Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OxXVyTRaF6Uxtkum7lrD2xE-9NY.roa
File: OxXVyTRaF6Uxtkum7lrD2xE-9NY.roa (raw, json)
Hash identifier: av0Mno5j5C3aC7GUN8f7P5ipbtWusZH0C++3TcE+9Ik=
Subject key identifier: 3B:15:D5:C9:34:5A:17:A5:31:B6:4B:A6:EE:5A:C3:DB:11:3E:F4:D6
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0572F628
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OxXVyTRaF6Uxtkum7lrD2xE-9NY.roa
Signing time: Thu 09 Jun 2022 15:39:04 +0000
ROA not before: Thu 09 Jun 2022 15:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271812
IP address blocks: 181.41.152.0/24 maxlen: 24
181.41.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91420200 (0x572f628)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 9 15:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b15d5c9345a17a531b64ba6ee5ac3db113ef4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:9d:d4:00:14:8f:7c:fa:f1:04:71:1c:a2:96:
53:60:fc:f5:df:df:da:ad:84:fd:94:29:56:68:19:
98:33:9f:2a:8f:f5:34:e4:6a:80:bd:10:b0:ae:ee:
6d:d9:80:c8:23:af:c6:32:1e:02:f0:b2:45:8c:66:
9a:a8:8c:1d:db:68:e2:70:0e:31:7d:57:30:7f:b8:
3a:30:8c:8c:8a:71:d5:01:c6:69:22:12:d6:21:c3:
c2:23:90:bb:85:61:86:92:7b:76:45:ea:47:41:d5:
da:79:e7:21:f0:f3:ea:95:02:5a:99:d6:16:d9:1c:
9f:d0:a6:66:81:8a:a3:9c:9c:13:4c:06:7c:6a:00:
f9:d5:78:47:4b:c3:22:fd:e8:34:c5:a1:8c:f5:be:
e4:aa:83:d6:48:d2:9a:f8:65:3a:a4:42:48:f9:ef:
78:72:d9:1d:2f:f4:08:6a:fc:47:94:8a:26:cd:5d:
32:0b:aa:e9:a2:a8:b7:7d:fc:03:27:16:84:6e:4b:
be:d9:87:a1:9b:e6:35:ce:88:34:cf:3c:63:cb:c8:
7f:ed:2b:5b:de:0e:f3:4b:29:76:60:31:61:7b:f9:
1f:53:66:21:69:e3:f4:d9:58:4d:85:10:72:35:bf:
3e:80:da:e7:76:07:55:a4:78:94:0d:34:a2:80:02:
04:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:15:D5:C9:34:5A:17:A5:31:B6:4B:A6:EE:5A:C3:DB:11:3E:F4:D6
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OxXVyTRaF6Uxtkum7lrD2xE-9NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.152.0/23
Signature Algorithm: sha256WithRSAEncryption
08:33:82:01:5c:23:a4:41:0c:25:a9:31:d0:d9:69:47:a7:ab:
54:93:cc:f3:19:bb:cc:20:0c:f2:ff:cc:76:0f:e1:cf:ad:c7:
cc:5a:54:33:8a:ee:7f:ce:c0:97:07:bb:55:c7:68:de:63:c0:
21:00:03:2d:b0:46:24:ed:2d:fd:d7:7d:1f:a3:d0:15:99:cf:
ec:ed:e8:e5:1a:de:8d:bb:d1:35:5a:00:9b:25:58:02:f7:aa:
2f:ef:f9:40:ac:7a:23:0c:3e:68:f6:aa:02:a1:e2:58:31:30:
37:d4:53:7b:13:4b:7e:18:f8:b8:10:29:1f:3e:1a:69:91:02:
bb:31:ec:6b:79:b0:62:32:9b:0c:9b:eb:37:dc:af:39:0e:02:
74:e4:2d:1a:a1:d0:86:98:ed:ac:93:f2:2a:f8:6e:a4:b6:f0:
b7:8a:d7:6f:da:55:d2:52:1f:13:5b:5d:ec:0c:49:6c:d4:22:
85:84:a5:8d:ea:58:59:b9:5b:f0:2d:91:1e:33:7f:59:63:53:
d4:bc:b9:fb:68:8f:72:39:d9:32:c3:7d:ed:2e:05:5a:6f:38:
7a:e4:84:62:13:7e:d3:a0:ed:ce:2f:a6:96:c8:24:7d:2d:48:
57:78:2f:c3:c9:c2:d0:ac:be:48:d8:87:b7:c4:0d:fc:0d:4c:
b6:d4:f7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org