Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/owNzVOLHUhVthJ-r-IP8QdsdUCY.roa
File: owNzVOLHUhVthJ-r-IP8QdsdUCY.roa (raw, json)
Hash identifier: MGkXFftXKFkMvGXK+jLYoKroYhigTxLiCQ/z6ajXVRQ=
Subject key identifier: A3:03:73:54:E2:C7:52:15:6D:84:9F:AB:F8:83:FC:41:DB:1D:50:26
Certificate issuer: /CN=08759158de234b754b7150f21933096c1094aac4
Certificate serial: 0FF65CD6
Authority key identifier: 08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/owNzVOLHUhVthJ-r-IP8QdsdUCY.roa
Signing time: Sat 01 Jan 2022 02:58:53 +0000
ROA not before: Sat 01 Jan 2022 02:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12906
IP address blocks: 188.65.0.0/21 maxlen: 24
2a00:eea0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267803862 (0xff65cd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08759158de234b754b7150f21933096c1094aac4
Validity
Not Before: Jan 1 02:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3037354e2c752156d849fabf883fc41db1d5026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5b:2f:87:11:59:74:33:f2:e9:d9:38:71:d8:
c7:14:ff:7c:b5:c7:e2:a6:a7:c3:a1:54:ad:37:a9:
48:ea:96:3d:bb:67:c2:a5:53:f6:7e:c6:72:53:5c:
b0:de:e1:cf:26:85:b5:83:7d:43:df:93:c7:fa:4c:
40:29:fc:bd:b3:93:c2:93:3d:bc:8e:d6:4c:f0:e9:
03:84:a6:30:a4:42:20:9d:27:61:0a:a9:46:b4:03:
d7:97:f6:57:67:51:ea:8d:03:b9:9f:e1:ab:34:2f:
12:81:cb:e0:f6:73:d2:8e:e6:83:02:92:d5:0c:0e:
17:eb:37:36:6c:0f:05:2f:2e:42:dd:9e:c0:32:a8:
18:e6:65:92:08:37:f2:76:ce:1a:2f:6e:aa:55:79:
d1:0c:d2:07:1b:06:34:02:d6:e9:cc:ea:ce:7a:76:
43:3a:cd:db:89:97:be:e3:3d:a3:e2:66:6e:5f:5c:
7d:fe:81:c3:a4:d4:3e:5e:ec:20:5a:15:a8:b2:f4:
04:d8:63:cd:ef:e7:08:f6:98:8e:7f:97:cb:c8:d6:
83:d6:26:25:46:26:d9:b6:ac:d6:ca:43:25:74:32:
39:30:aa:10:02:13:d7:58:ec:b5:6e:f2:9c:ee:f4:
b7:74:5b:4d:c0:1e:36:03:df:99:88:e6:b2:96:4c:
66:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:03:73:54:E2:C7:52:15:6D:84:9F:AB:F8:83:FC:41:DB:1D:50:26
X509v3 Authority Key Identifier:
keyid:08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/owNzVOLHUhVthJ-r-IP8QdsdUCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.65.0.0/21
IPv6:
2a00:eea0::/29
Signature Algorithm: sha256WithRSAEncryption
5e:1d:be:99:c9:63:f3:62:ab:1a:3c:6d:c6:a2:63:69:64:25:
f1:5e:8b:ed:12:b6:96:27:21:bb:d3:c5:49:ca:9e:78:2d:2a:
ae:c7:f9:13:88:93:57:c0:1c:11:92:72:75:ad:92:a3:ce:79:
0a:9a:c6:c1:6c:e7:88:22:27:ea:ea:ad:b1:53:8b:84:48:ed:
da:c0:b1:7f:c1:05:03:75:4f:e6:0b:b4:f0:e8:1e:cc:fc:d6:
3c:34:fb:c4:75:7f:08:68:2e:1d:04:f2:9c:56:dd:0d:11:48:
c9:14:f1:4c:78:eb:18:e3:76:6a:6a:72:80:45:87:88:ba:d0:
20:9e:fe:d3:18:0b:b4:78:9a:4a:f8:5d:ce:b1:28:56:4f:20:
74:1f:d3:1e:e2:2c:be:fb:45:43:dd:9a:01:22:c4:0f:db:9b:
ef:8e:57:c2:40:31:65:66:3f:9b:c1:c3:5e:83:1c:51:e1:97:
10:b8:94:70:1a:ac:af:dd:cd:d5:34:4e:df:5a:7f:de:7b:80:
b3:e7:98:b0:41:69:22:3a:48:3c:b0:d7:49:32:0d:28:9f:53:
0a:e3:4d:de:fa:db:27:de:60:62:5b:7b:2a:1a:c6:fc:f0:94:
00:b9:59:88:44:36:d4:01:07:e9:f5:60:d2:7a:0e:93:7f:59:
87:b9:8c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:34 2023 by rpki-client on console-fra.rpki-client.org