Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/1Oe3PNsZCfk6MbG_34JrlIMAOLM.roa
File: 1Oe3PNsZCfk6MbG_34JrlIMAOLM.roa (raw, json)
Hash identifier: KBTDgr+S8eX6mINNEJHQuo0VZzovzCx6CwBvYbQ2/LQ=
Subject key identifier: D4:E7:B7:3C:DB:19:09:F9:3A:31:B1:BF:DF:82:6B:94:83:00:38:B3
Certificate issuer: /CN=f58f0651a90aecf91a42c3cc9fcb95af95ed9171
Certificate serial: CD1A84
Authority key identifier: F5:8F:06:51:A9:0A:EC:F9:1A:42:C3:CC:9F:CB:95:AF:95:ED:91:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y8GUakK7PkaQsPMn8uVr5XtkXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/1Oe3PNsZCfk6MbG_34JrlIMAOLM.roa
Signing time: Sat 01 Jan 2022 11:58:55 +0000
ROA not before: Sat 01 Jan 2022 11:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 188.244.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13441668 (0xcd1a84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58f0651a90aecf91a42c3cc9fcb95af95ed9171
Validity
Not Before: Jan 1 11:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4e7b73cdb1909f93a31b1bfdf826b94830038b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4b:79:41:02:63:f2:bb:46:19:e8:e0:83:3a:
81:94:9e:b0:a1:9d:4f:40:1b:ca:a5:1e:2e:31:11:
b5:5a:ad:e3:69:bc:61:72:ea:b1:5b:02:5b:2d:23:
9e:8e:07:ed:3b:93:7d:26:04:ef:43:71:5e:74:2c:
b3:9d:7b:70:de:ae:c3:1e:18:83:00:a2:34:40:8b:
c6:bb:8c:07:75:d0:42:fa:a9:fb:18:3c:cc:17:c0:
11:2e:a8:a6:cf:61:0b:2b:c4:d8:1e:79:63:ec:7b:
e6:1f:3d:97:f6:40:ec:36:f9:eb:3b:54:30:c4:37:
b1:4f:c5:80:13:50:0b:53:b1:29:a1:74:63:c9:b3:
44:d7:18:63:5b:1a:89:a1:3a:7e:a6:82:6e:7f:59:
7d:09:55:18:f3:4e:0f:76:0e:db:5e:c8:95:ce:12:
83:42:d4:a1:4b:14:3c:7b:96:a1:ca:75:a7:26:23:
33:16:e7:5b:f7:de:8d:5e:ae:0e:30:fd:dd:f9:00:
af:fb:35:c2:7c:65:9d:4f:e9:c1:7b:71:a8:dc:ff:
f4:31:41:f4:a9:a1:26:25:95:4b:ea:c3:27:91:3b:
ef:ba:61:99:52:93:13:7e:53:f6:09:c3:82:97:35:
8f:a0:33:5e:1a:52:a4:10:d4:d6:46:32:7e:9f:b5:
b0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E7:B7:3C:DB:19:09:F9:3A:31:B1:BF:DF:82:6B:94:83:00:38:B3
X509v3 Authority Key Identifier:
keyid:F5:8F:06:51:A9:0A:EC:F9:1A:42:C3:CC:9F:CB:95:AF:95:ED:91:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y8GUakK7PkaQsPMn8uVr5XtkXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/1Oe3PNsZCfk6MbG_34JrlIMAOLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/9Y8GUakK7PkaQsPMn8uVr5XtkXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.121.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f9:1b:58:54:3f:ca:74:70:f5:c8:62:20:9d:98:02:ab:69:
81:1f:1e:8a:f7:0e:02:39:77:14:6c:0c:e7:09:82:36:ab:26:
d0:5e:b4:69:23:7b:b5:4f:54:4f:5e:d7:55:71:70:2b:3a:12:
25:53:e9:03:ec:62:f4:94:22:f2:64:3a:d9:5c:54:a1:ab:84:
9d:44:77:b3:40:6b:72:03:3c:9b:52:d0:8f:c9:1f:6b:92:ae:
e3:36:a8:c6:45:6b:1d:43:87:c2:60:12:5b:d1:39:80:0a:84:
e6:e0:4c:d5:58:83:42:6f:32:82:eb:09:a4:dd:c8:dd:7d:30:
c6:b9:b1:9c:c7:23:4d:91:06:63:cf:42:90:6e:63:92:c9:43:
e5:55:b5:18:d0:de:42:0a:86:d5:01:ba:86:4c:09:73:48:df:
e0:66:b5:cd:e2:7f:9b:3b:35:92:0a:58:a8:e1:3c:4f:95:97:
ac:06:11:a6:0a:da:d5:36:32:63:4b:60:b3:80:8e:62:2a:6f:
f0:3a:4e:a0:0c:29:59:86:23:53:ee:bf:48:20:7f:3b:1a:7a:
72:ea:08:cd:47:41:5d:4c:ca:d4:f1:a9:52:24:ef:d0:6c:55:
e9:28:9b:31:c7:cc:e5:e3:cc:66:12:76:6c:28:14:e7:1c:9d:
06:fb:d6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-ams.rpki-client.org