52:53:0c:a6:9b:
b8:11:e3:b6:ea:ad:a6:88:8a:fa:3c:a4:3a:af:4a:08:03:0b:
14:04:b7:ba:f1:89:5e:36:05:12:77:7d:0d:04:5c:3f:ff:f0:
80:c0:dd:38:d5:de:6b:62:67:73:c5:cf:3e:98:af:fd:26:97:
0d:ae:26:60:af:72:53:45:ae:b7:2d:34:ef:b7:72:0c:d4:50:
3d:bb:2c:f8:87:88:53:4c:16:5b:71:44:3a:e2:c6:bd:d8:b1:
97:f3:66:43:13:db:8c:9d:9d:b4:f2:c6:20:c3:03:2a:7e:86:
8e:9c:81:a1:2b:ae:4e:42:1b:fd:a1:b7:d0:1b:96:65:11:dd:
83:c3:eb:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:13 2025 by rpki-client