Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/oLOHYtPIvnpKQLGhOIVLV2mPuyA.roa
File: oLOHYtPIvnpKQLGhOIVLV2mPuyA.roa (raw, json)
Hash identifier: WFdSJjILHKzoEMMPTXJdd154o29NmTX8nb025D3swQA=
Subject key identifier: A0:B3:87:62:D3:C8:BE:7A:4A:40:B1:A1:38:85:4B:57:69:8F:BB:20
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0184A33F75E5E45BA5711E9A79ECF7F181E2
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/oLOHYtPIvnpKQLGhOIVLV2mPuyA.roa
Signing time: Wed 23 Nov 2022 06:49:15 +0000
ROA not before: Wed 23 Nov 2022 06:49:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135752
IP address blocks: 85.208.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:3f:75:e5:e4:5b:a5:71:1e:9a:79:ec:f7:f1:81:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 23 06:49:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0b38762d3c8be7a4a40b1a138854b57698fbb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:c7:ba:29:e8:fa:59:d5:7d:02:bc:07:72:
70:27:ca:20:3e:c6:5f:fd:23:c1:25:d5:a7:8f:70:
2a:91:29:ea:d4:d8:3d:2e:5b:ed:de:cd:cb:da:70:
c4:06:4e:09:0b:8c:23:04:1b:75:35:8f:c4:7a:18:
f0:10:d6:fe:27:18:10:b7:c0:7f:94:22:ad:44:53:
d4:f2:31:0c:92:b1:e5:d1:3a:87:cf:99:e0:8f:19:
2c:81:e8:a2:b8:b9:5c:45:e8:2e:76:41:92:49:aa:
2f:de:cb:50:03:99:03:58:f1:51:49:bd:a9:8a:61:
91:b4:7b:37:fa:da:83:c9:47:1b:8b:a0:9f:2f:5d:
a6:79:a6:20:4e:8c:6b:81:6b:bb:88:76:4c:6d:8f:
67:aa:ba:8d:2b:9b:42:ea:a3:f8:5d:e7:e6:9a:72:
a2:78:49:f8:d8:fe:a7:1c:bd:7e:b6:41:72:48:dc:
91:de:aa:e1:94:29:40:f5:40:58:37:66:94:41:77:
d9:03:7c:38:5e:99:30:4a:c7:5f:8a:5b:96:b0:82:
e6:45:7d:fe:62:25:ef:58:7a:21:a9:39:31:a9:f0:
60:68:a7:37:c6:fc:3e:f4:ce:21:ea:e0:8d:20:81:
8d:8f:aa:af:ec:7f:08:c9:7e:c3:0c:dc:a6:24:01:
89:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B3:87:62:D3:C8:BE:7A:4A:40:B1:A1:38:85:4B:57:69:8F:BB:20
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/oLOHYtPIvnpKQLGhOIVLV2mPuyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.107.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:4e:64:ef:2a:77:78:7d:da:42:cd:50:3a:90:70:c9:f3:e7:
14:73:5d:ab:a3:99:7f:eb:93:02:43:eb:51:de:b3:92:0a:da:
cc:9f:2a:2f:d4:9c:2a:70:88:80:0b:3f:01:8a:0d:17:bf:43:
ed:a1:ca:19:09:34:53:34:cb:4e:2e:eb:8d:5b:3c:eb:73:dd:
83:24:51:86:05:8b:b6:9f:b2:c2:0b:8b:03:4d:61:30:5f:98:
25:7c:59:5a:30:c8:54:99:84:c6:73:2b:93:f1:b3:b6:f2:e6:
cb:5a:93:98:05:cf:8a:d4:ee:d6:8e:1a:f3:72:c8:9e:cb:04:
2a:bc:58:06:68:87:4d:35:db:57:c3:6c:7c:0b:13:3d:4d:60:
32:d4:9b:eb:06:81:9f:15:09:fb:88:13:62:18:c9:ea:dc:67:
ed:a7:f7:61:d8:47:39:b4:41:cd:f8:24:72:88:bc:95:4d:1d:
f2:71:b6:71:10:d1:c8:e2:41:4d:d7:97:f3:e9:2e:76:87:eb:
ba:71:46:09:0f:ef:e0:22:fc:06:2c:01:ed:1c:7b:49:4d:5a:
16:49:ac:ab:00:c1:15:2c:d1:4d:c3:45:5f:ee:55:2f:26:23:
31:e3:ca:f2:f7:12:2b:d0:a7:92:2b:8d:11:7f:ee:d1:a2:18:
40:35:9f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org