Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OAB0lhHQA3srwJn0ZXQxz1gln-4.roa
File: OAB0lhHQA3srwJn0ZXQxz1gln-4.roa (raw, json)
Hash identifier: W6cgt/Y4diDt7mlxO+y8SHqx/u+gFBIlMolkDpMU7NQ=
Subject key identifier: 38:00:74:96:11:D0:03:7B:2B:C0:99:F4:65:74:31:CF:58:25:9F:EE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018412F5DB7B3CF2907C2839275391050272
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OAB0lhHQA3srwJn0ZXQxz1gln-4.roa
Signing time: Wed 26 Oct 2022 06:23:33 +0000
ROA not before: Wed 26 Oct 2022 06:23:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212967
IP address blocks: 5.8.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:f5:db:7b:3c:f2:90:7c:28:39:27:53:91:05:02:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:23:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3800749611d0037b2bc099f4657431cf58259fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:85:9c:6b:4f:9c:73:31:14:e8:72:21:e7:0b:
1d:93:6f:84:f5:44:c2:29:df:68:6f:57:7d:09:c2:
bd:aa:3b:e4:c1:a4:f9:61:3d:dc:bc:cf:5f:03:6d:
c7:f0:51:80:ef:25:76:4d:0b:93:26:77:e8:7d:33:
de:e4:1a:78:f3:62:40:e4:e2:ff:a8:e0:57:ca:0c:
e0:f2:e0:ff:f9:7c:2c:d4:9a:6d:4c:81:94:f8:b8:
54:bd:48:f2:9e:6b:dc:4d:11:bf:ad:ea:e2:21:37:
32:87:b7:a5:b5:bd:6d:f3:cf:b3:c7:ab:0b:4e:c4:
69:0d:10:34:62:ab:27:78:8a:fd:72:db:c9:7d:2e:
f2:a5:98:22:52:32:12:88:5b:33:44:3d:d2:74:2e:
c4:6e:aa:d7:d2:ae:d9:52:f2:8b:1d:d7:3c:8d:03:
dd:16:32:86:30:53:36:96:5b:8c:4d:05:bc:15:1b:
e9:74:a7:f7:a9:99:13:04:ad:b2:72:57:d6:4c:80:
1b:21:d7:24:a9:48:73:dc:f9:b3:ed:a8:10:a2:f2:
fb:7d:63:9b:26:1c:1b:87:69:d0:ff:e1:d9:e2:b0:
67:db:ff:26:db:88:2f:20:24:9a:3a:85:08:42:0c:
ca:93:c6:1a:3e:fb:9d:91:eb:6e:14:34:18:3e:ce:
1f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:00:74:96:11:D0:03:7B:2B:C0:99:F4:65:74:31:CF:58:25:9F:EE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OAB0lhHQA3srwJn0ZXQxz1gln-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.183.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:61:23:88:a6:05:98:60:47:01:85:c6:6a:f5:b9:72:b7:ca:
78:e0:5c:11:fa:88:06:39:27:d0:85:3a:22:6f:d6:7e:d1:e2:
52:ad:7a:3f:6a:cc:05:1f:62:0f:d0:c7:4b:a8:e3:ce:47:f7:
37:32:02:89:93:37:12:a7:f7:24:ab:5d:a3:56:d2:36:e3:1a:
a0:6d:44:19:56:bc:a2:71:0f:16:86:2e:88:e6:7f:50:ff:3f:
f1:58:78:df:29:1f:13:fb:66:8d:9c:17:b6:2c:d9:07:61:16:
1c:4b:b5:2f:95:44:10:70:00:0b:2e:26:40:7e:6d:fc:e0:be:
02:92:0c:b2:1b:db:71:32:21:73:c7:3b:bd:63:6a:7b:38:14:
bb:c2:d5:6e:d9:e5:5b:b0:8c:6d:ef:cd:17:f0:80:be:41:02:
f3:69:ae:f8:e4:8d:94:bd:84:41:51:0b:67:1e:88:0c:35:6b:
c7:ee:88:1a:2d:7f:3b:e7:66:ac:73:14:e8:f8:35:7c:0c:c9:
13:72:6f:6d:7d:9a:f5:3f:ab:68:f7:1d:87:b8:73:05:8c:d8:
c8:ea:ba:54:bf:28:45:a2:e3:0f:1b:a8:9a:1f:cb:e0:a0:c3:
68:50:24:c7:84:0e:17:c6:b5:a3:3b:d3:98:35:24:1c:ec:87:
1f:f9:1d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:00:22 2025 by rpki-client