Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ooENIBqA0EH2ER533MAvlqE0SgM.roa
File: ooENIBqA0EH2ER533MAvlqE0SgM.roa (raw, json)
Hash identifier: fPGE6wj5XkQhrrxxAMbap7S3/hKFVqZfcXGno7CymEQ=
Subject key identifier: A2:81:0D:20:1A:80:D0:41:F6:11:1E:77:DC:C0:2F:96:A1:34:4A:03
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 145A2A7F
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ooENIBqA0EH2ER533MAvlqE0SgM.roa
Signing time: Mon 28 Mar 2022 13:37:06 +0000
ROA not before: Mon 28 Mar 2022 13:37:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140812
IP address blocks: 82.115.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341453439 (0x145a2a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 28 13:37:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2810d201a80d041f6111e77dcc02f96a1344a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:67:e3:5a:ff:88:29:77:e7:33:4f:31:df:9b:
dc:d9:57:c1:3b:ff:8d:29:76:41:51:3d:3f:e5:82:
c9:cc:e4:ec:a6:28:56:a1:75:4f:14:72:89:85:7e:
a7:d5:14:d0:eb:d3:57:93:32:0e:ab:bb:28:ce:a4:
6b:e1:43:6b:de:1b:2f:f3:94:24:a6:8c:87:56:d5:
f4:d1:78:07:ab:8e:ac:30:a4:98:30:66:2c:d6:e8:
0e:ed:6c:5e:c9:d4:0a:d9:86:e2:15:c5:ea:85:c9:
e4:2b:11:0d:7a:a5:4c:e5:e9:27:98:1c:39:d4:78:
0d:da:10:5f:4a:91:04:b6:9b:30:e2:b1:3f:ad:ba:
02:d2:0a:b3:15:95:af:8a:eb:51:ec:8e:dd:9b:b9:
9d:d7:e8:2c:fc:48:10:33:13:30:19:60:e8:17:09:
f1:5e:8f:bd:44:34:36:01:72:32:f2:4d:7f:8a:e4:
78:cd:7a:33:97:3e:12:96:46:73:8a:5b:b9:61:32:
05:a2:4d:43:d6:7f:6e:3b:b1:59:ea:b6:cf:87:d1:
52:3d:44:15:6c:8d:de:40:df:19:7a:e5:d0:3e:a2:
f1:7c:63:03:a1:19:91:54:3c:12:69:ff:e6:ee:ea:
9f:02:1a:99:f9:62:6c:95:37:84:ae:7d:f0:89:ee:
0e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:81:0D:20:1A:80:D0:41:F6:11:1E:77:DC:C0:2F:96:A1:34:4A:03
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ooENIBqA0EH2ER533MAvlqE0SgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:25:22:f4:44:95:94:fc:90:5d:6a:46:55:56:70:3a:ae:70:
3b:2d:d8:77:75:bf:20:6c:25:c6:4c:ae:49:ef:1e:e3:62:d3:
51:7b:f6:71:af:d2:a9:ac:87:53:f0:5b:33:5c:eb:0a:3a:0d:
1a:ee:6a:f0:4a:3f:1b:d9:ed:2f:7b:69:1f:39:c1:2a:4a:21:
0c:39:d0:63:1d:50:67:74:29:c9:93:d2:e4:8b:6d:de:84:8f:
1d:9f:54:61:5b:64:80:cb:81:b4:c5:af:84:79:8e:25:3d:b0:
53:b3:a7:93:63:a8:0e:3f:ea:0e:50:63:1d:d4:5f:09:58:46:
0d:7d:6f:5e:0f:d3:81:33:e7:17:d7:53:96:dc:88:9c:24:61:
fe:7e:b0:54:c1:ed:e1:53:2f:32:0c:36:0c:c0:b4:9d:fa:6f:
6f:db:67:b2:24:03:87:43:fd:df:49:e9:54:9b:63:e7:8c:6f:
53:08:17:da:c7:6d:ee:f3:3d:03:50:5b:e1:bf:af:01:5e:c0:
3f:e2:44:d8:37:b8:3e:0e:6f:4d:be:14:5a:bb:aa:7e:90:66:
98:ab:97:ae:e7:3b:e1:1c:06:f1:14:55:fe:5b:81:e4:24:d0:
67:59:23:8c:4b:a2:06:23:ab:9e:27:dc:1e:fb:38:93:22:4f:
af:c7:76:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org