Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/OCTltnG-PL7PeHkcG2cKVoJXimc.roa
File: OCTltnG-PL7PeHkcG2cKVoJXimc.roa (raw, json)
Hash identifier: b5GWPpUEtbbBOL0c7cEhD3SaQY57trvuh+sOcXojP+Y=
Subject key identifier: 38:24:E5:B6:71:BE:3C:BE:CF:78:79:1C:1B:67:0A:56:82:57:8A:67
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 018461196066ACA6C898B6479293ED155F80
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/OCTltnG-PL7PeHkcG2cKVoJXimc.roa
Signing time: Thu 10 Nov 2022 10:32:43 +0000
ROA not before: Thu 10 Nov 2022 10:32:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 185.101.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:19:60:66:ac:a6:c8:98:b6:47:92:93:ed:15:5f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Nov 10 10:32:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3824e5b671be3cbecf78791c1b670a5682578a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:40:40:32:d4:54:f4:9d:5b:95:f0:8c:98:
f2:1b:39:f2:55:b2:ef:d2:02:bf:14:cb:fa:4d:a5:
99:bf:72:a7:56:3e:d0:72:5f:5d:e6:4e:8c:4b:dd:
25:09:48:6e:36:01:40:82:2d:9c:13:7c:a6:d2:b8:
fd:0e:f0:42:89:5e:0b:7d:73:7a:41:8b:78:09:0b:
c5:cf:47:7a:51:4a:59:1f:73:f9:c0:52:c8:40:bd:
b6:24:cb:7d:49:0c:5f:d0:07:26:39:b2:fb:66:7f:
c6:e1:0a:5d:c6:e6:14:88:38:ef:74:e4:63:84:24:
49:6c:e1:9b:ff:7c:52:37:7c:30:5f:97:7f:3b:dd:
cd:b4:7b:13:97:b0:88:fb:83:55:63:30:c2:90:44:
00:b5:93:c7:c7:c9:f4:1c:20:29:2a:df:ec:dd:e6:
9a:e5:63:da:25:41:de:ac:cd:fc:c5:57:57:8d:81:
65:b4:4a:15:e5:f9:bd:17:c7:c3:96:2c:83:17:55:
60:fd:0b:52:f0:98:b3:16:ff:54:1b:43:f7:07:15:
3b:88:69:fc:80:00:fc:97:23:da:cc:56:3a:dc:9e:
32:2a:58:54:c3:6b:bd:11:66:aa:e0:d8:de:5a:61:
a2:cd:24:51:30:3c:1e:fb:8b:7c:70:78:b4:5c:7a:
6e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:24:E5:B6:71:BE:3C:BE:CF:78:79:1C:1B:67:0A:56:82:57:8A:67
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/OCTltnG-PL7PeHkcG2cKVoJXimc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:09:41:85:8d:de:21:5a:31:49:12:00:81:50:09:14:dc:83:
b5:d1:02:90:8b:9a:0a:d0:5e:77:2a:9f:3a:a0:dc:2d:32:18:
4b:6a:09:99:f7:6b:de:2f:5f:22:aa:60:be:6f:fb:b1:aa:26:
dd:71:0c:b4:1d:40:e4:87:f4:2f:51:fd:68:74:3b:0e:9c:da:
0f:42:c7:80:0c:d3:b9:df:5d:be:41:f5:36:b1:e6:9b:4a:56:
ff:7c:4c:50:42:43:13:8e:6d:11:5b:0b:1a:20:4d:2f:3a:5d:
e4:a9:f3:40:a0:bf:6b:40:46:04:33:65:ea:5f:cf:7b:e1:c5:
d8:fb:b4:cd:9a:33:8f:21:16:2a:07:f5:c7:91:80:59:21:bf:
54:0b:8d:e5:f1:06:11:de:41:37:9e:34:f7:cb:2c:28:b6:43:
e1:14:69:0b:2c:a2:fa:d9:40:48:2d:2c:c7:30:15:92:41:0f:
5b:d6:32:bb:a9:eb:41:0e:66:f8:6a:1d:fb:bd:04:f0:e5:b0:
30:22:b5:93:5a:0d:2d:e7:03:5e:4f:e9:24:e5:fe:a0:42:31:
61:9b:42:4b:d1:ee:0d:45:da:f8:04:04:18:94:bc:55:f0:23:
57:1a:82:a9:67:66:1f:b6:3f:bd:2f:18:32:4c:55:d3:29:5b:
45:c9:f8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org