Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/92b508-1fad-4299-8720-7c4afb88e2f2/1/oBbC7nK3Ges6h-w9eu5hnV3D3AI.roa
File: oBbC7nK3Ges6h-w9eu5hnV3D3AI.roa (raw, json)
Hash identifier: ls4EWU8iyjNnhEHDgKdoRMnyC/Bdmw/D87wEfsx7vHY=
Subject key identifier: A0:16:C2:EE:72:B7:19:EB:3A:87:EC:3D:7A:EE:61:9D:5D:C3:DC:02
Certificate issuer: /CN=1ea1f59a96797271e1fd6673a9c534257da88e6b
Certificate serial: 01835B3E91C82BBF1527B16C9D5F6F0D373D
Authority key identifier: 1E:A1:F5:9A:96:79:72:71:E1:FD:66:73:A9:C5:34:25:7D:A8:8E:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqH1mpZ5cnHh_WZzqcU0JX2ojms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/92b508-1fad-4299-8720-7c4afb88e2f2/1/oBbC7nK3Ges6h-w9eu5hnV3D3AI.roa
Signing time: Tue 20 Sep 2022 14:12:50 +0000
ROA not before: Tue 20 Sep 2022 14:12:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48918
IP address blocks: 212.58.64.0/19 maxlen: 24
2a00:fb80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:3e:91:c8:2b:bf:15:27:b1:6c:9d:5f:6f:0d:37:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea1f59a96797271e1fd6673a9c534257da88e6b
Validity
Not Before: Sep 20 14:12:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a016c2ee72b719eb3a87ec3d7aee619d5dc3dc02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:27:0c:75:e7:fb:43:32:39:7d:1a:cc:36:
c5:0a:d0:65:b5:58:78:d9:9f:d5:64:c6:31:a8:46:
5a:89:9d:aa:5c:47:73:08:42:73:df:95:68:77:69:
b7:aa:4e:59:06:88:ea:cf:73:ed:d1:5d:1e:9b:ef:
5b:bb:58:e6:29:2d:7b:fd:d9:e0:37:19:68:52:51:
68:a2:5f:7d:28:43:6d:24:15:9a:41:ec:53:b6:5a:
de:53:34:a9:3e:19:6f:18:5c:7b:59:b9:d7:37:08:
66:1c:06:99:22:fa:27:29:25:c5:78:6c:d7:15:4f:
13:42:7f:1a:3f:ea:21:89:6d:8e:f9:24:99:65:52:
ea:69:18:ea:b0:df:7f:e4:53:7a:e5:b8:80:5d:47:
cc:f5:7b:24:b6:ae:f5:15:44:04:db:6d:e1:2e:b3:
0e:46:54:9b:46:d2:3e:1c:51:7e:6e:f3:2e:5a:da:
73:ce:fa:43:0c:67:16:79:0e:4e:81:68:ca:e5:50:
12:89:1f:28:17:8a:44:b6:60:f7:f6:cd:52:9d:88:
a8:d6:b8:30:1a:c8:8e:6a:cd:ea:0e:19:a2:b6:fd:
09:b2:af:92:4b:4c:c8:82:c2:3a:f1:2b:75:3d:3f:
23:b5:d9:15:0f:5a:ae:c7:ed:e1:23:0e:a6:51:c8:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:16:C2:EE:72:B7:19:EB:3A:87:EC:3D:7A:EE:61:9D:5D:C3:DC:02
X509v3 Authority Key Identifier:
keyid:1E:A1:F5:9A:96:79:72:71:E1:FD:66:73:A9:C5:34:25:7D:A8:8E:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqH1mpZ5cnHh_WZzqcU0JX2ojms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/92b508-1fad-4299-8720-7c4afb88e2f2/1/oBbC7nK3Ges6h-w9eu5hnV3D3AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/92b508-1fad-4299-8720-7c4afb88e2f2/1/HqH1mpZ5cnHh_WZzqcU0JX2ojms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.58.64.0/19
IPv6:
2a00:fb80::/32
Signature Algorithm: sha256WithRSAEncryption
bc:b3:02:fb:73:25:d6:0b:60:70:06:49:4e:53:20:5b:85:fe:
fb:ae:4e:63:87:d9:8c:b1:57:1b:a6:0d:40:96:b8:f0:61:19:
75:59:63:18:09:cc:19:f4:cd:f4:74:6d:28:a1:22:a5:bd:31:
4a:61:78:b5:e2:19:55:25:02:33:6c:ad:61:98:a9:a5:10:f1:
2d:00:2b:96:a3:06:f3:01:df:47:f2:84:7e:0d:28:70:07:a5:
46:08:f9:15:8f:be:02:b8:8b:98:96:a4:e4:70:11:c1:e3:11:
da:7d:8e:0a:2f:b7:fc:d6:8c:ee:8f:23:65:6a:2d:20:c8:fa:
41:e7:e5:1b:30:ad:36:2c:9e:e5:7c:c2:05:65:8f:a9:3a:8f:
86:e9:20:14:0f:d8:aa:86:bd:44:2c:d7:66:de:96:46:3f:6a:
a5:1f:1a:d3:f8:6c:54:cc:0a:97:cc:2a:be:58:ce:a0:96:5f:
6e:88:24:00:ab:0e:88:f7:3d:41:48:11:3e:8b:e8:39:c6:e1:
05:ef:52:9a:de:3b:53:af:ab:dc:df:e7:cd:1c:7e:7d:51:aa:
d5:04:a2:d7:f7:e3:d9:7a:3f:46:c0:1f:d5:3c:2a:83:87:66:
34:d0:5e:19:08:95:8b:48:66:b8:93:33:5f:65:39:e1:87:57:
83:11:f2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-fra.rpki-client.org