Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DvO1p9Z4k17ePyic7XbsUXRworQ.roa
File: DvO1p9Z4k17ePyic7XbsUXRworQ.roa (raw, json)
Hash identifier: o8H99scUCZCcsGP3DZUfe2R5hHr0qbgBFYPvhB5LBpU=
Subject key identifier: 0E:F3:B5:A7:D6:78:93:5E:DE:3F:28:9C:ED:76:EC:51:74:70:A2:B4
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0E32B623
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DvO1p9Z4k17ePyic7XbsUXRworQ.roa
Signing time: Wed 30 Mar 2022 14:11:17 +0000
ROA not before: Wed 30 Mar 2022 14:11:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56791
IP address blocks: 94.243.224.0/21 maxlen: 22
185.159.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238204451 (0xe32b623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Mar 30 14:11:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ef3b5a7d678935ede3f289ced76ec517470a2b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:e4:b1:c6:f4:12:01:e7:0d:cd:b0:ed:3d:
72:7f:89:d8:16:60:0a:64:ef:26:eb:f6:19:00:c9:
7a:ad:f5:e6:c1:b9:d9:ac:fa:df:37:38:6f:65:ec:
ae:61:98:e0:66:66:db:e2:42:eb:6c:47:91:aa:34:
b1:a2:3d:06:c4:8b:92:37:b5:34:13:7b:82:40:54:
8c:e5:78:fa:19:46:5d:27:7c:1f:90:ac:d8:16:4b:
ec:04:77:6a:8e:e9:ef:15:99:fa:76:15:46:3b:64:
f9:37:5a:8b:61:c3:d6:0b:7f:f9:e4:cd:35:23:57:
3d:50:13:1c:55:a8:cd:8f:77:68:0b:6a:bc:ca:09:
94:ae:d3:ae:60:58:61:74:b0:d3:8c:1c:11:1f:c0:
70:5d:29:b1:4c:3e:ad:57:f5:09:a1:f3:1d:84:47:
58:70:12:ae:18:69:a7:c0:f3:f3:79:d2:37:58:5c:
39:71:0f:f0:0b:2c:80:37:2a:ec:6e:43:dc:ea:42:
d9:95:a5:31:e4:79:bc:d8:87:89:cc:4a:ec:c3:4c:
05:b6:3b:16:dc:c7:de:c6:6c:f3:c2:31:ab:aa:e5:
4d:f7:f3:88:57:b1:7b:60:16:31:3d:44:59:6c:14:
cb:be:9b:90:c4:31:7f:32:6c:c0:a5:fb:9f:3a:ca:
c1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F3:B5:A7:D6:78:93:5E:DE:3F:28:9C:ED:76:EC:51:74:70:A2:B4
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DvO1p9Z4k17ePyic7XbsUXRworQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.243.224.0/21
185.159.172.0/22
Signature Algorithm: sha256WithRSAEncryption
03:f6:79:49:42:03:d8:db:c1:f9:56:d9:79:57:7e:dc:4e:62:
64:0f:2f:1f:b1:8d:82:66:ce:9b:5e:42:35:e4:c3:24:0a:a2:
0a:e8:b0:7a:21:44:a1:ee:74:7c:9f:6c:3d:a6:48:f6:44:05:
e8:14:4f:b4:db:20:d4:32:34:16:c0:d1:f0:2e:ba:87:5b:79:
57:17:0c:6e:ff:98:e7:ac:03:f5:c3:4e:c7:4b:e7:d1:d7:6d:
93:47:e9:b7:9a:d3:98:51:30:52:5d:b2:89:96:2d:df:d7:82:
78:96:25:42:ab:85:9a:76:97:a4:83:cc:32:6f:6c:eb:0a:8e:
44:4c:01:0f:11:bb:d9:49:37:1f:69:96:b6:ba:01:0d:a5:87:
dd:19:be:a2:32:b4:3e:5f:ca:3b:29:ec:87:80:cc:7e:66:dc:
c8:b2:78:9b:0a:71:90:6a:24:58:e9:58:d9:b2:40:c8:9c:27:
7b:64:72:4d:ce:64:9c:97:1c:81:f5:2e:5c:ca:43:a9:86:96:
ee:31:e1:c8:14:b1:db:8d:16:d4:d1:9a:87:e8:06:4d:97:3e:
22:d8:34:40:aa:8f:56:16:45:5f:18:53:53:9a:d3:f1:8e:a0:
e0:42:ea:b8:e0:35:7d:9e:96:29:3a:3f:48:58:c5:c2:81:a8:
11:6d:26:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org