Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-OP0gHIRgMYV_BAhxj_8yMENfZI.roa
File: 1-OP0gHIRgMYV_BAhxj_8yMENfZI.roa (raw, json)
Hash identifier: oGStFWWMWDyQpFyprJ71miiuAS4fpMRICIAe16xrUuw=
Subject key identifier: F8:E3:F4:80:72:11:80:C6:15:FC:10:21:C6:3F:FC:C8:C1:0D:7D:92
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 018490C5DA161C9467E7FA94BFF7A2CAD65F
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-OP0gHIRgMYV_BAhxj_8yMENfZI.roa
Signing time: Sat 19 Nov 2022 16:43:16 +0000
ROA not before: Sat 19 Nov 2022 16:43:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 131477
IP address blocks: 185.188.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:90:c5:da:16:1c:94:67:e7:fa:94:bf:f7:a2:ca:d6:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Nov 19 16:43:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8e3f480721180c615fc1021c63ffcc8c10d7d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9c:b5:2f:f3:e0:ac:01:64:cb:9a:4a:d8:b6:
53:3a:67:ac:39:94:c2:c7:05:d4:41:41:9d:60:0e:
12:f0:f9:4c:55:2e:16:bc:f7:ff:ae:44:1d:20:a5:
c0:c3:ce:91:0f:b2:34:05:5d:2f:f4:5b:24:c7:67:
83:f1:5b:16:22:2f:8d:87:c7:a9:eb:e9:31:d5:ac:
c0:b5:f9:12:75:7e:14:2b:bd:6c:cf:01:d9:0d:4d:
b7:8d:7e:96:3b:5e:35:e0:41:ac:d9:b8:3f:fc:cf:
49:c2:15:99:e5:66:c0:51:33:c1:26:d1:18:ab:8e:
b6:07:a2:35:18:07:68:4b:2e:05:3f:6a:81:3e:28:
b4:58:14:73:e7:a5:92:7a:23:9e:ae:a5:f4:2b:58:
22:e7:f2:c9:98:30:0a:41:1f:af:51:13:64:0d:2c:
bd:17:99:22:4f:2d:45:0b:ff:cd:88:f7:63:6f:4b:
89:8a:95:4c:60:a3:15:ee:19:8b:a7:05:d3:6f:39:
01:3f:74:50:e2:e7:08:fb:7b:f9:60:fc:f4:b2:17:
c4:94:ad:7d:20:5a:af:aa:0a:0a:9f:2a:a7:c7:bb:
72:07:3f:b0:0f:f5:3e:60:5d:49:d5:15:6a:83:a6:
8a:08:23:77:e1:1c:01:37:e4:45:88:da:11:b7:32:
3f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E3:F4:80:72:11:80:C6:15:FC:10:21:C6:3F:FC:C8:C1:0D:7D:92
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1-OP0gHIRgMYV_BAhxj_8yMENfZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ba:81:b1:c9:11:de:75:63:36:c2:3f:12:61:0e:c9:74:c5:
26:3e:4c:6b:dc:9e:75:4c:53:82:d5:bf:e6:96:53:86:20:b3:
e3:17:83:52:41:24:00:8c:46:96:96:b9:a8:5b:8e:6f:93:d4:
ff:6f:d4:91:0e:99:1a:63:bd:da:fe:04:0c:61:31:50:9f:ec:
ba:e1:c3:5d:2c:6a:65:bf:59:a5:e1:d9:ac:d5:fd:62:0d:0c:
92:08:6c:c5:75:ba:ef:c0:29:c3:4b:69:70:d7:90:6e:bd:c1:
dd:6b:4c:6d:29:6d:47:4e:da:4d:0b:f4:bd:e2:c7:6a:4d:1a:
e1:94:0c:ea:f4:1c:3c:76:3a:2a:9f:d1:8f:1b:5a:96:b4:87:
b8:ea:b8:46:0e:63:48:e6:33:b2:33:ee:1e:c9:62:69:18:df:
0c:81:50:8b:e3:67:89:5b:94:7a:68:80:6e:9f:1f:26:e2:f8:
5c:bc:d3:a1:09:07:00:0b:1a:e6:c3:0b:8f:0a:e1:40:ae:c9:
4c:a1:34:ba:aa:0d:a0:56:ad:85:60:95:98:b7:9b:73:0e:4a:
f3:ff:e5:0b:8d:12:e4:5a:54:79:eb:17:01:4a:77:32:d2:fe:
28:ff:7d:05:c8:ec:4d:84:2f:72:39:0b:69:bb:67:9f:b1:3c:
6d:ff:89:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org