Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/07bf93-6b71-4752-887e-71b5056d5b02/1/O2-EMzASmDJpgZ_GCse2cBmVYI0.roa
File: O2-EMzASmDJpgZ_GCse2cBmVYI0.roa (raw, json)
Hash identifier: 2OfQ/WZ+OfIjUitKBqLmneJfUcCv37L3gKMg7ZX9SKA=
Subject key identifier: 3B:6F:84:33:30:12:98:32:69:81:9F:C6:0A:C7:B6:70:19:95:60:8D
Certificate issuer: /CN=be8baeae76001a87daeeb0bc2a8dd10ce65f865d
Certificate serial: 01149A2E
Authority key identifier: BE:8B:AE:AE:76:00:1A:87:DA:EE:B0:BC:2A:8D:D1:0C:E6:5F:86:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vouurnYAGofa7rC8Ko3RDOZfhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/07bf93-6b71-4752-887e-71b5056d5b02/1/O2-EMzASmDJpgZ_GCse2cBmVYI0.roa
Signing time: Sat 01 Jan 2022 01:53:59 +0000
ROA not before: Sat 01 Jan 2022 01:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207674
IP address blocks: 193.26.146.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18127406 (0x1149a2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be8baeae76001a87daeeb0bc2a8dd10ce65f865d
Validity
Not Before: Jan 1 01:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b6f84333012983269819fc60ac7b6701995608d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:13:cd:ad:2b:bc:d9:44:46:d2:dc:43:94:9a:
63:9a:87:f0:b7:4b:5f:11:31:3a:48:d7:74:75:07:
3b:94:01:26:70:79:55:db:e9:c1:de:3d:05:fc:d2:
c8:2b:16:00:c8:33:6b:e7:39:0f:b0:cc:ee:07:d4:
58:0d:e0:4b:35:8a:43:41:7e:10:84:06:09:68:2a:
99:c1:6a:8e:1b:8f:21:a5:ed:fd:c5:d1:79:6a:77:
4b:22:cb:a3:d7:77:96:34:b6:d2:a8:5c:e6:a3:5c:
54:4b:8c:d7:46:ab:18:b1:ee:0c:52:98:5a:1a:5b:
da:e3:28:ba:fc:29:3a:9c:36:63:9a:5e:6a:b8:6b:
58:9d:55:e7:2e:6f:46:1e:d7:e4:b9:9f:93:35:78:
0e:38:c4:31:84:32:24:da:e6:85:b7:e4:78:d2:b8:
6b:76:37:2b:1a:e1:a5:10:f7:ac:cd:c1:83:01:22:
49:77:56:93:1c:a1:c3:d7:2f:f3:82:cb:5d:a6:c6:
14:c2:70:d0:b4:73:d5:4a:e8:27:fb:4c:46:01:eb:
e0:6b:35:43:76:ed:31:07:f8:c2:2f:d0:fc:38:0b:
18:2b:76:ea:5b:e4:54:10:a5:cf:ef:6d:5a:f1:ad:
5d:ca:ef:df:f2:e1:0e:66:7b:ce:d0:39:42:2f:28:
f7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6F:84:33:30:12:98:32:69:81:9F:C6:0A:C7:B6:70:19:95:60:8D
X509v3 Authority Key Identifier:
keyid:BE:8B:AE:AE:76:00:1A:87:DA:EE:B0:BC:2A:8D:D1:0C:E6:5F:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vouurnYAGofa7rC8Ko3RDOZfhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/07bf93-6b71-4752-887e-71b5056d5b02/1/O2-EMzASmDJpgZ_GCse2cBmVYI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/07bf93-6b71-4752-887e-71b5056d5b02/1/vouurnYAGofa7rC8Ko3RDOZfhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.146.0/23
Signature Algorithm: sha256WithRSAEncryption
41:c8:96:16:97:1d:40:1e:be:12:cc:66:db:74:ed:d8:23:6e:
e8:dd:e4:13:f5:89:33:17:e8:b2:82:40:89:e0:80:df:88:3f:
90:e8:97:6a:ea:5d:3e:20:82:88:af:22:52:ee:41:a8:a8:32:
3f:55:3d:a2:32:3c:58:90:68:9f:20:81:8a:31:d7:a0:3b:17:
71:a0:6b:5b:b6:59:f8:e7:de:03:f4:7c:f7:b2:c3:e4:37:ac:
1c:e5:65:a0:e5:f7:2a:25:2e:9e:85:b9:7b:47:66:64:9d:7c:
ec:e3:18:af:d3:d3:14:3e:61:78:6e:c1:2f:b2:67:18:ac:26:
bd:f8:48:c0:50:b3:f0:56:a0:61:a1:5a:24:9b:08:93:d4:39:
f6:b0:26:79:72:94:40:1d:d4:21:a2:25:76:ac:30:87:35:29:
97:c9:a8:ed:7e:76:bc:0e:f4:93:7f:79:df:b2:d4:c9:f2:d8:
7d:c7:85:61:f1:87:45:4e:31:d8:0b:dc:55:d1:6b:45:19:c4:
82:74:63:f2:14:42:7b:c9:0f:a4:3d:d5:17:59:77:d6:ad:7b:
d3:ac:d6:aa:23:2a:8e:6e:77:60:dc:c9:83:1a:61:9f:c0:e5:
4d:e8:4b:a1:de:3c:de:fa:0b:34:fc:4d:c8:4c:43:a9:8e:1b:
8b:4c:c3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:27 2024 by rpki-client on console-ams.rpki-client.org