Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/OzQf0PaC4OdpL56PgEr2HVmKPgU.roa
File: OzQf0PaC4OdpL56PgEr2HVmKPgU.roa (raw, json)
Hash identifier: 6lcYMgzuHv9ZlPJdmvREINykw/+ektcbtEZ94+NwazA=
Subject key identifier: 3B:34:1F:D0:F6:82:E0:E7:69:2F:9E:8F:80:4A:F6:1D:59:8A:3E:05
Certificate issuer: /CN=e9e4dc968ed52935a04dee3b229c21ca9bfdbd7e
Certificate serial: 093DBB23
Authority key identifier: E9:E4:DC:96:8E:D5:29:35:A0:4D:EE:3B:22:9C:21:CA:9B:FD:BD:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6eTclo7VKTWgTe47Ipwhypv9vX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/OzQf0PaC4OdpL56PgEr2HVmKPgU.roa
Signing time: Wed 04 May 2022 14:47:20 +0000
ROA not before: Wed 04 May 2022 14:47:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 93.183.100.0/22 maxlen: 24
93.183.120.0/22 maxlen: 24
176.123.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155040547 (0x93dbb23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9e4dc968ed52935a04dee3b229c21ca9bfdbd7e
Validity
Not Before: May 4 14:47:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b341fd0f682e0e7692f9e8f804af61d598a3e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a1:dc:fa:7e:54:f5:9f:52:84:b9:e0:ef:2b:
8f:73:f2:92:b0:e2:82:ac:e9:f3:aa:fe:66:18:18:
59:52:3b:7b:b4:e8:d0:f5:49:7f:8c:00:06:0e:11:
20:63:e7:93:63:03:42:9f:04:af:df:8f:b3:0c:8b:
3f:30:1c:5b:57:1d:b9:14:35:ff:f3:04:2d:9d:fb:
4d:af:3e:16:9f:a5:24:f2:dd:94:fe:c9:90:65:a7:
4f:c4:be:ce:c8:d1:41:e9:2d:dd:1f:ed:38:25:3b:
74:3e:b1:87:8d:62:18:89:ba:41:1d:cb:91:b7:31:
63:0b:38:fd:2a:92:a7:2c:a4:0a:0e:f5:b3:70:59:
38:84:d7:6d:fe:af:c3:1f:35:0a:ca:4e:67:23:2e:
9e:94:58:63:c8:e8:84:fb:ea:fb:e6:ce:26:29:b8:
c4:a6:bd:5e:fe:cc:35:02:23:75:b4:1c:29:a7:e0:
c9:19:3d:1b:33:08:2e:eb:53:6c:c5:f8:87:aa:82:
7e:92:71:e2:62:0c:cd:c0:56:d2:ce:1a:62:17:e3:
9a:6e:4c:45:b0:77:05:c4:86:af:fe:e1:26:e0:f7:
be:cd:91:a6:7d:e8:5c:d6:17:c6:50:07:37:1a:c2:
37:97:35:f9:c2:a5:b8:45:2c:11:7a:ec:42:a9:57:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:34:1F:D0:F6:82:E0:E7:69:2F:9E:8F:80:4A:F6:1D:59:8A:3E:05
X509v3 Authority Key Identifier:
keyid:E9:E4:DC:96:8E:D5:29:35:A0:4D:EE:3B:22:9C:21:CA:9B:FD:BD:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6eTclo7VKTWgTe47Ipwhypv9vX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/OzQf0PaC4OdpL56PgEr2HVmKPgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/6eTclo7VKTWgTe47Ipwhypv9vX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.183.100.0/22
93.183.120.0/22
176.123.184.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:64:9e:56:5e:ba:3c:c3:1b:4f:25:b1:c6:ef:05:43:fa:33:
c3:50:9e:55:3d:25:3c:ff:95:f4:31:6b:04:3f:75:ea:9a:dd:
28:80:27:4a:49:c7:9f:ff:11:79:40:88:09:c8:36:92:ff:f1:
07:ca:1d:11:24:12:c2:8d:63:61:e5:20:2a:20:a3:41:ea:c3:
4d:84:21:25:d6:89:4b:31:b1:0f:e7:ea:ac:cd:6e:f5:a2:cb:
7b:71:2b:c1:38:45:5c:31:4b:59:6d:05:89:c7:c3:b8:5d:63:
4c:90:67:37:74:a0:47:ad:c3:6d:80:92:01:10:86:ee:cc:5a:
24:d8:e5:84:d5:94:39:c7:a0:f7:cc:b3:f7:b7:d2:86:32:4f:
a2:d3:ec:6b:69:8c:4e:97:ba:7f:14:0f:a5:1e:5e:9c:da:1f:
c6:a9:88:e2:a9:82:91:38:ba:b2:c2:78:3e:e6:36:82:c4:46:
fc:29:ff:01:74:bc:ca:e4:0c:ac:a7:af:01:ce:f6:39:95:4b:
84:03:2a:72:5b:60:cd:60:83:05:b4:c4:76:de:23:20:fc:29:
95:0f:97:0b:1e:92:ee:e6:a9:10:a2:38:b8:e0:4b:d0:f3:58:
51:17:52:82:72:ac:69:76:35:c5:44:ba:32:39:f2:fa:78:9f:
72:22:38:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:22 2025 by rpki-client