Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OIZka7IbIJUMyn1ADCo0M7_Q4EE.roa
File: OIZka7IbIJUMyn1ADCo0M7_Q4EE.roa (raw, json)
Hash identifier: cCZMn0jKOZiPsuk3lrd+GcAKum9at+osTs1SoClHmeY=
Subject key identifier: 38:86:64:6B:B2:1B:20:95:0C:CA:7D:40:0C:2A:34:33:BF:D0:E0:41
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28B99D28
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OIZka7IbIJUMyn1ADCo0M7_Q4EE.roa
Signing time: Mon 31 Jan 2022 15:06:47 +0000
ROA not before: Mon 31 Jan 2022 15:06:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51812
IP address blocks: 95.46.152.0/23 maxlen: 23
93.170.104.0/23 maxlen: 23
146.120.186.0/23 maxlen: 24
93.170.120.0/23 maxlen: 23
92.253.216.0/23 maxlen: 23
146.120.114.0/23 maxlen: 23
93.170.32.0/23 maxlen: 23
93.171.216.0/23 maxlen: 24
93.170.50.0/23 maxlen: 24
93.171.14.0/23 maxlen: 23
146.120.156.0/23 maxlen: 23
95.47.202.0/23 maxlen: 23
95.46.38.0/23 maxlen: 23
146.120.98.0/23 maxlen: 23
93.170.138.0/23 maxlen: 23
93.171.98.0/23 maxlen: 24
92.38.88.0/23 maxlen: 24
92.38.90.0/23 maxlen: 24
95.47.184.0/23 maxlen: 23
93.170.172.0/23 maxlen: 23
146.158.10.0/23 maxlen: 23
95.46.12.0/23 maxlen: 23
95.46.14.0/23 maxlen: 23
95.47.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 683253032 (0x28b99d28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 31 15:06:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3886646bb21b20950cca7d400c2a3433bfd0e041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4e:b5:2a:5b:a2:9a:f9:a4:89:b2:6e:8a:4e:
2e:95:62:08:92:65:44:b9:8f:df:e7:6c:d4:b6:3e:
93:a6:2b:48:fe:15:22:23:8e:88:31:11:08:d7:b7:
02:e3:56:57:87:7e:a6:69:5e:87:1f:d1:15:30:88:
35:aa:a2:1b:7b:77:96:6a:03:56:eb:18:d4:8a:8d:
c6:47:02:c0:8d:94:df:7e:08:91:f9:80:84:f1:c9:
ad:d2:30:18:69:17:54:9b:fc:a9:cc:79:f7:ad:0f:
96:fd:9b:51:8e:8c:c4:a7:87:39:44:1e:4e:9c:e9:
5f:40:4a:19:b1:90:43:ac:c5:b2:9e:c8:28:ff:1a:
b5:d1:6c:09:94:36:23:db:25:9c:81:d2:a5:d2:db:
78:51:4a:27:18:5e:62:35:67:8b:2c:8d:3e:88:e4:
99:98:a7:9e:7c:36:f7:b9:81:b0:e7:e2:4b:0f:26:
6a:58:4f:08:57:45:fd:80:a0:d3:de:19:76:3a:c7:
f2:d4:f6:0b:da:27:15:d0:e9:23:77:b9:89:6c:49:
8f:d3:44:c2:c9:c7:be:ae:73:fc:6b:a8:ed:6e:10:
b3:52:7d:27:ca:c0:58:3a:34:03:22:75:a4:74:8f:
eb:6b:d5:24:96:b6:58:eb:17:4d:30:b3:39:71:85:
7b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:86:64:6B:B2:1B:20:95:0C:CA:7D:40:0C:2A:34:33:BF:D0:E0:41
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OIZka7IbIJUMyn1ADCo0M7_Q4EE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.88.0/22
92.253.216.0/23
93.170.32.0/23
93.170.50.0/23
93.170.104.0/23
93.170.120.0/23
93.170.138.0/23
93.170.172.0/23
93.171.14.0/23
93.171.98.0/23
93.171.216.0/23
95.46.12.0/22
95.46.38.0/23
95.46.152.0/23
95.47.184.0/23
95.47.198.0/23
95.47.202.0/23
146.120.98.0/23
146.120.114.0/23
146.120.156.0/23
146.120.186.0/23
146.158.10.0/23
Signature Algorithm: sha256WithRSAEncryption
41:b2:45:f4:e5:c1:06:55:f9:14:d4:38:41:a3:19:4e:50:d9:
e7:3d:61:5c:71:5c:75:1c:55:c3:bd:de:b1:87:ef:0f:35:b1:
55:f6:fa:63:25:f5:c1:6f:2e:85:e2:57:a8:b4:cf:c5:78:fd:
f6:7b:c5:40:75:bc:a5:ba:45:e7:5b:97:55:81:0f:ec:9e:ee:
de:1c:db:85:fc:02:37:4c:91:89:47:4e:7a:99:82:4a:3d:77:
af:ed:2a:82:9f:0d:8c:e9:88:3a:bf:3c:23:21:76:06:c6:c5:
04:d3:07:c7:cb:f5:a1:c2:6f:e0:fe:c3:9f:c0:94:a0:c1:58:
ca:0d:f7:57:55:04:7d:e1:55:c8:4a:15:2b:c7:3e:1c:59:48:
63:00:b6:a2:d2:39:62:ee:ef:1f:bf:fd:09:2a:e2:e5:8e:b1:
32:d3:d3:a5:96:7e:f1:40:5a:28:89:c2:62:4b:fe:f1:18:92:
b5:83:f4:3a:21:54:92:b3:1a:b3:52:df:5c:9d:6f:62:d6:98:
ea:e2:b9:11:12:41:75:60:66:04:ed:89:7a:07:9b:4f:aa:24:
86:43:fc:da:c6:eb:33:39:2d:15:c7:49:d1:03:46:72:6d:c6:
02:4f:f2:79:22:89:82:80:13:c6:bf:d0:ca:76:75:a5:76:ff:
39:b6:62:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org