Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/Of_6UvSxIVjiE4sWm2geTx99LyA.roa
File: Of_6UvSxIVjiE4sWm2geTx99LyA.roa (raw, json)
Hash identifier: BvJm9tg237dFZpOMzOvm+7BmR7XyON6s5nmJpOwHou8=
Subject key identifier: 39:FF:FA:52:F4:B1:21:58:E2:13:8B:16:9B:68:1E:4F:1F:7D:2F:20
Certificate issuer: /CN=7aa606117bb5f7e4160ef268f9f4aa0457380441
Certificate serial: 04016832
Authority key identifier: 7A:A6:06:11:7B:B5:F7:E4:16:0E:F2:68:F9:F4:AA:04:57:38:04:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eqYGEXu19-QWDvJo-fSqBFc4BEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/Of_6UvSxIVjiE4sWm2geTx99LyA.roa
Signing time: Sat 01 Jan 2022 14:07:09 +0000
ROA not before: Sat 01 Jan 2022 14:07:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43228
IP address blocks: 185.190.104.0/22 maxlen: 22
185.190.104.0/23 maxlen: 23
185.190.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67201074 (0x4016832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa606117bb5f7e4160ef268f9f4aa0457380441
Validity
Not Before: Jan 1 14:07:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39fffa52f4b12158e2138b169b681e4f1f7d2f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:00:e0:d9:07:3a:55:e8:ed:53:e1:dd:92:
1c:ce:e3:df:58:93:e9:30:7c:8f:36:da:07:f9:0c:
ce:53:c9:eb:59:23:60:6c:7d:c5:ae:cb:9b:99:2c:
c0:ac:86:24:95:9d:dc:b6:d1:f8:8a:6b:bb:f6:0f:
5e:c9:22:88:3f:02:fd:de:3e:7e:d9:fe:23:ac:e0:
f0:db:e1:df:00:25:61:fd:b9:83:76:95:12:e0:7f:
16:f9:87:c6:0e:a3:87:57:f2:48:cf:cf:e0:a4:34:
30:4e:d0:55:86:cf:f9:74:9e:c2:c4:d9:64:a6:f4:
09:56:61:40:e0:e2:69:0a:6f:35:d2:b3:bc:0d:da:
84:0c:e7:ff:68:07:c0:d6:ec:0d:f3:e1:7a:44:e1:
71:24:6b:aa:58:54:81:a2:ae:f7:26:01:4c:f7:e9:
d4:aa:85:73:9a:bf:33:f1:3d:96:fd:6b:e1:8d:a6:
3d:2f:57:38:8b:6c:b3:df:d6:a3:e9:b8:64:55:fa:
3f:72:50:03:d0:ba:82:42:04:23:8c:42:87:cf:47:
d0:6a:6a:c8:72:8c:b0:c3:f1:99:20:a8:69:5c:0b:
81:ec:7e:d6:9f:3f:cc:e3:9e:e5:67:ea:b0:1c:8c:
cb:18:22:c3:fe:ea:54:b3:08:59:98:7a:27:f3:bd:
4f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FF:FA:52:F4:B1:21:58:E2:13:8B:16:9B:68:1E:4F:1F:7D:2F:20
X509v3 Authority Key Identifier:
keyid:7A:A6:06:11:7B:B5:F7:E4:16:0E:F2:68:F9:F4:AA:04:57:38:04:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eqYGEXu19-QWDvJo-fSqBFc4BEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/Of_6UvSxIVjiE4sWm2geTx99LyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/23bdd0-5bf1-4d44-b4aa-a06136b2dc72/1/eqYGEXu19-QWDvJo-fSqBFc4BEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.104.0/22
Signature Algorithm: sha256WithRSAEncryption
83:0a:22:bc:e1:9d:0c:64:dd:f3:22:d8:d8:a4:68:88:53:25:
f3:2a:7c:10:c7:1e:0b:85:93:5f:f1:65:54:b1:88:99:47:2b:
0a:70:f3:1a:e4:9d:80:1d:18:57:9d:4f:16:d2:ef:2a:e5:68:
eb:b3:e7:41:f7:04:c5:6a:e6:38:56:17:a8:b8:2f:9d:7d:77:
40:e1:2e:7e:9e:c6:4a:eb:6b:be:09:9d:ed:fd:99:fd:86:b7:
0e:f0:2c:86:d8:6a:1f:50:44:d1:b0:41:1e:0a:8e:e2:45:58:
3a:6d:2d:f2:2c:c0:28:5e:7d:17:ac:5f:52:95:6c:c0:77:e7:
ec:23:8e:7c:cd:8c:d3:bb:e0:1c:2f:3b:c0:7b:0c:ec:53:36:
03:74:33:82:4e:dc:ce:2a:02:7e:8d:7e:ca:f7:68:e0:a2:43:
73:04:2b:7c:36:bd:2b:83:35:74:23:1f:b7:cd:41:fd:01:fd:
61:bd:fd:4a:19:ca:8a:a0:7e:a9:be:82:2e:ce:67:e7:80:ec:
43:1d:bd:ec:c9:2c:0a:4a:0f:05:61:62:48:9b:7f:54:36:de:
f4:59:36:30:fb:b9:99:41:cd:79:4b:09:ca:8c:36:4e:0a:11:
5e:45:bf:f5:e5:f7:4e:e9:07:d3:e9:91:1a:46:b5:8a:f5:96:
23:90:8e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org