Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b0c875-24e1-444d-b01d-5408f8d9dfb1/1/OxSIFBOCrqEYlDl7sBUaFE1HSRE.roa
File: OxSIFBOCrqEYlDl7sBUaFE1HSRE.roa (raw, json)
Hash identifier: lCEZ14wtChnZLjpuvKfl9z9OpG5ckSb+c6YNyV7aFiA=
Subject key identifier: 3B:14:88:14:13:82:AE:A1:18:94:39:7B:B0:15:1A:14:4D:47:49:11
Certificate issuer: /CN=6cff3d899e26fc84fb4379fb325f174b5075ce0d
Certificate serial: 1683F0A5
Authority key identifier: 6C:FF:3D:89:9E:26:FC:84:FB:43:79:FB:32:5F:17:4B:50:75:CE:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bP89iZ4m_IT7Q3n7Ml8XS1B1zg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b0c875-24e1-444d-b01d-5408f8d9dfb1/1/OxSIFBOCrqEYlDl7sBUaFE1HSRE.roa
Signing time: Sat 01 Jan 2022 10:57:12 +0000
ROA not before: Sat 01 Jan 2022 10:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29317
IP address blocks: 195.137.210.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377745573 (0x1683f0a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cff3d899e26fc84fb4379fb325f174b5075ce0d
Validity
Not Before: Jan 1 10:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b1488141382aea11894397bb0151a144d474911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c5:f5:b3:77:a2:2d:13:df:c8:dd:2c:f0:b8:
c9:b7:5b:98:18:07:c8:ab:3c:42:e3:4b:8a:37:3d:
0d:de:15:f4:ba:ad:4a:1e:5c:70:11:36:5b:1c:9c:
33:67:ae:57:e5:8f:1b:64:ac:ce:df:a0:f9:f3:eb:
0d:02:42:40:a2:5a:c4:b8:a6:9f:18:74:0f:84:93:
64:73:89:7c:bf:15:7e:3b:f1:f4:c8:25:20:c5:8b:
7e:0b:58:21:ff:0d:21:c8:d0:cd:8e:ef:9c:89:6b:
35:22:31:73:af:bc:73:65:48:ac:dc:1e:51:d2:86:
e5:38:83:94:77:b9:74:ec:8e:37:00:a0:42:1f:c5:
bc:ac:4b:71:5e:47:d7:0d:c9:b8:6d:fb:d7:db:43:
47:65:3a:a4:e2:52:eb:6b:40:7e:e7:75:b4:36:c0:
57:ad:9d:61:45:0f:3c:f2:00:a3:8b:16:42:26:f9:
ea:d4:ea:ff:b1:90:27:91:08:6c:4a:f5:65:55:71:
70:1b:34:47:ce:69:8f:f2:39:bc:72:e9:6d:8d:f6:
36:22:51:34:d1:92:61:34:b1:4d:12:fd:cb:a2:aa:
23:1b:24:8b:b2:0d:b3:d4:19:92:89:ff:be:cd:9b:
b8:c8:67:d2:2d:b0:03:6c:26:c2:34:03:9a:9f:1e:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:14:88:14:13:82:AE:A1:18:94:39:7B:B0:15:1A:14:4D:47:49:11
X509v3 Authority Key Identifier:
keyid:6C:FF:3D:89:9E:26:FC:84:FB:43:79:FB:32:5F:17:4B:50:75:CE:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bP89iZ4m_IT7Q3n7Ml8XS1B1zg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b0c875-24e1-444d-b01d-5408f8d9dfb1/1/OxSIFBOCrqEYlDl7sBUaFE1HSRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b0c875-24e1-444d-b01d-5408f8d9dfb1/1/bP89iZ4m_IT7Q3n7Ml8XS1B1zg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.210.0/23
Signature Algorithm: sha256WithRSAEncryption
65:4a:a2:74:2b:0e:91:d9:dd:79:c5:90:fa:f0:62:d7:87:dc:
e9:5f:da:f1:6e:4c:13:d5:86:32:0d:be:1d:ce:a4:f3:14:10:
f8:60:b9:f4:48:ab:e8:13:93:78:71:d6:df:fc:35:32:1c:5b:
8c:24:66:64:90:36:a9:74:d5:6c:c7:9f:90:25:aa:af:04:65:
26:70:06:e4:50:33:68:72:74:19:a3:99:94:83:1b:55:91:55:
37:7c:55:7b:9d:83:b7:f9:75:32:0a:f5:6c:23:6e:a2:46:d0:
b8:43:dc:e5:9b:ec:8c:92:32:56:21:88:8a:6c:ac:02:24:f9:
95:ee:d7:85:5c:38:3d:81:5d:83:eb:86:a3:89:98:8a:d6:58:
16:14:29:d4:85:d5:99:be:5b:67:9b:46:17:9e:dc:72:bd:0b:
c7:ae:65:88:2b:8f:45:05:2b:55:4d:ff:46:49:6e:2f:c6:23:
b0:2b:69:84:9a:79:2d:96:b1:c1:b0:f8:b5:7a:ea:fb:22:27:
78:56:36:b0:2f:61:84:aa:7b:bd:6b:17:e5:81:79:59:01:33:
e3:2b:13:0c:5b:59:82:a2:37:a9:00:c0:df:d4:2c:0d:b8:8f:
f2:d1:9d:87:a7:af:36:d6:7e:7a:a8:dd:e0:ad:fe:e3:5f:e3:
ed:96:a9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:14 2024 by rpki-client on console-ams.rpki-client.org