Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/OcVb9yjCrL-CnzinMYHatpG3Uf8.roa
File: OcVb9yjCrL-CnzinMYHatpG3Uf8.roa (raw, json)
Hash identifier: RUYZIb2l0mdlkaNF2Z+RoBVgnMnHBGf88Asik4TV59c=
Subject key identifier: 39:C5:5B:F7:28:C2:AC:BF:82:9F:38:A7:31:81:DA:B6:91:B7:51:FF
Certificate issuer: /CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Certificate serial: 0575035D
Authority key identifier: 1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/OcVb9yjCrL-CnzinMYHatpG3Uf8.roa
Signing time: Sat 01 Jan 2022 08:59:43 +0000
ROA not before: Sat 01 Jan 2022 08:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51948
IP address blocks: 185.240.8.0/22 maxlen: 22
91.219.104.0/22 maxlen: 22
195.242.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91554653 (0x575035d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Validity
Not Before: Jan 1 08:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39c55bf728c2acbf829f38a73181dab691b751ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:37:89:5f:80:c4:cb:9c:00:e7:2f:d7:8a:
d7:78:5b:60:b5:d5:00:df:39:3f:db:51:12:a2:12:
11:1f:bc:87:28:de:9e:b7:c2:6d:b5:de:8d:ba:a4:
33:99:5a:dd:f4:f8:3b:83:80:80:4e:f7:46:36:32:
3f:c2:67:e5:37:27:7d:29:93:9d:e1:24:d5:9f:bf:
f1:f7:d7:8b:d0:65:85:b0:4a:e5:fc:61:eb:49:b3:
ef:68:c9:ff:63:ba:ce:f4:bf:9b:66:06:ae:d3:d2:
21:40:3d:3b:c5:96:65:84:00:08:15:c4:6a:ca:8f:
66:88:ba:fa:79:e6:d6:90:53:91:2b:19:7b:a2:0a:
6b:03:24:7e:c4:4c:6d:7e:5c:f1:a2:a6:83:bf:12:
f7:f9:20:d7:b7:8e:34:23:58:45:3e:ff:d7:48:d5:
39:e5:f2:72:e0:50:13:21:c5:f6:c4:4b:1f:bd:64:
69:9a:7d:55:9f:e8:32:ea:78:57:53:e9:f1:13:74:
00:a8:72:f2:78:0a:7d:4e:b3:a9:6b:db:52:0e:1e:
3a:4d:47:5a:8b:50:d1:bb:66:fd:62:16:5d:34:dc:
cc:ac:1a:1a:73:5c:a0:63:de:42:0a:41:77:61:0a:
92:de:f6:31:d2:af:15:b7:00:f9:fc:96:7d:a5:60:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C5:5B:F7:28:C2:AC:BF:82:9F:38:A7:31:81:DA:B6:91:B7:51:FF
X509v3 Authority Key Identifier:
keyid:1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/OcVb9yjCrL-CnzinMYHatpG3Uf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.104.0/22
185.240.8.0/22
195.242.64.0/23
Signature Algorithm: sha256WithRSAEncryption
89:3c:8f:4c:11:df:53:06:93:fe:46:6e:75:21:87:13:6b:89:
01:a4:ed:64:9f:32:97:cb:00:f1:97:37:6e:6f:8a:6f:71:e2:
b0:7b:d5:d8:a4:51:95:86:c1:81:32:0a:fe:32:15:6a:ba:54:
90:81:59:2b:a6:3b:15:c0:74:1f:61:09:46:ae:87:ba:52:40:
da:f4:31:c2:f5:3f:e1:8d:fa:a9:09:c7:a1:81:98:26:cf:e7:
01:6f:e5:80:65:00:06:08:11:9c:6a:21:cf:94:b5:0b:da:ad:
fc:17:ba:82:93:be:28:96:89:82:df:bb:fa:f2:d6:ce:1c:0f:
32:81:f8:36:c4:da:9f:69:86:3a:03:23:b1:09:cb:4b:32:3b:
41:d4:d8:c9:1a:8e:ad:b1:22:a0:01:59:b2:7a:d3:69:2c:ea:
17:1a:63:9a:75:04:99:39:d3:ed:9d:19:f9:6d:1b:6f:15:b7:
1c:43:7f:c3:a3:b0:c0:c7:e4:c3:7c:a9:ed:c2:dd:46:6b:70:
f1:32:8b:ed:63:57:23:b8:eb:bc:7c:5b:91:ab:82:97:9f:0a:
b5:c1:82:71:70:5a:34:16:db:b0:50:28:b1:89:5d:ff:ef:4d:
69:89:a8:16:d5:fb:25:72:a1:61:07:b3:87:a7:a2:52:c2:a7:
1c:4a:d7:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org