Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O4YISnnR_q321vqNGu5VbcTA6w4.roa
File: O4YISnnR_q321vqNGu5VbcTA6w4.roa (raw, json)
Hash identifier: H9N0bqk6pHqHbarSrn3Jx4plEWrw/oppPS+rOCwchv0=
Subject key identifier: 3B:86:08:4A:79:D1:FE:AD:F6:D6:FA:8D:1A:EE:55:6D:C4:C0:EB:0E
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 0183AC03CC4E548A5B9493CEEC44665AC98E
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O4YISnnR_q321vqNGu5VbcTA6w4.roa
Signing time: Thu 06 Oct 2022 06:37:53 +0000
ROA not before: Thu 06 Oct 2022 06:37:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61414
IP address blocks: 185.243.41.0/24 maxlen: 24
193.3.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:03:cc:4e:54:8a:5b:94:93:ce:ec:44:66:5a:c9:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Oct 6 06:37:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b86084a79d1feadf6d6fa8d1aee556dc4c0eb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:62:0b:3a:f1:78:ec:17:8d:a9:d2:1d:d6:8f:
15:64:7a:e1:56:39:b4:7f:5d:b6:77:2f:9a:a1:6a:
4d:8f:11:85:27:0c:00:8a:54:4e:2e:fc:d0:78:cb:
30:1e:99:4e:79:ca:f5:cb:b0:b7:cf:ab:63:d3:ff:
22:6b:bd:d1:01:c7:05:67:17:c2:91:f7:eb:6c:e3:
7b:80:d5:e5:a7:f1:cd:b2:ee:31:56:55:83:42:f1:
b9:7e:7e:4b:91:92:a9:6f:0e:ce:64:56:e7:87:df:
22:e4:51:d7:8b:96:f0:74:19:1b:ef:b9:11:78:76:
f3:43:9e:ae:a2:73:c3:19:7a:98:39:c4:ce:b3:30:
ac:ac:27:80:db:e1:5e:97:db:68:f2:3d:f1:18:dc:
8c:e7:4b:52:ad:a1:7c:8e:89:2f:36:ab:fa:d6:d1:
8d:b9:74:c0:07:1c:2e:5c:12:96:2c:89:f5:e4:a4:
3a:cd:47:31:c3:a5:f5:e0:db:5e:bd:da:6d:f7:01:
3b:ad:74:53:dc:c4:4c:d3:be:a6:23:51:e7:f5:6a:
0b:a6:31:27:5e:b2:1e:7e:d8:2b:26:33:45:e9:22:
02:e9:d6:d3:25:22:82:b3:cf:60:6e:11:28:7e:50:
40:8b:bb:63:e4:9a:80:63:cf:4d:43:2d:ad:4e:b3:
92:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:86:08:4A:79:D1:FE:AD:F6:D6:FA:8D:1A:EE:55:6D:C4:C0:EB:0E
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O4YISnnR_q321vqNGu5VbcTA6w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.41.0/24
193.3.191.0/24
Signature Algorithm: sha256WithRSAEncryption
39:06:21:cd:da:5d:05:24:94:bb:7a:39:d0:4a:7a:2d:dd:47:
89:1c:05:ff:0c:a7:76:da:6a:00:f3:ac:37:8e:31:2f:66:6f:
d8:ab:f2:c8:55:8c:6d:3d:3e:46:ae:73:0d:2b:7b:8b:26:f3:
00:5e:1c:38:72:09:28:2c:5f:2a:42:71:14:a6:76:8d:35:76:
4f:70:b4:16:68:99:85:b6:5b:81:13:74:85:95:9f:de:83:5a:
07:6e:d3:cb:e3:49:48:50:97:97:4d:f8:75:18:77:74:ab:9a:
ae:00:aa:8d:d7:15:fb:85:d8:df:9e:cf:c0:ae:6d:ad:fb:06:
37:11:47:df:9c:cc:d6:70:d0:4f:f4:58:f1:f1:eb:a6:90:fc:
66:c0:f4:09:57:74:45:73:8b:d8:f4:84:56:94:09:84:be:99:
3e:af:d8:4c:5c:5d:b2:96:c1:4f:87:4a:55:d8:2b:07:3f:76:
af:73:e5:9c:35:42:8c:c6:66:c6:d7:bf:c0:cb:2a:df:ce:71:
6e:fb:98:10:8f:9b:ff:e0:a6:b1:b3:40:8d:77:02:cd:6b:28:
a6:44:c9:50:7c:d2:09:a2:cb:18:2a:f4:67:0d:39:fc:38:cf:
ee:78:61:02:5d:55:f6:60:45:9e:c2:04:08:ad:7e:34:2c:f6:
5b:40:2c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org