Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/oa5WA6GEek7P5JDS9YZv0BPpAvE.roa
File: oa5WA6GEek7P5JDS9YZv0BPpAvE.roa (raw, json)
Hash identifier: I6qoYCeGXJ5H5sRWhk9bWtJEBhoSb+EnCxl6nFImDtc=
Subject key identifier: A1:AE:56:03:A1:84:7A:4E:CF:E4:90:D2:F5:86:6F:D0:13:E9:02:F1
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 0150DE5E
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/oa5WA6GEek7P5JDS9YZv0BPpAvE.roa
Signing time: Sat 01 Jan 2022 03:56:31 +0000
ROA not before: Sat 01 Jan 2022 03:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56381
IP address blocks: 46.175.130.0/24 maxlen: 24
141.98.136.0/24 maxlen: 24
2a09:11c0:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22077022 (0x150de5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jan 1 03:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1ae5603a1847a4ecfe490d2f5866fd013e902f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7f:fa:18:70:62:05:73:ce:3c:04:28:c9:6a:
97:5b:bf:49:6a:bf:41:f6:ff:fd:12:8c:8c:76:b6:
a0:1b:73:88:69:fe:38:c6:89:21:db:7a:8c:0f:75:
fc:ff:f8:92:9c:08:28:cf:25:62:f4:ba:c9:92:aa:
7e:2b:a4:35:79:32:16:89:a4:58:74:9e:6b:4c:25:
f1:59:e6:1c:90:b3:cb:96:8a:2c:44:69:74:05:e9:
bb:d1:59:f7:b6:19:89:05:07:da:a6:ec:f6:79:1a:
ea:44:e7:7b:9a:9c:c8:73:a5:be:29:b6:2b:b4:61:
7b:15:49:8a:42:f3:46:35:8e:07:66:71:81:eb:58:
b6:70:f1:7f:3a:c7:14:76:04:09:f1:33:3e:71:dd:
e5:06:36:aa:20:4e:3d:89:e3:2b:ff:ce:05:e2:4f:
50:23:10:9a:4c:e4:cd:48:5c:82:d0:4f:3a:4b:56:
8b:3d:11:f6:25:60:67:37:c6:7d:f7:9b:50:1c:b2:
dc:2f:7a:28:6a:ff:a7:08:99:d0:65:85:e3:6f:65:
0e:75:80:f5:99:89:80:27:e2:ba:14:1d:e2:57:6c:
0f:63:18:73:86:7f:11:5d:f7:7e:a9:58:66:5d:68:
22:0c:e4:bf:8b:37:de:b4:67:e9:50:76:9a:7d:5f:
85:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AE:56:03:A1:84:7A:4E:CF:E4:90:D2:F5:86:6F:D0:13:E9:02:F1
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/oa5WA6GEek7P5JDS9YZv0BPpAvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.130.0/24
141.98.136.0/24
IPv6:
2a09:11c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
7c:69:5e:ca:1d:3e:a6:5d:e9:d1:2d:19:79:7d:90:4c:01:d9:
23:6f:6b:e4:25:dc:ce:d5:dd:33:d9:fa:0e:d4:9d:5e:3f:bf:
e9:b5:fe:68:d1:eb:0c:77:09:6c:70:7a:18:42:98:6a:5e:b1:
5c:6e:1e:26:de:5c:6a:a3:83:ee:7d:78:f3:0c:0c:79:55:48:
2c:7d:9d:a7:b4:39:4e:92:5e:8a:cb:b9:0e:ea:46:26:86:f6:
1d:48:59:c0:ef:f4:6b:8f:69:ba:1f:ba:97:a4:46:50:2d:0a:
54:06:d9:4c:a0:48:fa:61:d2:6b:20:43:46:fc:26:cc:f6:9a:
b4:62:7b:7c:51:c8:09:1c:17:c9:81:6f:b1:66:4e:e3:93:6b:
3a:a3:1e:e6:0f:23:1b:a2:73:4d:90:8f:09:9b:07:36:37:b3:
f6:47:c5:b8:cd:ca:ff:de:47:44:53:65:1a:20:06:ed:cc:6f:
66:b0:f9:99:a3:d5:53:33:50:23:f4:76:cf:9e:c7:81:2c:b5:
3d:b4:53:db:31:42:0e:38:f0:b9:d0:a1:c4:82:f2:09:e4:d8:
3b:42:4c:38:32:00:c7:9c:9a:e9:48:15:e1:c4:04:01:ff:b5:
65:db:6e:76:97:d1:05:af:83:f6:28:f8:98:39:f8:a5:08:4a:
97:25:37:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org