Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OHyRik8o13l96JuPN5O-JmYAI18.roa
File: OHyRik8o13l96JuPN5O-JmYAI18.roa (raw, json)
Hash identifier: uxkuNtzjux7u8TUJmXmieVCu88G3RlQJHvIoORmoeFM=
Subject key identifier: 38:7C:91:8A:4F:28:D7:79:7D:E8:9B:8F:37:93:BE:26:66:00:23:5F
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 0397BA71
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OHyRik8o13l96JuPN5O-JmYAI18.roa
Signing time: Sat 01 Jan 2022 11:01:28 +0000
ROA not before: Sat 01 Jan 2022 11:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 185.93.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60275313 (0x397ba71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Jan 1 11:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=387c918a4f28d7797de89b8f3793be266600235f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:13:d6:db:9e:86:31:e4:03:b7:85:dd:1e:42:
08:a0:cd:ac:77:bc:8e:2e:6a:b3:35:f9:80:14:6c:
cc:0b:25:50:53:2f:b9:4c:94:8f:51:66:c4:6d:69:
2d:36:a2:f0:a8:f5:72:6c:26:f2:35:07:40:97:16:
98:9c:d3:49:f2:da:7a:8a:16:9a:6f:52:95:ec:cc:
98:57:e8:a7:25:63:ab:27:6f:cc:d1:3c:5d:55:ec:
93:6b:51:6c:2c:e5:5f:f1:bd:2f:b8:04:69:e9:0a:
ea:16:2c:c9:09:1a:80:8d:c6:70:71:29:f3:5d:72:
4f:2c:99:4c:bf:73:9f:46:aa:7c:ff:6c:a5:68:ee:
5d:21:f7:c3:b3:ef:c9:19:d5:af:16:1b:f5:8d:11:
c0:16:6d:71:69:ca:7e:73:33:b5:e5:3b:66:92:a0:
12:8f:b3:fa:80:c2:2f:c5:9c:20:2d:10:b9:01:38:
63:a2:d2:1d:ca:b5:e7:ef:d6:dd:85:a3:14:30:d1:
3d:51:c7:4b:10:78:40:ed:ff:83:74:b8:b0:4d:24:
57:b2:e0:b2:0f:f9:cf:7f:c4:ba:b3:3a:2e:6b:a4:
71:07:0d:51:52:3b:62:db:de:0d:3d:68:b0:dd:a2:
62:4c:d3:6a:1a:5f:f4:a8:7b:ba:0b:08:17:15:9f:
9a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7C:91:8A:4F:28:D7:79:7D:E8:9B:8F:37:93:BE:26:66:00:23:5F
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OHyRik8o13l96JuPN5O-JmYAI18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.104.0/22
Signature Algorithm: sha256WithRSAEncryption
41:4c:48:af:6a:39:6e:4f:01:9c:72:a6:4f:b8:df:39:4f:ff:
c2:36:42:62:70:dd:a0:11:d3:f4:b6:a5:80:90:c4:82:a0:b1:
86:aa:64:2f:02:1b:d9:47:cb:39:40:23:13:af:5a:11:04:bf:
10:7a:c2:a0:06:a9:c0:91:95:8c:42:f8:56:02:8b:a4:56:c7:
0a:9d:1a:7b:7b:e2:01:a1:ce:e0:a9:11:fe:fc:b2:4b:7f:a0:
12:5e:c4:83:a1:17:ea:84:56:46:43:c4:46:20:b2:3e:04:21:
65:15:fa:02:12:8c:35:5a:9e:85:60:a0:8c:3c:ee:af:d8:b0:
af:f9:03:07:a2:66:33:d2:3e:b8:8a:e1:96:2b:9c:ff:98:ac:
f1:61:12:cf:6a:4a:b2:68:b3:5f:73:ff:8a:7a:1b:09:d1:7e:
28:39:d5:4b:12:df:0c:6c:1f:d7:df:6d:7c:ef:23:45:fd:8b:
b4:68:5b:74:70:38:32:7c:b7:7f:03:93:4a:90:ae:52:5d:1d:
8a:19:7d:5c:3f:5c:ae:3f:ae:f0:26:ba:4f:13:cb:60:1c:9c:
df:25:46:41:1f:92:dd:36:e3:39:c4:a2:c8:64:0b:54:56:28:
a9:24:7b:12:1f:10:1b:ee:07:b8:e1:39:38:d8:15:a3:f7:db:
3c:b1:94:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org