Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oILFm54rMZkVsWpGk4rqrhtL6XA.roa
File: oILFm54rMZkVsWpGk4rqrhtL6XA.roa (raw, json)
Hash identifier: 0VeCvwooIMpALgx8sWZbl/RcgKX/k87Lk9SMIox5+8Q=
Subject key identifier: A0:82:C5:9B:9E:2B:31:99:15:B1:6A:46:93:8A:EA:AE:1B:4B:E9:70
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0D0A27F4
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oILFm54rMZkVsWpGk4rqrhtL6XA.roa
Signing time: Fri 21 Jan 2022 17:09:00 +0000
ROA not before: Fri 21 Jan 2022 17:09:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.244.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218769396 (0xd0a27f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 21 17:09:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a082c59b9e2b319915b16a46938aeaae1b4be970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3c:7e:2a:75:b4:01:98:d4:9e:c4:c9:bb:0a:
8e:b5:09:1f:e3:fe:ee:13:de:9d:df:12:ac:af:7e:
2c:18:52:a8:a8:32:da:a0:e9:40:9d:b9:a1:51:2b:
0d:19:29:71:f8:68:e0:6d:eb:d2:3d:e6:f9:4b:4a:
1c:e5:cf:bb:fc:b5:08:b0:71:96:50:0a:db:c4:22:
c8:f3:36:d8:f7:da:51:f4:ed:7f:ab:c7:0a:7b:ae:
0d:eb:b8:ed:c1:03:bf:2a:05:ad:d8:ff:9c:0d:63:
6b:ed:b0:f2:34:09:2c:9e:2e:78:2f:1c:b9:35:43:
03:ea:24:68:62:13:b0:b1:6e:2d:09:fd:af:1e:d3:
13:e6:ce:7f:c9:99:5b:a8:c2:e8:3d:00:bd:24:bb:
33:ae:02:20:a5:53:b1:d0:c2:63:a3:06:d1:6e:88:
63:76:d5:1c:1e:13:f0:ba:c0:ae:99:0f:15:6c:cb:
68:46:b6:8b:59:c6:98:35:2e:11:0a:c6:b9:74:ba:
71:df:59:3c:ff:04:66:c6:ac:f8:6e:1e:ce:2b:39:
5a:2b:46:00:ad:44:3d:99:ab:25:89:ef:81:6f:26:
5f:51:76:37:52:32:91:e8:41:d2:a8:64:d2:a1:3e:
a8:6a:d0:35:19:1c:78:92:b5:34:33:45:d1:a1:fb:
a7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:82:C5:9B:9E:2B:31:99:15:B1:6A:46:93:8A:EA:AE:1B:4B:E9:70
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/oILFm54rMZkVsWpGk4rqrhtL6XA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c1:24:4c:61:30:89:2c:a7:9e:28:e3:1a:6a:f9:eb:e1:1c:
f4:b1:a8:e5:fa:3f:09:db:0b:ec:53:ec:84:a6:87:41:84:56:
51:38:8e:03:75:61:91:ca:fd:30:1d:e7:dd:7a:2e:39:36:69:
ee:43:9c:6a:f4:de:9b:d3:88:12:d2:1b:79:92:b0:da:7a:7e:
e3:cc:48:5f:82:f9:97:c7:9b:3b:6f:fe:83:bd:68:0d:68:dd:
f0:87:b8:86:59:9a:3b:c1:46:6d:a8:85:a6:33:43:4e:77:67:
19:b8:a5:eb:8d:fb:64:0a:a4:d8:b2:ee:74:c9:af:6a:c1:1d:
50:12:d3:79:e3:18:ba:f8:6f:2a:0a:08:c5:ae:2e:4a:be:45:
8b:57:83:98:a1:53:ec:a3:71:f7:71:1a:db:7c:d1:21:c7:50:
16:15:2a:39:5d:8a:d0:ac:10:22:fe:8a:5c:81:f1:15:ff:9b:
18:69:9a:95:f7:1f:f8:bc:e7:47:1b:57:d2:c6:36:33:4c:5b:
ee:88:b9:c9:38:74:61:65:82:9a:e1:f2:93:cd:8d:64:2b:f0:
b7:9e:48:42:e2:a6:34:0f:02:85:1e:fd:98:11:61:3e:bb:39:
04:76:97:e9:71:3a:00:fe:d7:bf:48:d9:85:e8:75:8f:ae:81:
1b:88:fe:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org