Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/OB-z0whA-BqOn-DjLKtFZh1Yh4s.roa
File: OB-z0whA-BqOn-DjLKtFZh1Yh4s.roa (raw, json)
Hash identifier: sXcTeJ1dkkEpMtBlluQPG87XvQpvwF8np83RqTXbBaA=
Subject key identifier: 38:1F:B3:D3:08:40:F8:1A:8E:9F:E0:E3:2C:AB:45:66:1D:58:87:8B
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 03B66EBD
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/OB-z0whA-BqOn-DjLKtFZh1Yh4s.roa
Signing time: Sat 01 Jan 2022 06:58:57 +0000
ROA not before: Sat 01 Jan 2022 06:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56393
IP address blocks: 185.1.203.0/24 maxlen: 24
2001:7f8:10f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62287549 (0x3b66ebd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jan 1 06:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=381fb3d30840f81a8e9fe0e32cab45661d58878b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:ae:35:ce:7a:94:80:6c:24:8f:76:40:bb:
05:e7:30:38:6e:62:06:3a:03:84:f6:01:ba:5f:80:
d6:ae:79:66:9a:7f:5b:b5:80:e7:53:82:17:c3:98:
f5:60:f3:0e:1e:4a:c8:1c:03:e1:a8:b8:b0:26:fb:
0b:f1:7a:66:43:4d:97:25:c9:7f:03:a5:cd:2f:5f:
9a:c6:30:0b:b4:f4:bc:8b:df:62:b7:78:0b:2d:3c:
d2:f9:b9:a4:1f:33:5d:bb:31:ea:01:a5:28:54:9f:
f8:1b:2e:d2:78:9c:5e:38:3e:84:29:0a:cb:c7:57:
90:d6:4e:34:2d:c3:f3:99:75:c5:14:0a:f2:4d:7f:
6f:5c:44:a9:37:7a:ea:b5:f6:73:e7:93:49:05:58:
21:77:30:29:66:75:fb:8f:db:62:e1:22:4b:49:90:
e1:1a:1f:a8:f8:ec:20:cf:f5:09:6a:a0:cd:e2:88:
7d:96:7c:5e:72:3f:4d:2b:4a:b3:6b:5e:24:eb:11:
ea:9c:03:d9:c1:b2:32:c4:a5:4f:a6:80:e5:87:ca:
e9:91:0c:fb:b3:aa:9b:d3:4c:10:5d:41:25:54:6f:
83:91:dd:13:94:5f:ea:df:04:7f:2a:63:6d:96:61:
00:ab:5e:88:85:fa:a9:d0:ba:5a:ea:58:b9:a3:91:
77:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1F:B3:D3:08:40:F8:1A:8E:9F:E0:E3:2C:AB:45:66:1D:58:87:8B
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/OB-z0whA-BqOn-DjLKtFZh1Yh4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.203.0/24
IPv6:
2001:7f8:10f::/48
Signature Algorithm: sha256WithRSAEncryption
6d:bf:f1:e7:05:6b:6c:62:08:71:e8:66:99:30:39:29:0a:bb:
be:91:2b:1a:70:81:30:6b:fa:bd:5c:c5:d6:4d:f1:41:08:66:
92:a4:74:83:14:12:26:6e:d7:8c:7e:f3:c5:d9:e7:42:77:65:
ce:ed:ac:8b:d8:2d:8f:04:00:5d:44:7f:ff:b0:c7:38:27:48:
f1:47:fd:2e:d1:47:f5:e8:b8:db:b7:8b:d0:85:e1:53:94:2b:
5d:bd:a5:e3:6d:31:22:ca:68:fb:26:c5:97:f5:97:74:65:80:
2a:de:6b:4c:fc:b6:3d:77:50:9b:15:38:55:d0:e9:22:3f:81:
05:56:25:c3:cf:68:c6:aa:f1:cd:37:2d:ef:7e:77:9d:7f:da:
5b:4c:cf:74:2e:1e:e0:c1:39:2e:dd:07:3b:61:ea:01:d9:82:
00:65:90:51:a6:7e:f7:ef:c8:24:b8:08:db:9c:ba:f8:fc:9a:
9b:3f:32:aa:92:26:3d:21:fc:2c:29:bf:f7:d3:b9:37:c8:19:
e9:e3:4e:ab:ea:25:52:1e:ca:f3:9a:cf:ca:d0:55:45:31:af:
96:cb:0d:4b:dc:5b:d5:75:3c:79:46:29:3d:bb:29:7b:44:75:
21:ec:d8:da:68:8a:b5:8a:4d:bd:3f:75:93:48:cc:d9:45:ee:
6d:25:1b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:15 2024 by rpki-client on console-ams.rpki-client.org