Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/OwNtlhr-a6WIfHVBp6hXqVhQDus.roa
File: OwNtlhr-a6WIfHVBp6hXqVhQDus.roa (raw, json)
Hash identifier: +9fjp3cnLY+kyFYTFyOaLuMG71JhAG3T4L9YERw1O6k=
Subject key identifier: 3B:03:6D:96:1A:FE:6B:A5:88:7C:75:41:A7:A8:57:A9:58:50:0E:EB
Certificate issuer: /CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Certificate serial: 0177D6
Authority key identifier: 13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/OwNtlhr-a6WIfHVBp6hXqVhQDus.roa
Signing time: Wed 20 Apr 2022 14:05:10 +0000
ROA not before: Wed 20 Apr 2022 14:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21232
IP address blocks: 185.11.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96214 (0x177d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Validity
Not Before: Apr 20 14:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b036d961afe6ba5887c7541a7a857a958500eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:7a:55:ad:cb:84:92:d9:0d:b7:c8:29:d6:
a2:97:a7:ba:34:00:c3:98:06:a7:92:5f:86:4a:2e:
98:ec:dd:65:6b:4f:51:3e:73:97:39:51:16:9c:82:
ce:34:ed:6a:e3:c1:11:b5:72:16:3c:a5:09:8c:ed:
c3:67:73:e2:c2:51:97:c6:84:b9:44:f7:59:94:fc:
40:90:8f:89:9c:34:84:5f:9f:10:aa:df:30:57:2e:
23:e4:f7:38:ac:12:f8:af:a3:f4:f6:4b:df:d3:ed:
cf:dc:d3:eb:09:21:0d:4d:2c:21:bb:29:f5:d2:1f:
40:fe:8e:6b:22:e2:cc:e7:4c:45:0e:01:f6:76:68:
ad:82:5f:31:3d:e9:8b:3a:85:64:df:ac:09:fc:bc:
ee:34:05:59:44:28:70:40:11:ba:9e:a6:00:65:bd:
29:cd:02:1e:25:3d:b4:f4:51:6b:eb:b6:a4:a1:c7:
bb:ea:98:34:ef:e9:1a:31:1e:3c:46:45:c6:0e:7b:
02:aa:af:a6:5f:6b:b5:28:54:7d:b9:54:3c:e6:7b:
f7:52:58:cd:7a:02:1f:06:46:d2:0d:80:99:9a:7e:
a9:9d:29:5d:2e:ca:14:10:e5:99:2c:71:53:01:cd:
bc:9a:b5:c7:fe:ec:43:95:77:06:52:20:a1:77:72:
11:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:03:6D:96:1A:FE:6B:A5:88:7C:75:41:A7:A8:57:A9:58:50:0E:EB
X509v3 Authority Key Identifier:
keyid:13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/OwNtlhr-a6WIfHVBp6hXqVhQDus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/E_xd30njbWmTYwGtIr8kOkcbUkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:ef:34:34:23:5f:63:b7:99:2d:8e:93:12:ee:b5:2d:eb:e6:
da:c3:45:ee:3f:d6:e3:ee:74:d8:7e:9a:79:9d:55:64:4e:ce:
a6:73:f2:c4:54:9b:d1:f0:82:29:c9:36:aa:77:de:d3:33:e1:
30:fb:43:74:ce:e3:90:ae:87:dd:2f:66:74:94:98:e7:d0:34:
de:14:c6:0d:e2:d4:46:b9:7e:45:78:82:07:93:70:1f:b6:d1:
51:05:f7:4d:8e:cc:9f:e0:95:28:aa:4f:79:f4:4a:45:4c:a1:
68:6f:6d:fc:d6:13:3a:23:c3:29:9c:00:60:78:f1:b2:5b:72:
06:cb:1c:3e:51:06:24:b1:08:2c:b6:11:ff:24:fa:ec:d6:79:
07:1c:88:7a:48:47:50:20:57:d1:28:5d:9b:e4:1b:7b:00:a2:
16:08:3d:92:0c:61:08:5e:be:93:4e:ed:27:d7:e7:63:cc:e5:
cf:65:1f:fa:7d:d3:19:51:c8:c1:cb:2d:f8:88:db:2f:de:d4:
47:76:49:ce:e8:1d:b5:eb:cf:90:8d:6d:72:e7:16:8c:4a:76:
30:55:e3:e6:5d:0c:61:1e:72:a9:6c:cd:c3:83:22:47:98:0b:
b3:32:6a:4f:53:dd:cd:cb:a2:51:55:ac:3f:2e:14:b8:26:92:
7d:f9:1e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:37 2023 by rpki-client on console-fra.rpki-client.org