Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/OJeUSHk3DEz0mTz5XI_5oz-x-K0.roa
File: OJeUSHk3DEz0mTz5XI_5oz-x-K0.roa (raw, json)
Hash identifier: occC0BcsU4oNTJXIvMbvlBoCgI5Ix/EcpHVJcpz5U3M=
Subject key identifier: 38:97:94:48:79:37:0C:4C:F4:99:3C:F9:5C:8F:F9:A3:3F:B1:F8:AD
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07D88DCB
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/OJeUSHk3DEz0mTz5XI_5oz-x-K0.roa
Signing time: Sat 01 Jan 2022 10:57:00 +0000
ROA not before: Sat 01 Jan 2022 10:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207925
IP address blocks: 45.141.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131632587 (0x7d88dcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3897944879370c4cf4993cf95c8ff9a33fb1f8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:86:13:3d:5c:af:9c:bc:d4:06:93:ac:18:60:
9e:f7:14:b7:02:7f:a8:4a:b8:9a:fb:3c:ac:3e:4d:
be:7d:2e:11:23:56:37:ba:f6:09:9e:1f:aa:48:63:
16:82:f5:1d:0a:6d:18:e0:df:37:ea:16:92:67:53:
8b:b3:a5:96:0d:ab:aa:80:56:ab:17:89:16:fe:92:
c9:26:bf:cc:8f:58:a8:0f:57:f6:bf:84:aa:93:71:
e0:53:d5:59:01:77:a1:f6:1e:dd:1d:6d:99:b1:b9:
b5:74:ad:2b:43:40:52:ba:ad:06:e8:a1:dd:ed:75:
88:0e:72:47:23:1e:ad:b5:c3:73:4a:72:81:7b:5c:
20:1e:58:84:b4:b6:ff:35:8a:72:2b:f2:f9:a5:5c:
c7:5b:75:ac:d7:25:e2:87:d0:37:80:57:94:05:c5:
be:69:b5:a3:00:25:91:20:e9:0d:96:d9:90:8d:61:
95:c8:9d:b4:e0:81:fc:ae:92:7b:ab:54:3b:a9:bd:
5a:37:41:b8:55:42:e6:e8:0a:bf:80:96:74:e1:30:
33:ec:57:03:26:b8:ab:e6:a9:02:23:66:1d:83:5f:
5d:85:53:2c:2e:33:2d:74:74:c8:bf:3b:41:b5:6d:
3f:48:f6:26:cb:bc:92:e7:57:dd:1e:39:b9:75:23:
43:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:97:94:48:79:37:0C:4C:F4:99:3C:F9:5C:8F:F9:A3:3F:B1:F8:AD
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/OJeUSHk3DEz0mTz5XI_5oz-x-K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.55.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:e4:21:8b:55:b0:49:76:54:ce:90:e8:ab:a7:4e:3f:da:e0:
5b:7e:db:93:26:8e:24:18:40:d8:8b:b8:9c:ac:24:46:35:d3:
07:17:f7:01:e7:f9:f3:da:36:13:64:59:a0:2b:b8:12:0b:6d:
b3:77:84:97:ae:5e:e7:45:84:88:6e:01:e4:33:46:8e:1f:56:
cb:0e:22:88:bd:4e:0b:78:af:43:90:25:9b:05:f2:cc:31:11:
d3:c2:2f:8a:6f:cb:b9:cf:52:0d:07:de:d7:51:16:fc:12:4e:
1e:15:0f:fe:bb:02:c7:7d:ec:16:11:1e:df:a1:b1:31:c8:54:
4c:35:21:75:54:c7:1f:a2:4c:d9:03:b1:a0:cb:44:a4:00:15:
03:43:de:7c:16:57:01:2a:d0:b9:ec:70:27:5f:c2:0e:a9:f2:
19:82:6d:c9:8a:88:02:53:b8:40:54:87:06:93:e4:f9:da:c1:
74:fc:58:ba:ac:b5:2f:28:2e:54:0b:cf:45:10:e4:b7:be:cb:
19:bc:b6:11:d3:d1:58:38:28:75:03:b9:b5:3e:ca:15:4b:f6:
6e:fe:12:12:b9:7b:ce:28:c4:96:95:fd:fe:09:03:cf:0f:57:
ce:fe:b8:0d:7d:2d:ce:73:a4:9c:fd:a9:e8:40:7d:d8:26:7f:
f5:db:f6:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org