Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Oc-kUJ15rATDXLHtqHPW7z_r67Q.roa
File: Oc-kUJ15rATDXLHtqHPW7z_r67Q.roa (raw, json)
Hash identifier: 7EsSsPEwjm6Vz82RcSuSicHixACtoOx+CeEgF0yUAcM=
Subject key identifier: 39:CF:A4:50:9D:79:AC:04:C3:5C:B1:ED:A8:73:D6:EF:3F:EB:EB:B4
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38CE5FF2
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Oc-kUJ15rATDXLHtqHPW7z_r67Q.roa
Signing time: Sat 01 Jan 2022 07:55:11 +0000
ROA not before: Sat 01 Jan 2022 07:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1161
IP address blocks: 145.116.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953049074 (0x38ce5ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39cfa4509d79ac04c35cb1eda873d6ef3febebb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:cf:cd:3d:a5:2f:c4:06:12:cb:9f:59:75:
28:3e:e6:97:7f:9f:4d:e4:e4:11:24:ae:7c:c9:43:
04:68:79:0d:06:7c:8a:9b:04:66:0c:85:ca:b9:31:
24:4c:11:d7:eb:e1:11:31:8f:34:e9:ee:b2:1a:bf:
3b:be:ab:2d:23:1f:59:ed:ba:1a:63:49:04:fe:b4:
6c:50:b1:8b:dc:56:bc:cd:fc:07:9d:36:ee:e4:b1:
9c:28:0f:d9:02:06:c1:ad:ed:8b:4a:ef:c8:ee:1d:
0c:73:3e:a6:db:d6:0f:56:d1:0a:b8:16:f3:db:3a:
23:22:63:ca:68:bf:57:07:b1:b2:ed:ef:ae:df:e0:
22:b9:4e:e7:58:42:ed:c7:7e:5f:1e:8f:c4:27:65:
44:b3:06:d1:6a:a4:8a:55:1e:b8:48:db:55:f6:17:
2b:46:67:9f:28:0a:d6:02:09:41:4a:79:a3:74:1a:
d6:dc:36:2c:87:8c:64:c7:14:2a:43:12:63:3c:52:
65:c6:86:d9:11:28:c5:0a:ae:59:5d:2b:eb:40:bf:
ee:48:e5:f9:14:10:28:70:16:df:98:f8:e4:c9:4b:
00:d3:66:8d:7b:5d:a5:29:53:08:72:eb:d6:69:93:
17:cb:02:5e:af:35:25:7b:a4:74:51:c5:c4:eb:bf:
4f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CF:A4:50:9D:79:AC:04:C3:5C:B1:ED:A8:73:D6:EF:3F:EB:EB:B4
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/Oc-kUJ15rATDXLHtqHPW7z_r67Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.116.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:aa:6f:53:20:53:69:63:b8:81:18:15:2e:39:1e:2d:0e:80:
25:38:70:40:92:96:73:cd:a2:48:74:9c:43:a6:73:f7:65:08:
73:b6:b4:a1:b6:0b:db:0b:e4:44:91:5e:3d:30:13:d4:a6:80:
a6:a0:d4:93:c1:e5:f3:1a:1a:17:9b:18:c6:58:1e:63:a6:81:
aa:32:e4:1f:c3:92:f8:86:f7:9e:b4:af:47:fc:d8:6a:ea:c7:
b2:91:c4:d9:15:67:4b:25:43:19:1b:89:59:90:b5:41:2c:ad:
19:30:41:e7:b3:a2:92:32:5b:91:6a:b4:0f:4d:3d:fa:ef:1e:
91:b7:f1:b9:bd:04:6d:39:57:c7:b4:11:31:81:1d:3a:53:a2:
d4:87:4b:d0:85:15:fb:79:8a:0c:07:fb:63:85:a9:41:c5:83:
cd:e4:34:43:39:2d:a8:ee:ba:5f:e2:7e:03:cf:98:b9:55:99:
c2:f1:33:5a:80:c2:0c:e3:ae:19:4a:0d:d1:36:91:e2:16:33:
af:c9:83:ec:1d:ae:72:c4:76:12:1c:a8:92:e6:b0:b0:7b:52:
84:52:e6:11:39:55:b7:83:ec:a4:9a:83:ef:15:0f:bf:22:03:
64:2b:4d:92:4e:d2:90:4c:ec:23:97:8b:07:03:c9:0b:fc:d3:
11:58:29:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org