Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OIEnTj2rU7e_wdv6gslEgQswlsY.roa
File: OIEnTj2rU7e_wdv6gslEgQswlsY.roa (raw, json)
Hash identifier: HY70aEIbhUvPRqy1ygFuB8gOmTnTDlV4BuXHhYIVBVA=
Subject key identifier: 38:81:27:4E:3D:AB:53:B7:BF:C1:DB:FA:82:C9:44:81:0B:30:96:C6
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 44D174FB
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OIEnTj2rU7e_wdv6gslEgQswlsY.roa
Signing time: Sat 01 Jan 2022 14:06:49 +0000
ROA not before: Sat 01 Jan 2022 14:06:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34762
IP address blocks: 185.76.236.0/22 maxlen: 24
46.21.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154577659 (0x44d174fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 1 14:06:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3881274e3dab53b7bfc1dbfa82c944810b3096c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:47:2a:d8:71:c0:f9:e6:18:c2:6c:2f:2e:d4:
ba:2e:c9:b3:5e:0e:02:e7:20:18:a7:9a:19:a6:40:
c3:f3:70:a8:15:c3:f2:99:a5:25:fd:db:6a:a9:bd:
cb:0c:6b:1a:d0:92:e6:4f:a2:ac:ad:90:2a:4f:41:
3d:b4:81:ed:c6:ef:83:bd:e4:59:ce:6d:8b:0a:14:
a1:06:f6:32:ad:d1:32:f2:03:41:f8:93:ae:45:dc:
0c:c8:b5:dd:00:bb:7e:55:34:f9:a0:99:dd:e1:1c:
66:74:11:b0:f8:52:0e:36:f7:42:e3:a3:f5:3c:6f:
5f:41:36:8d:80:bc:da:1b:22:93:c0:f0:c4:df:a2:
7f:96:a6:f0:61:8d:3b:2d:64:c0:c8:8b:0c:28:a0:
21:3b:b0:2b:c0:bc:f0:56:a0:4f:4a:f1:67:ac:c8:
ad:ce:21:17:09:f9:7c:43:88:a4:c6:98:dd:29:c7:
8f:38:fb:d5:52:e9:3c:99:7b:9e:88:7c:fc:9d:70:
c2:46:03:c9:bb:a8:3b:39:de:36:8e:33:17:da:99:
9c:e5:af:c6:c1:09:91:55:ed:21:26:75:58:5e:22:
ee:6a:b8:a9:43:6f:f6:58:5f:49:6d:fe:8c:b9:d5:
17:41:84:bb:5f:7f:11:ac:fd:d0:82:5f:17:d2:d7:
3d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:81:27:4E:3D:AB:53:B7:BF:C1:DB:FA:82:C9:44:81:0B:30:96:C6
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OIEnTj2rU7e_wdv6gslEgQswlsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.224.0/20
185.76.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:c0:de:5e:b7:45:15:81:37:5a:d0:cd:f4:2f:7c:a4:6c:5d:
4f:0d:7a:5a:73:f6:9c:a4:60:61:2d:b5:c7:e8:c7:55:68:e1:
5d:c7:54:04:f3:1e:df:62:2c:79:62:dd:1f:41:0c:88:51:52:
73:de:5c:53:6b:cc:bc:24:3b:82:d8:eb:97:49:c3:73:80:63:
3d:f6:77:73:73:1d:98:d4:88:8b:3d:55:e6:20:7f:49:d5:f0:
5b:b9:f0:20:81:07:56:3b:41:b9:51:13:ff:92:af:65:03:23:
92:f7:89:53:d8:b9:c1:27:fc:4d:de:e8:53:62:36:f9:67:3b:
33:04:b5:13:71:8d:e2:87:40:e9:e8:29:94:1e:7e:c4:2f:3b:
ca:73:d9:62:a6:47:6c:1d:72:9e:14:fb:ab:85:2d:29:f6:66:
49:3d:29:0a:7e:87:61:7c:14:7e:97:7f:38:94:70:0e:03:e4:
16:a9:6b:b0:80:cc:7d:24:b8:87:10:f3:bd:dd:51:86:ea:32:
5c:e0:53:ea:38:82:3b:82:64:78:d5:60:70:4b:cb:3a:a1:a7:
ad:73:1f:d2:5d:7f:e2:7d:9b:d2:c5:42:d0:81:8e:94:5a:68:
7b:e0:87:fa:2e:2d:b1:06:a5:1d:e1:de:53:3a:74:de:64:cb:
ef:de:e9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org