Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/8Ojnn-uT1F_4vurTA7mxaCYakRU.roa
File: 8Ojnn-uT1F_4vurTA7mxaCYakRU.roa (raw, json)
Hash identifier: QOJq280NcPXbMh3WJEu1AVWiMoBOyF0QUOTAJTTek0w=
Subject key identifier: F0:E8:E7:9F:EB:93:D4:5F:F8:BE:EA:D3:03:B9:B1:68:26:1A:91:15
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 37882441
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/8Ojnn-uT1F_4vurTA7mxaCYakRU.roa
Signing time: Sat 01 Jan 2022 14:01:19 +0000
ROA not before: Sat 01 Jan 2022 14:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49391
IP address blocks: 194.90.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931669057 (0x37882441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 1 14:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0e8e79feb93d45ff8beead303b9b168261a9115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:36:22:dc:05:22:41:6b:c9:04:73:1b:14:
c7:b8:9c:f8:95:f0:a5:f6:30:24:35:5d:37:eb:13:
b8:b1:a3:c8:1a:8e:82:4b:d2:f5:a0:71:87:7d:8a:
12:e4:1d:88:7d:66:38:3a:b4:ca:23:49:30:5c:77:
67:a4:a1:aa:12:72:f1:48:2b:0f:e6:db:5e:68:b0:
bc:be:23:c0:3d:22:de:14:a7:9d:51:8e:f7:1b:44:
cb:33:bc:7a:fc:5c:d9:1f:0f:8d:7d:25:16:b7:3c:
e6:76:90:d1:d1:37:2e:04:e7:09:72:d3:a2:04:3f:
ab:a3:0f:a8:97:27:e5:be:e0:9d:8b:23:9a:00:cb:
85:5a:81:6b:0e:eb:89:2f:d6:e3:fe:2b:62:1f:24:
c4:5e:98:2b:0b:20:00:f6:53:0c:f4:a6:4a:00:c5:
b2:35:70:3b:9a:3d:d6:d6:bc:9c:7f:55:64:56:29:
43:28:5c:82:18:1f:27:77:fe:2d:d2:6c:35:d9:47:
4d:29:d0:3a:e5:7a:6f:2b:7d:e7:d8:83:c0:56:7b:
98:1d:a8:c3:fb:ec:d6:eb:4c:a4:8d:f0:16:ed:28:
5a:b0:53:51:a0:58:3e:a7:9d:fe:b5:32:8f:de:d4:
74:0d:77:0e:81:2e:17:29:19:71:11:d8:15:e0:71:
4e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E8:E7:9F:EB:93:D4:5F:F8:BE:EA:D3:03:B9:B1:68:26:1A:91:15
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/8Ojnn-uT1F_4vurTA7mxaCYakRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.90.84.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:cf:61:87:6c:e6:d0:9d:d6:d3:a8:ae:0c:0e:de:c8:c8:40:
d9:da:4c:da:ac:8f:c6:af:db:32:5f:bf:8e:19:fa:6c:86:16:
91:ab:65:4d:d7:d0:64:c7:19:c6:c3:0f:82:e2:9a:43:58:83:
d6:61:8d:87:d0:13:a8:d9:8e:f8:fa:d1:f2:04:83:f4:c5:bf:
b7:fc:41:cd:a7:50:f4:ab:94:2d:97:8f:ae:cd:fc:49:77:80:
c3:3f:13:44:74:f3:ba:58:b3:78:78:bb:07:11:c5:a4:7a:1c:
2e:37:1c:c5:8e:33:dc:ee:be:68:56:db:cf:7a:c4:1e:aa:8c:
63:a9:7e:fc:0a:84:24:15:84:0c:5d:0c:8e:0d:3a:4a:10:f7:
34:10:6e:47:27:87:d4:b1:c2:b8:75:9f:a3:f2:86:97:72:ae:
57:17:d7:23:d2:70:5f:67:3d:4b:8a:c9:ee:27:ac:50:15:c9:
5f:5e:43:76:e7:8a:05:0f:31:fa:f2:d5:f4:f2:db:1e:c0:77:
f4:71:62:c7:af:2f:6b:01:e0:e9:9c:35:ec:46:b7:06:d8:33:
02:71:0e:e3:ca:0c:63:ad:28:a6:a6:01:46:ee:88:e4:ce:61:
d9:da:84:a8:9f:64:4b:7a:ba:69:24:85:de:7b:ae:de:18:ab:
51:14:df:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org