Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/OLUHll-5Znn-MX9RN74bBD51jdw.roa
File: OLUHll-5Znn-MX9RN74bBD51jdw.roa (raw, json)
Hash identifier: IE9JV9pHon2SEXA5HsqIhocwAj8knNIkRwLt0PDcQqY=
Subject key identifier: 38:B5:07:96:5F:B9:66:79:FE:31:7F:51:37:BE:1B:04:3E:75:8D:DC
Certificate issuer: /CN=346d4fea47fb39ec8c2e3aa93be60686dceaea45
Certificate serial: 017ADAB3
Authority key identifier: 34:6D:4F:EA:47:FB:39:EC:8C:2E:3A:A9:3B:E6:06:86:DC:EA:EA:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NG1P6kf7OeyMLjqpO-YGhtzq6kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/OLUHll-5Znn-MX9RN74bBD51jdw.roa
Signing time: Sun 13 Mar 2022 14:42:37 +0000
ROA not before: Sun 13 Mar 2022 14:42:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 79.110.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24828595 (0x17adab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=346d4fea47fb39ec8c2e3aa93be60686dceaea45
Validity
Not Before: Mar 13 14:42:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38b507965fb96679fe317f5137be1b043e758ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:05:c0:92:9a:c3:ff:0b:7c:c4:99:27:be:7b:
5c:97:19:39:02:f3:3c:d4:16:55:97:b8:4d:33:f9:
56:5d:d3:65:ce:95:8e:67:b1:36:66:13:bd:be:fa:
05:4a:42:e8:df:e4:2a:68:bb:ad:33:09:ac:84:1f:
92:19:f9:2b:aa:32:42:c8:2d:62:9e:04:8f:fa:ec:
e3:a1:b1:77:c2:89:d7:29:fb:19:9a:d6:95:9a:3a:
97:3a:e0:f4:90:a0:ee:f4:fe:53:8e:52:8f:d9:d8:
79:b3:40:61:63:a6:32:65:b4:e7:7d:ad:16:76:fb:
11:ad:64:59:f3:0c:37:00:01:fd:0e:e9:6a:74:1b:
06:d7:6b:58:4d:98:a7:83:a3:2c:24:3e:d5:cc:b5:
f0:b6:a1:a5:62:e5:51:8d:40:29:c9:c0:a3:61:a6:
c6:22:93:ae:c0:da:31:c1:c7:b8:26:85:49:0c:34:
3b:87:8b:e7:0e:7b:44:ab:e5:5d:d0:9c:71:14:ea:
5f:51:e0:2c:5d:61:67:43:47:46:1a:28:74:6d:9b:
a1:e8:f2:55:f0:2a:85:ef:10:88:7c:b4:e3:2f:1d:
0f:05:1f:6e:7d:1d:92:a9:8f:81:50:44:ca:d6:db:
c1:03:8c:a6:9a:2a:63:64:9c:24:70:48:3b:6a:bc:
fc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B5:07:96:5F:B9:66:79:FE:31:7F:51:37:BE:1B:04:3E:75:8D:DC
X509v3 Authority Key Identifier:
keyid:34:6D:4F:EA:47:FB:39:EC:8C:2E:3A:A9:3B:E6:06:86:DC:EA:EA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NG1P6kf7OeyMLjqpO-YGhtzq6kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/OLUHll-5Znn-MX9RN74bBD51jdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/NG1P6kf7OeyMLjqpO-YGhtzq6kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cf:d0:ff:47:44:cc:1e:49:fe:c5:7b:e4:a3:31:6c:b6:5a:
dc:df:d0:dd:17:c1:c8:3d:5d:3d:2d:41:f9:f5:18:6d:a2:78:
9f:8e:ac:70:b2:bb:ba:00:38:fe:62:a5:83:79:b3:58:97:74:
14:be:6d:ed:98:35:72:58:98:39:18:6e:b5:ec:bc:41:92:1f:
58:4f:b2:56:a9:db:dd:06:79:64:75:2c:54:5f:08:fc:3d:e7:
4b:2d:62:65:3d:2a:b8:71:bd:29:7b:de:d7:9b:35:6f:9e:5c:
b6:2b:c5:fc:c9:b0:da:a0:14:d7:74:0d:da:ad:0d:ef:0d:47:
ea:01:aa:4b:66:2f:37:b3:a5:67:fe:53:79:48:57:a3:6c:49:
d9:49:7f:50:16:33:3d:0e:58:74:f4:04:51:19:0e:af:d2:a4:
43:4d:b3:8f:b4:ea:3e:78:11:e0:0b:b5:c3:6d:28:c6:73:49:
61:2a:66:47:29:32:27:59:40:5b:77:9f:e5:7b:d4:c5:d2:a2:
a6:22:7a:4a:f3:55:4e:15:95:a3:a3:38:ae:9c:a9:30:be:89:
25:d2:61:55:23:61:af:f7:b0:6e:4b:00:a7:dc:04:4e:8f:08:
3b:33:ac:86:86:ed:ab:bd:60:10:fb:ca:a6:73:97:67:e1:c8:
63:c3:e5:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-ams.rpki-client.org