Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/oVMv0AG4reJJwh96OV3Vu5AYHf8.roa
File: oVMv0AG4reJJwh96OV3Vu5AYHf8.roa (raw, json)
Hash identifier: iCrgC7FN/xgV2xQhFlNP32eLKqVLy4p0JW2iTef1r6E=
Subject key identifier: A1:53:2F:D0:01:B8:AD:E2:49:C2:1F:7A:39:5D:D5:BB:90:18:1D:FF
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 0EEC6A19
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/oVMv0AG4reJJwh96OV3Vu5AYHf8.roa
Signing time: Sat 01 Jan 2022 14:06:30 +0000
ROA not before: Sat 01 Jan 2022 14:06:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1955
IP address blocks: 195.111.0.0/16 maxlen: 16
195.199.0.0/16 maxlen: 16
193.224.0.0/15 maxlen: 15
193.6.0.0/16 maxlen: 16
2001:738::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250374681 (0xeec6a19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 1 14:06:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1532fd001b8ade249c21f7a395dd5bb90181dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:a6:87:89:c8:74:eb:70:24:55:4f:ab:11:
e9:2b:e4:d9:ed:34:f2:2e:91:a9:5b:25:1f:0f:c1:
e7:c3:20:35:bc:2c:95:cc:09:6a:32:b6:e4:05:a3:
68:cf:65:c2:3c:5c:c6:1b:01:24:e4:b4:3f:03:62:
98:fd:98:81:da:cc:75:96:71:8f:82:75:c9:17:30:
2c:1a:3b:84:07:ef:58:2a:6d:df:3c:ae:3e:17:82:
9f:03:eb:20:e1:be:ee:24:ed:14:9c:03:54:99:af:
ff:e8:c2:3c:c8:ee:c3:af:7e:1d:17:28:45:4b:a6:
14:1e:02:72:10:16:1e:92:57:e7:17:0e:d3:ac:04:
3a:f8:04:35:12:05:60:1e:25:04:6e:54:ad:68:47:
dc:66:99:b6:90:1e:bb:d3:3d:da:5a:30:2f:06:d5:
c9:26:78:6f:68:e6:07:67:d3:bf:bc:74:04:5f:4f:
a5:26:86:61:9c:97:c9:23:28:ec:82:aa:f7:a2:ce:
41:ef:a9:a8:66:68:aa:7a:bc:4f:3a:d7:79:5d:ec:
b9:60:cc:ca:fa:82:84:b1:d4:bd:d7:a5:01:62:bb:
ef:13:03:c7:a5:98:f2:2e:45:26:ea:00:ac:cf:a5:
86:7d:f3:94:ca:43:fd:ec:1b:47:82:9d:ba:af:f6:
63:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:53:2F:D0:01:B8:AD:E2:49:C2:1F:7A:39:5D:D5:BB:90:18:1D:FF
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/oVMv0AG4reJJwh96OV3Vu5AYHf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.6.0.0/16
193.224.0.0/15
195.111.0.0/16
195.199.0.0/16
IPv6:
2001:738::/32
Signature Algorithm: sha256WithRSAEncryption
58:1c:75:9b:86:f6:5e:21:b9:37:3f:f6:10:ce:b5:f3:5d:8d:
d2:98:60:ee:53:3d:3d:67:83:8c:fe:10:52:5d:89:02:aa:65:
d9:f3:90:04:62:29:d3:7d:74:d2:b7:dd:63:d5:cf:56:f9:41:
7e:af:8d:27:8f:b0:76:8a:4f:a1:02:ba:b0:03:66:a1:58:f0:
ca:4e:94:05:83:0a:03:e2:2e:12:d9:41:c2:a7:24:a2:59:b2:
4f:15:6e:30:56:73:c2:af:e3:1d:2a:ca:ea:15:ac:b3:e6:da:
60:fd:b5:c8:88:3a:6e:b1:84:73:10:98:c0:34:ea:02:08:59:
59:12:12:6f:76:8b:55:e1:62:ec:f4:4a:cf:9d:e0:79:ef:3f:
dc:55:58:01:8e:68:75:33:ba:2d:44:42:35:74:92:2a:90:0d:
f3:27:6d:0d:8d:36:53:4a:89:b1:5c:42:a4:71:8b:f3:6c:c1:
06:86:b1:c4:af:3b:af:8f:98:ff:8c:88:45:bf:80:66:bd:aa:
97:26:75:cb:77:fd:a9:b0:aa:4a:27:20:97:e8:31:85:4f:e5:
e7:45:52:ad:5b:0b:d1:8a:16:0a:75:40:b5:46:ca:6c:00:e6:
81:18:d6:1e:85:db:79:c5:c1:b9:63:1f:5b:9b:45:59:7a:58:
69:e2:f3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:14 2024 by rpki-client on console-ams.rpki-client.org