Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/OJGm5vTkvcwyfSU3H781gPeh-jo.roa
File: OJGm5vTkvcwyfSU3H781gPeh-jo.roa (raw, json)
Hash identifier: Fkjf28ulLFLTVVTwUJ0Ug9S8fm0XIXjYqDbKbfs1JD8=
Subject key identifier: 38:91:A6:E6:F4:E4:BD:CC:32:7D:25:37:1F:BF:35:80:F7:A1:FA:3A
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 03446027
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/OJGm5vTkvcwyfSU3H781gPeh-jo.roa
Signing time: Sat 01 Jan 2022 09:57:21 +0000
ROA not before: Sat 01 Jan 2022 09:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.230.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54812711 (0x3446027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Jan 1 09:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3891a6e6f4e4bdcc327d25371fbf3580f7a1fa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:eb:50:1f:c9:16:b2:ce:8c:da:6b:2b:78:8b:
60:72:88:dd:dc:ad:90:3a:6e:56:4a:c4:63:d1:14:
71:e0:ac:e6:90:4b:fd:b3:fa:5b:ac:5f:02:5c:e0:
b2:ec:c7:36:73:72:e2:a0:a1:46:2a:cd:a4:e6:33:
1b:f1:33:af:59:16:77:2d:73:af:f3:68:cd:0f:bb:
02:60:52:62:4f:ce:59:1f:c8:c1:ea:ee:8e:44:0b:
35:98:90:4d:d0:e4:94:57:8e:b9:02:7f:44:91:ab:
9f:8b:c9:a8:03:52:3f:6a:8b:ed:a3:ff:cf:f4:a1:
3a:a6:45:07:19:5a:e8:d2:f6:81:1b:bd:82:90:2d:
aa:f0:fe:05:c0:e5:03:c2:1e:35:de:65:78:11:8d:
58:2b:e3:b7:5f:13:60:d1:7d:9e:b9:0a:84:49:33:
bb:f8:3f:a5:4f:0b:b0:a6:98:c9:d2:5a:aa:e4:47:
1f:92:5a:9d:56:d6:df:98:b9:8d:80:ff:5b:db:3d:
af:38:d0:04:50:fa:c6:3c:2c:08:b1:cd:3a:1b:50:
d7:7c:ac:d1:f5:c3:4a:f5:c9:83:fe:88:f6:72:11:
5b:31:2e:10:3c:81:4b:c4:21:dc:d1:a5:fa:1c:77:
87:10:5a:80:fe:b0:7e:2f:fd:7c:a1:de:16:36:8f:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:91:A6:E6:F4:E4:BD:CC:32:7D:25:37:1F:BF:35:80:F7:A1:FA:3A
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/OJGm5vTkvcwyfSU3H781gPeh-jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.103.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:39:2a:ac:76:17:99:9d:14:39:63:0a:03:47:92:de:38:a5:
1a:84:2f:7d:e5:31:22:9b:76:e9:be:06:50:da:0b:14:d7:97:
4a:95:a1:67:1c:ef:cb:3d:9b:8f:4b:62:f8:75:52:67:1d:e6:
c0:38:94:ed:e1:50:03:c6:c1:86:8f:77:59:e5:00:87:d8:82:
22:97:6b:8c:af:f6:01:15:ac:6f:df:de:66:06:02:10:d1:4a:
f2:05:11:56:5b:ba:e2:60:ad:c8:b1:7e:19:ac:68:e8:ef:e4:
94:65:5d:8b:a0:4f:d0:f7:de:b2:4e:b9:2a:cb:c7:48:14:82:
49:f2:92:a7:42:86:c0:3c:3c:3c:bd:e4:0f:08:f1:8c:00:23:
20:2b:ff:b8:d0:e4:32:a2:1a:9e:4d:1e:44:00:dd:89:ea:a5:
f4:0e:26:3b:7d:a6:18:16:3d:de:ab:a3:08:e5:ea:7c:de:44:
5d:b8:c6:e4:9d:cc:04:b9:7f:7f:87:f0:47:89:a5:46:b8:96:
cf:8c:a5:1b:e9:be:59:e2:80:c8:f1:5b:16:43:83:17:76:ec:
35:09:26:8b:34:f8:1f:82:a2:f6:15:22:32:a2:1d:3d:02:7b:
3b:ea:c3:bc:25:e9:96:aa:79:6a:e4:2e:8a:4b:e6:c1:01:a3:
fe:95:a6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:43 2024 by rpki-client on console-ams.rpki-client.org