Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OkVtG21lWeaGHnfOv5pY4c4Yr18.roa
File: OkVtG21lWeaGHnfOv5pY4c4Yr18.roa (raw, json)
Hash identifier: 6f6Il1Ldu82qajqr/z24h04MiO+LWHhxkBpur+nTo5Q=
Subject key identifier: 3A:45:6D:1B:6D:65:59:E6:86:1E:77:CE:BF:9A:58:E1:CE:18:AF:5F
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 040A0B09
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OkVtG21lWeaGHnfOv5pY4c4Yr18.roa
Signing time: Wed 09 Feb 2022 18:37:55 +0000
ROA not before: Wed 09 Feb 2022 18:37:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 92.53.188.0/22 maxlen: 24
92.53.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67767049 (0x40a0b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Feb 9 18:37:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a456d1b6d6559e6861e77cebf9a58e1ce18af5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:23:ea:51:9d:1c:19:d5:f7:85:8e:3d:ef:e5:
4c:ae:af:c4:e4:79:cf:e5:51:de:3e:b1:fb:c1:93:
f7:d1:41:e9:5a:d6:5f:d4:0f:3c:bf:e1:80:97:44:
01:a2:e1:7e:cc:5c:2d:9b:5f:0d:0a:e9:30:92:af:
a2:44:91:c1:40:06:67:0d:d4:e3:51:96:95:e1:09:
8c:ca:11:78:4d:87:96:20:78:e1:33:66:41:cd:0e:
da:9d:0c:bc:5c:5c:b1:31:0b:9a:bd:4b:86:7b:2d:
6f:37:9e:88:2a:40:55:80:db:c7:7f:87:47:5b:f3:
b2:b5:ad:fc:8b:fc:2a:af:6f:7c:d0:82:c1:17:44:
22:52:be:74:2f:d2:37:32:d1:13:57:39:2a:ae:e5:
46:38:4c:94:ed:5e:bf:08:83:b7:35:d0:60:37:c4:
94:a3:87:8b:e5:5b:99:ca:d8:fa:a1:1e:7d:f9:02:
15:a4:52:c0:68:5f:2d:aa:24:da:81:59:b4:e6:37:
b9:8a:f9:c0:1d:94:51:99:9e:18:8e:79:ee:d5:73:
70:c3:6f:37:e7:29:a0:fc:fc:6a:9a:74:51:10:49:
17:2b:6c:86:30:67:c1:6d:1b:c0:85:84:f3:0e:55:
3a:ea:e8:5a:df:c0:b5:36:1f:ab:03:6c:91:95:36:
8c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:45:6D:1B:6D:65:59:E6:86:1E:77:CE:BF:9A:58:E1:CE:18:AF:5F
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/OkVtG21lWeaGHnfOv5pY4c4Yr18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.168.0/22
92.53.188.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:45:b8:ea:b8:d6:67:96:9a:99:d5:66:68:e6:11:be:b5:a6:
11:c7:28:da:3f:eb:0b:9c:43:25:af:b7:93:fe:7c:5c:58:f2:
3e:5f:be:07:54:70:fc:47:58:b4:0e:dc:c0:e8:68:3a:3e:ae:
b5:e9:7f:cd:f7:c1:80:56:3e:39:fc:4e:d3:a8:ae:20:b8:85:
17:19:3d:56:ff:d6:c6:61:93:17:f7:58:d7:95:eb:04:e7:1a:
e4:06:fa:9f:1e:fc:4d:9e:ca:2d:7d:93:d7:d6:63:1a:2b:8a:
0e:d3:7d:59:b2:a7:20:3d:97:d4:f5:0a:b1:82:f1:bd:0b:28:
22:97:13:89:25:0b:86:fd:a3:bf:74:97:62:bf:d4:76:f4:44:
7a:1c:44:79:b1:32:b5:08:11:6e:cc:cb:c7:d2:a5:98:d8:92:
d8:ba:86:e8:22:04:33:ce:ee:ba:12:ff:84:67:e6:bd:25:f8:
98:3f:8e:98:fd:35:ba:f3:cb:c3:14:9f:95:23:10:b3:e5:a2:
91:a5:3e:e0:be:65:8d:35:45:cf:b1:aa:a8:aa:0e:d2:b0:08:
62:ac:d5:ea:b6:f1:61:fe:91:7c:33:32:58:c5:86:b6:13:f3:
4f:fb:de:ba:4a:7f:86:69:f6:0f:6c:85:1e:38:5f:70:92:b4:
6e:2f:44:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org