Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/eb340f-8053-4f5f-a3a5-229b6409f2a0/1/OaAa1FmzaDSq-yqcjUAYekOvy6w.roa
File: OaAa1FmzaDSq-yqcjUAYekOvy6w.roa (raw, json)
Hash identifier: AGIjhlqCvMf24rNS15eIrBo2i7jT2S863jdMljr5EMA=
Subject key identifier: 39:A0:1A:D4:59:B3:68:34:AA:FB:2A:9C:8D:40:18:7A:43:AF:CB:AC
Certificate issuer: /CN=bf20e64b18831bc98527cbe0e1067c1a95d1687d
Certificate serial: 0B0510F6
Authority key identifier: BF:20:E6:4B:18:83:1B:C9:85:27:CB:E0:E1:06:7C:1A:95:D1:68:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyDmSxiDG8mFJ8vg4QZ8GpXRaH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/eb340f-8053-4f5f-a3a5-229b6409f2a0/1/OaAa1FmzaDSq-yqcjUAYekOvy6w.roa
Signing time: Sat 01 Jan 2022 12:02:20 +0000
ROA not before: Sat 01 Jan 2022 12:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200409
IP address blocks: 194.32.172.0/22 maxlen: 24
77.83.112.0/22 maxlen: 24
2a0c:ea40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184881398 (0xb0510f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf20e64b18831bc98527cbe0e1067c1a95d1687d
Validity
Not Before: Jan 1 12:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39a01ad459b36834aafb2a9c8d40187a43afcbac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:02:cf:02:28:b2:1b:d2:2a:b1:2f:23:92:
8c:58:79:96:82:39:68:29:a8:91:0d:15:62:fa:4f:
18:09:0b:1f:06:dc:0b:ac:6e:3e:11:48:99:93:f3:
16:4c:85:6f:27:13:e3:85:b8:9d:75:b9:1d:70:23:
f5:ef:48:75:90:5c:7e:de:3f:3b:eb:bf:4f:b2:bc:
fd:2f:84:57:cc:46:0f:84:34:77:37:2b:bf:e1:cd:
22:83:4a:af:43:bc:0a:f4:6d:1b:d9:b0:e9:86:93:
37:bb:4d:65:b4:27:0d:80:82:b9:be:54:3e:fc:c2:
21:d8:f9:2c:d6:36:14:48:1d:f9:da:57:85:3e:42:
b8:eb:a3:41:ce:81:9d:b7:bd:bd:f8:31:23:a4:4c:
d5:e4:ca:07:71:d9:a4:0c:ff:e4:bf:21:d4:bb:6f:
97:3a:c7:1e:4a:e0:65:31:a8:a1:28:44:8b:16:1d:
bc:9d:7d:01:d4:3c:ad:41:46:83:8e:c5:48:a6:5f:
ea:1d:b2:9d:01:1f:91:b9:3e:ed:a6:e2:a8:99:4c:
c1:00:e9:73:87:a7:e5:ed:c5:4d:ba:17:9d:76:09:
65:d7:d2:11:ca:14:fe:57:58:93:4d:dd:74:00:0b:
30:7e:66:d5:4a:e3:cb:75:5b:2a:b8:f5:76:57:c0:
5c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A0:1A:D4:59:B3:68:34:AA:FB:2A:9C:8D:40:18:7A:43:AF:CB:AC
X509v3 Authority Key Identifier:
keyid:BF:20:E6:4B:18:83:1B:C9:85:27:CB:E0:E1:06:7C:1A:95:D1:68:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyDmSxiDG8mFJ8vg4QZ8GpXRaH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/eb340f-8053-4f5f-a3a5-229b6409f2a0/1/OaAa1FmzaDSq-yqcjUAYekOvy6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/eb340f-8053-4f5f-a3a5-229b6409f2a0/1/vyDmSxiDG8mFJ8vg4QZ8GpXRaH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.112.0/22
194.32.172.0/22
IPv6:
2a0c:ea40::/29
Signature Algorithm: sha256WithRSAEncryption
b7:8f:b1:5c:80:14:2b:7e:b7:36:90:d2:83:5e:b6:a8:59:ae:
ec:f3:83:38:c2:87:b3:5e:6e:61:24:c9:a1:e7:cd:7e:88:a4:
e1:34:35:c5:2d:fd:07:d8:77:0e:29:22:c7:00:d9:16:0f:31:
c1:31:7e:c4:36:c1:3e:b5:df:c6:3d:b4:33:f9:3a:af:bd:b3:
5d:5f:12:38:91:ac:63:3a:ee:8f:79:16:82:66:97:9b:b2:f9:
be:f9:c9:f8:7b:b5:9b:c7:cd:26:f1:85:98:5a:f5:0e:3c:91:
0f:37:cb:2a:1a:04:0d:63:69:8a:f2:e2:79:c9:93:1a:51:58:
df:9e:24:df:9f:8c:92:19:9e:bf:8a:da:ee:d6:f0:89:9b:58:
eb:8d:b9:23:4f:a0:36:12:cc:6e:46:3a:1c:6f:de:3a:f1:d8:
98:20:6f:33:ac:e0:da:d4:b8:92:2c:17:fb:b5:62:46:9a:0d:
83:7d:8f:d6:fb:b3:d5:f6:e5:86:15:f0:01:c1:e2:b3:27:ce:
9d:ec:ed:b9:60:20:39:13:09:00:cb:5e:00:66:90:69:76:1f:
c7:a2:28:ba:f6:58:a3:4d:5a:e2:31:10:c8:ef:bb:d3:40:86:
39:21:57:54:35:8a:db:87:45:34:97:3f:6a:d5:c6:ba:8a:01:
59:e2:be:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org