Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/OUnLexi62OHgsdxi7a1yjyzyHVs.roa
File: OUnLexi62OHgsdxi7a1yjyzyHVs.roa (raw, json)
Hash identifier: lA7gHBbCfTLbwfbUznUKs/2YR6SWXf7xwS/ak+irSFM=
Subject key identifier: 39:49:CB:7B:18:BA:D8:E1:E0:B1:DC:62:ED:AD:72:8F:2C:F2:1D:5B
Certificate issuer: /CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Certificate serial: 0183C0A5E9BB1B13DF9DA4695B2066822734
Authority key identifier: BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/OUnLexi62OHgsdxi7a1yjyzyHVs.roa
Signing time: Mon 10 Oct 2022 06:47:22 +0000
ROA not before: Mon 10 Oct 2022 06:47:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45021
IP address blocks: 86.104.228.0/24 maxlen: 24
2a12:8e40:5668::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:a5:e9:bb:1b:13:df:9d:a4:69:5b:20:66:82:27:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Validity
Not Before: Oct 10 06:47:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3949cb7b18bad8e1e0b1dc62edad728f2cf21d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a5:f5:2c:c8:fb:2d:e7:e5:13:e8:d2:d8:40:
63:9b:12:aa:15:f4:b0:c3:55:13:e1:94:73:45:66:
26:ae:ea:ae:36:aa:35:6c:a6:c4:44:2d:e1:8d:c4:
70:74:c7:3a:87:4d:28:3a:e7:a4:dc:e0:96:a4:39:
c1:0f:55:8e:75:51:5f:f4:0c:04:3c:33:b1:9f:18:
38:43:ed:21:03:2d:ce:ce:f1:1c:33:38:19:e3:af:
fc:1d:fe:6f:00:53:52:a7:58:5e:0f:ff:9b:ae:22:
ce:d1:23:fc:18:de:c3:de:1d:f3:0c:a8:9d:fd:b4:
ed:08:c0:78:37:91:b9:3c:7d:ec:98:d7:c4:4a:ba:
2a:7a:5e:6d:8a:2b:e6:00:60:15:89:3d:11:ce:74:
b0:53:2a:e5:34:e2:d9:10:a9:a1:45:fb:57:90:16:
d1:d4:0e:fd:05:13:5c:89:5d:36:b2:05:fe:a8:12:
ce:df:64:bb:78:b8:09:63:59:9f:4e:5f:d6:37:65:
6c:1f:fb:74:7a:5b:d9:58:41:e0:5e:a0:71:6b:98:
f0:e6:46:4c:f9:ec:0f:1e:12:a8:0b:ef:58:3b:54:
1e:50:4c:a4:43:20:4a:4b:36:5f:f3:2e:91:83:c4:
c1:2b:8e:2c:9e:8c:13:25:95:83:c2:d2:75:cb:e1:
16:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:49:CB:7B:18:BA:D8:E1:E0:B1:DC:62:ED:AD:72:8F:2C:F2:1D:5B
X509v3 Authority Key Identifier:
keyid:BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/OUnLexi62OHgsdxi7a1yjyzyHVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/voSufAUDrEUJNMn2z_OaFTelEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.228.0/24
IPv6:
2a12:8e40:5668::/48
Signature Algorithm: sha256WithRSAEncryption
76:2e:0e:e2:e6:bf:12:a1:e8:08:0e:b3:bb:b4:19:03:04:4e:
e8:5b:a3:a6:13:eb:71:c0:fc:06:16:14:e3:49:74:7d:1d:3d:
77:aa:f0:e0:b7:b5:8a:ea:d4:17:c9:39:a7:3f:b3:99:df:da:
1e:e6:cf:80:d7:bb:af:b9:aa:c0:d6:10:7d:23:57:ad:86:d4:
7e:be:d0:c1:33:36:eb:f4:6a:27:bc:b2:52:9e:6b:9b:e8:d0:
fe:c9:74:88:aa:e2:90:6f:b4:08:fa:ee:86:84:16:ec:d5:3c:
53:f2:16:ce:e9:8b:18:3a:b3:16:b6:3f:06:b4:8f:50:79:ec:
ef:b1:e6:b3:e2:c1:fe:a7:27:4a:44:7e:cc:59:e1:c1:5c:08:
62:ba:f0:c0:6e:5f:a9:3f:dd:27:cf:17:23:3d:3a:f5:cd:3d:
cf:84:12:e7:40:e2:84:a6:8d:de:35:a6:a2:64:f1:ad:0d:44:
3c:63:b0:79:7f:ed:04:a2:9e:cc:e9:2e:6c:91:5f:dc:5a:2b:
39:31:ad:66:b3:78:38:4c:33:45:a7:93:12:79:06:1d:09:ca:
65:7e:7d:1a:49:f4:65:b6:9c:c1:8e:67:03:3b:56:90:2e:16:
01:f4:7d:9a:46:c8:a8:85:97:48:e3:80:49:ff:55:7c:74:53:
fa:ae:b1:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:40 2024 by rpki-client on console-fra.rpki-client.org