Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/oKpR2BytLWYcffmouYuUa5xmx8E.roa
File: oKpR2BytLWYcffmouYuUa5xmx8E.roa (raw, json)
Hash identifier: P56M1SVvFNawMet0H3VMr+4iXjn3WukBcl4Ao37yOdU=
Subject key identifier: A0:AA:51:D8:1C:AD:2D:66:1C:7D:F9:A8:B9:8B:94:6B:9C:66:C7:C1
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 02728CDF
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/oKpR2BytLWYcffmouYuUa5xmx8E.roa
Signing time: Sat 16 Apr 2022 10:43:12 +0000
ROA not before: Sat 16 Apr 2022 10:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 195.14.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41061599 (0x2728cdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Apr 16 10:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0aa51d81cad2d661c7df9a8b98b946b9c66c7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:91:77:1b:7c:3c:93:36:c1:c0:12:3f:41:86:
8f:7c:a3:39:b7:c7:34:b0:3d:ea:07:7c:2f:3f:61:
33:14:c4:e9:6e:af:8d:90:80:d2:50:c2:10:46:48:
64:76:91:bc:27:3d:59:b2:4a:fc:02:d4:18:24:56:
dc:4e:c1:46:02:58:30:43:2e:bd:60:95:80:19:d2:
d3:70:30:01:22:c1:3d:68:2d:ff:60:fe:41:07:06:
6d:ef:8b:06:86:23:3c:7d:c4:a1:21:07:54:e2:48:
42:37:29:7f:cb:b6:66:ee:48:f8:9a:db:aa:f3:c0:
b4:90:62:14:34:98:77:69:6f:1f:eb:67:00:ec:16:
67:f0:63:89:31:0e:7e:19:96:32:71:3d:f8:ec:74:
87:ca:83:eb:93:04:fa:7a:46:3b:3c:41:c9:59:9c:
30:0d:72:dd:00:57:f5:b8:b4:9a:73:42:38:be:16:
5e:b4:d1:56:b5:7f:ac:23:ae:1e:99:66:bb:42:07:
6f:1a:2f:0e:3d:6b:96:6c:7e:1d:af:00:02:6a:d5:
bc:0e:33:1a:c5:13:01:f7:e2:4a:0e:77:b7:50:a7:
df:cc:01:90:64:53:6d:ed:2c:22:40:1d:b5:03:02:
b3:72:f0:ca:77:f3:20:72:cf:17:5d:92:24:78:98:
92:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:AA:51:D8:1C:AD:2D:66:1C:7D:F9:A8:B9:8B:94:6B:9C:66:C7:C1
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/oKpR2BytLWYcffmouYuUa5xmx8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:48:b2:ab:e3:c8:d1:41:bc:66:66:55:5c:c0:8b:95:6f:af:
f1:02:43:f3:b4:bd:01:0d:84:c1:84:d7:38:26:3e:d4:f5:d8:
ba:62:22:07:c2:6c:1a:d8:b9:6c:46:49:73:d4:7d:6f:76:e9:
f2:f4:9e:c6:d2:cd:1b:1e:80:19:b2:1b:8e:36:ef:35:34:c0:
41:b6:1d:0e:c8:a2:87:02:68:39:cd:12:87:db:3f:4f:72:a8:
61:21:69:1c:bd:5d:e1:f0:53:36:7b:89:c4:37:0f:b7:a8:a6:
f8:69:8b:f1:5a:34:13:bd:8a:c1:7c:5f:eb:dc:c3:34:4c:d2:
6c:ec:3e:44:ab:79:c8:ef:32:38:34:94:f0:dd:fa:7c:79:3d:
aa:ef:7d:f3:4b:29:71:5f:a5:d8:2b:0b:be:0a:2b:da:8b:03:
15:61:dc:3a:c2:14:7b:21:b0:d8:72:53:1f:9e:0e:c1:e3:bd:
83:05:24:28:71:d1:bc:f1:ed:40:0e:46:87:28:22:f5:32:32:
b4:f2:db:4e:90:d6:ee:1d:64:45:9f:ee:54:64:ef:27:47:ac:
65:a3:4d:67:82:89:35:62:b1:7a:48:80:f3:95:86:9e:75:66:
8a:dc:3c:f9:86:97:9e:d9:0e:c1:a0:30:a3:0a:ec:bb:2e:91:
72:62:21:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org