Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/8Oai13Gm4MVzFN7CIQR4I7MiPmk.roa
File: 8Oai13Gm4MVzFN7CIQR4I7MiPmk.roa (raw, json)
Hash identifier: 2vZAW9H53F9cmBOiaq7E6lxUluvR9PxcptrPiD7fbpI=
Subject key identifier: F0:E6:A2:D7:71:A6:E0:C5:73:14:DE:C2:21:04:78:23:B3:22:3E:69
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 03C4B369
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/8Oai13Gm4MVzFN7CIQR4I7MiPmk.roa
Signing time: Sat 01 Jan 2022 09:02:41 +0000
ROA not before: Sat 01 Jan 2022 09:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49687
IP address blocks: 5.157.136.0/21 maxlen: 21
188.74.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63222633 (0x3c4b369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 1 09:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0e6a2d771a6e0c57314dec221047823b3223e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:82:6d:97:1b:62:d6:0d:be:59:ab:14:ba:f7:
6e:08:7f:1d:94:73:2a:21:16:34:dc:55:45:07:a3:
3a:8a:9b:76:bb:f0:0f:8b:bd:97:b0:ac:14:a9:5c:
c7:11:38:91:2c:b2:d4:be:63:43:e5:3f:11:20:26:
79:26:4c:9b:a3:1d:ac:71:d9:12:17:2c:fd:51:49:
d1:71:27:46:c6:c6:72:0f:73:e7:ae:fb:0e:d2:83:
6b:90:d2:7d:78:1d:0a:b8:8d:98:ab:a0:56:42:f2:
67:7a:dd:d9:3b:52:9f:19:fa:6f:cb:63:38:3c:74:
4f:76:71:81:23:12:b0:4f:d4:b4:d9:5a:bd:a1:36:
1b:6a:4d:ee:6e:2d:00:25:cc:2b:7a:a5:65:dc:0b:
6b:57:54:41:eb:c3:b6:75:5e:3d:48:45:70:41:f2:
3b:86:4f:91:86:3f:b6:60:88:07:7e:e4:f2:6d:3f:
d8:21:30:27:19:de:30:be:80:8e:cd:44:48:ca:d1:
be:c7:4c:19:61:53:c1:7a:48:96:e1:53:dd:a7:ac:
08:7e:3c:16:91:65:f5:0d:da:19:12:f3:0d:65:fb:
b5:fc:76:fa:37:c5:23:64:2d:c5:a4:7c:31:ad:9a:
21:d6:6e:31:59:4e:c4:2b:23:9c:1d:4d:68:2e:af:
7d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E6:A2:D7:71:A6:E0:C5:73:14:DE:C2:21:04:78:23:B3:22:3E:69
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/8Oai13Gm4MVzFN7CIQR4I7MiPmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.136.0/21
188.74.153.0/24
Signature Algorithm: sha256WithRSAEncryption
86:0e:6a:32:6d:ff:94:39:36:7a:95:bd:bd:be:ba:f4:28:69:
c3:2c:82:fb:4e:fe:d9:65:a2:e5:1c:94:dd:44:66:6a:5c:27:
02:83:d7:8a:c5:51:aa:91:18:5a:68:f5:19:e7:34:94:af:28:
00:dd:2d:3d:52:8e:63:ed:39:a1:a2:a2:27:e1:60:76:0d:dc:
4b:8f:7c:ce:7b:c2:6b:52:7a:a6:c9:76:6e:56:5f:7b:c5:cd:
2c:e3:33:f0:41:27:b4:8f:51:4e:14:0a:f1:28:42:c8:76:e1:
fc:2c:7d:52:35:04:1c:db:4f:28:4b:7b:bb:2c:f1:ac:21:c5:
a9:58:cf:3e:04:4a:07:bd:de:84:0c:06:5d:ad:c2:1f:30:72:
ac:8c:57:af:1e:2a:ce:d5:b1:f1:43:0e:d3:71:3d:24:85:cf:
1e:6a:81:db:61:2f:fb:74:fd:66:d2:40:c4:77:17:f4:98:f9:
2b:13:91:3c:b5:62:72:fc:4e:32:3f:a8:5f:52:c6:db:16:52:
34:a4:dd:eb:9d:53:82:4f:79:04:69:b1:bf:e8:e3:56:4c:76:
39:7b:f1:cf:bf:f2:72:7f:73:cb:7e:df:b0:6a:ce:f3:26:6c:
29:14:04:e8:93:ea:0d:9a:fd:37:77:c8:14:68:52:8a:ec:80:
57:10:3d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org