Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/edcd12-3be2-4629-a559-e72fbddb7746/1/Olhow4hPzAUcpQFd7UDSrUXnpu8.roa
File: Olhow4hPzAUcpQFd7UDSrUXnpu8.roa (raw, json)
Hash identifier: LoowlhhRpDtoCdRB+41Ojs33iLH03Ok2O7MTzbhi4iY=
Subject key identifier: 3A:58:68:C3:88:4F:CC:05:1C:A5:01:5D:ED:40:D2:AD:45:E7:A6:EF
Certificate issuer: /CN=9705462cbfc8764777e6da31b595d7ccbfe38243
Certificate serial: 1519CE21
Authority key identifier: 97:05:46:2C:BF:C8:76:47:77:E6:DA:31:B5:95:D7:CC:BF:E3:82:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwVGLL_Idkd35toxtZXXzL_jgkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/edcd12-3be2-4629-a559-e72fbddb7746/1/Olhow4hPzAUcpQFd7UDSrUXnpu8.roa
Signing time: Sat 01 Jan 2022 16:03:31 +0000
ROA not before: Sat 01 Jan 2022 16:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 185.96.76.0/22 maxlen: 22
2a05:ff80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354012705 (0x1519ce21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9705462cbfc8764777e6da31b595d7ccbfe38243
Validity
Not Before: Jan 1 16:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a5868c3884fcc051ca5015ded40d2ad45e7a6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7a:cf:d2:fc:56:7a:7e:6f:19:03:24:19:b8:
4e:f5:c8:32:a8:76:f9:e8:b6:ca:f9:2c:79:2c:3b:
69:c7:3e:ec:6b:d8:8c:3a:19:a3:5f:e6:f8:02:f3:
5c:7f:0d:04:9f:96:da:05:a8:6e:37:6c:00:67:ad:
3e:34:70:1a:16:66:36:3a:f7:58:8e:8d:68:0d:85:
0b:46:6a:ae:6b:c9:33:5d:a4:d6:72:5d:8b:a6:f8:
e8:40:79:c7:d1:19:9e:cc:65:78:52:1f:31:ca:d8:
8f:a3:0b:e1:26:e6:48:80:43:45:54:66:bf:9b:e1:
3e:25:df:65:b0:f0:a7:24:92:c5:d2:8f:70:f4:fd:
7a:25:6c:89:38:88:f9:0f:74:b3:ff:5b:7c:1d:51:
96:e1:9a:e0:e7:e5:25:b2:e2:44:54:4d:78:6f:d2:
ea:bb:a3:37:ee:f8:43:d4:f4:85:fd:b9:59:55:2c:
2c:b3:5f:a9:01:2e:14:bb:5a:9b:5f:04:3b:c0:44:
1f:a0:ad:5f:d4:08:22:ba:ed:18:dd:ba:ea:26:cc:
2b:8b:3d:ee:c7:cc:e9:20:d6:fd:99:2b:3c:e6:fd:
f4:f7:2b:20:54:90:4b:b0:1c:d2:8c:c2:58:77:69:
20:b4:30:d6:dd:b1:76:b1:14:62:7a:d7:e8:45:d1:
b8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:58:68:C3:88:4F:CC:05:1C:A5:01:5D:ED:40:D2:AD:45:E7:A6:EF
X509v3 Authority Key Identifier:
keyid:97:05:46:2C:BF:C8:76:47:77:E6:DA:31:B5:95:D7:CC:BF:E3:82:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwVGLL_Idkd35toxtZXXzL_jgkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/edcd12-3be2-4629-a559-e72fbddb7746/1/Olhow4hPzAUcpQFd7UDSrUXnpu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/edcd12-3be2-4629-a559-e72fbddb7746/1/lwVGLL_Idkd35toxtZXXzL_jgkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.76.0/22
IPv6:
2a05:ff80::/29
Signature Algorithm: sha256WithRSAEncryption
50:94:95:34:ce:bd:d1:d9:df:31:02:48:81:53:13:e8:c9:4c:
1e:92:1d:37:b6:37:be:0e:2d:b1:c0:a1:76:28:00:e4:08:2c:
b1:d6:3c:fa:27:3d:2b:ca:cf:26:3f:5f:59:ab:ac:8b:04:7f:
69:de:b9:c6:d5:da:e2:9f:c5:e2:5d:71:37:c6:1d:2a:cd:91:
00:bc:d1:fb:f8:95:34:c9:92:53:43:12:01:fd:e3:5f:75:a5:
fe:98:9d:38:c0:43:88:e1:07:be:8c:62:20:8d:e7:d7:c4:60:
0b:c0:a2:95:15:61:aa:8a:2e:96:cf:1c:16:e2:ff:06:18:8a:
ce:65:1b:d1:81:91:65:bf:ab:16:34:d6:ae:88:f2:ff:ad:a0:
c6:d4:c4:25:11:87:4a:e6:5b:57:79:e0:f7:dd:ad:b1:c3:4a:
85:fb:77:9d:08:f4:f0:f9:10:03:54:a1:a0:5d:16:00:8f:02:
2b:86:2d:00:a2:71:92:ac:5d:eb:ba:7c:09:02:62:8c:27:ab:
20:70:e2:3c:e6:21:3f:32:a5:c2:d5:c7:79:a6:dd:30:51:a0:
df:3f:b2:12:d9:a1:b4:7f:6e:de:d6:47:93:63:76:76:ba:12:
da:5c:4c:8c:fd:8d:dc:7f:03:45:20:14:f6:3f:34:f2:b4:bc:
5d:5d:17:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org