Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/95e949-bf34-4122-8fa8-a1ae5892d421/1/OozLjYdFLJdQchzk0sPPeiLaFTM.roa
File: OozLjYdFLJdQchzk0sPPeiLaFTM.roa (raw, json)
Hash identifier: lcwFWDnqV5Bxv9Yp+VUkGHSWYAGcvtp9ROWqhmLsDHU=
Subject key identifier: 3A:8C:CB:8D:87:45:2C:97:50:72:1C:E4:D2:C3:CF:7A:22:DA:15:33
Certificate issuer: /CN=937f12abaf613973feb3073d8ce637f1b00cbfa9
Certificate serial: 1A01498D
Authority key identifier: 93:7F:12:AB:AF:61:39:73:FE:B3:07:3D:8C:E6:37:F1:B0:0C:BF:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k38Sq69hOXP-swc9jOY38bAMv6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/95e949-bf34-4122-8fa8-a1ae5892d421/1/OozLjYdFLJdQchzk0sPPeiLaFTM.roa
Signing time: Sat 01 Jan 2022 10:59:54 +0000
ROA not before: Sat 01 Jan 2022 10:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29650
IP address blocks: 79.140.128.0/20 maxlen: 24
84.51.224.0/19 maxlen: 24
82.195.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436291981 (0x1a01498d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=937f12abaf613973feb3073d8ce637f1b00cbfa9
Validity
Not Before: Jan 1 10:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a8ccb8d87452c9750721ce4d2c3cf7a22da1533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:10:31:89:be:0c:05:96:c7:38:1b:1b:57:16:
f8:a9:01:3e:dd:ae:31:e6:0f:f1:14:2a:5d:3e:f5:
96:45:b4:6a:26:fa:6e:b9:fb:cb:e7:cc:ca:32:5d:
b3:3b:d6:8c:b7:c1:62:b8:f6:3c:ac:1f:a5:e3:4f:
26:05:16:75:94:43:27:bf:fd:57:dd:47:fe:7b:41:
7c:8e:d7:f9:03:dc:20:a9:e9:f8:32:5b:68:20:05:
fd:db:e6:89:33:c7:30:6b:6d:24:a7:ae:4e:72:5d:
7a:e8:4e:f9:7f:3e:d7:eb:c9:83:4b:af:09:53:33:
2c:45:f5:5f:9d:bb:b4:c0:85:d0:bb:c0:fb:36:86:
df:2b:13:32:e9:16:a4:be:35:db:f5:96:99:0f:64:
37:30:68:06:e9:5f:81:ce:95:90:7c:97:d3:f8:b6:
2f:47:8f:fa:45:fb:b4:49:0f:26:15:8b:81:59:a6:
15:da:21:87:96:88:cf:30:25:c1:da:87:67:30:5f:
48:81:f6:9a:f9:7d:70:bb:6d:b6:e7:bf:7e:d8:c9:
02:28:f8:9f:40:24:2a:da:91:f5:12:4d:61:8c:71:
a9:d9:71:e2:49:91:32:14:7a:59:4e:5b:2e:cb:a0:
73:a8:30:a6:4c:a3:cb:1c:1f:5b:db:96:91:cc:08:
d6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8C:CB:8D:87:45:2C:97:50:72:1C:E4:D2:C3:CF:7A:22:DA:15:33
X509v3 Authority Key Identifier:
keyid:93:7F:12:AB:AF:61:39:73:FE:B3:07:3D:8C:E6:37:F1:B0:0C:BF:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k38Sq69hOXP-swc9jOY38bAMv6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/95e949-bf34-4122-8fa8-a1ae5892d421/1/OozLjYdFLJdQchzk0sPPeiLaFTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/95e949-bf34-4122-8fa8-a1ae5892d421/1/k38Sq69hOXP-swc9jOY38bAMv6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.140.128.0/20
82.195.128.0/19
84.51.224.0/19
Signature Algorithm: sha256WithRSAEncryption
c5:41:c6:ec:5b:00:d1:d8:f8:b9:fc:2d:f3:61:b4:60:b3:6d:
fb:c5:72:dd:75:75:a6:c4:50:4b:20:c5:9a:a7:7f:9b:ce:5a:
c2:85:d9:70:43:ea:d0:62:f9:e2:29:57:ee:8a:79:d9:61:a0:
cf:2b:db:2f:5c:e6:55:79:5a:da:08:cd:e5:26:4b:74:14:c5:
e0:28:1f:23:9e:c1:86:46:2c:fc:50:3a:51:db:69:39:26:2e:
ad:5e:00:96:eb:24:2d:a1:ba:96:f7:f1:0f:43:af:eb:e2:34:
0f:0b:5f:f2:ff:7f:15:5b:81:17:6b:42:30:a4:3f:5d:1f:6b:
81:d8:41:18:8a:98:3c:3f:fd:e1:33:51:59:0e:7e:1b:5c:85:
73:ae:fc:4c:1b:21:fc:c9:02:e5:d4:69:1e:09:77:b1:c9:a6:
de:f3:f6:34:7b:68:63:1e:de:3e:d5:87:23:21:80:f5:8c:ab:
94:35:b6:a8:76:fc:4d:2b:a1:2f:27:11:41:fc:1f:53:37:ab:
0b:08:7e:d7:f9:04:55:2f:fa:b7:87:4e:13:cb:09:11:ca:bc:
5e:66:9d:bc:5d:0e:19:2c:32:32:0a:55:90:55:4b:5e:87:e3:
e0:70:ef:06:5b:a7:6c:a5:dd:88:9f:bc:53:7f:21:76:31:c3:
64:32:bb:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:26 2023 by rpki-client on console-fra.rpki-client.org