Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/oAWDpetDO3BRtWTetTzHq1PsIb0.roa
File: oAWDpetDO3BRtWTetTzHq1PsIb0.roa (raw, json)
Hash identifier: +FnQ8+q6z62YRKV8mmWsZU6Te9257cCr3xncStja2L0=
Subject key identifier: A0:05:83:A5:EB:43:3B:70:51:B5:64:DE:B5:3C:C7:AB:53:EC:21:BD
Certificate issuer: /CN=501459c027a86e1a55709f860937fe2f81b312f0
Certificate serial: 08B0845A
Authority key identifier: 50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/oAWDpetDO3BRtWTetTzHq1PsIb0.roa
Signing time: Sat 01 Jan 2022 05:02:24 +0000
ROA not before: Sat 01 Jan 2022 05:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 378
IP address blocks: 147.233.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145785946 (0x8b0845a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=501459c027a86e1a55709f860937fe2f81b312f0
Validity
Not Before: Jan 1 05:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a00583a5eb433b7051b564deb53cc7ab53ec21bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:34:e2:c4:63:16:22:a8:0d:1a:d8:b3:d0:0d:
e3:38:9e:77:62:3a:20:16:86:ae:97:38:e7:6f:09:
f3:0f:f4:11:54:69:83:bb:8f:42:d0:78:8f:82:dc:
33:13:99:ec:69:2b:46:f7:9b:99:25:02:06:93:de:
b1:50:6e:a1:02:ef:b9:2b:f7:2a:bf:a5:05:cb:fe:
55:1a:2b:bf:ed:18:fc:5d:75:ab:02:21:60:61:ed:
d0:15:70:31:d7:7f:e9:2e:32:71:38:05:79:56:39:
fc:1d:be:09:46:49:28:3e:eb:2c:da:af:7a:dc:7d:
91:29:63:42:d9:df:46:33:17:81:db:c8:00:dc:de:
45:ba:90:81:ee:33:41:6b:42:12:a7:61:62:cb:cc:
65:b6:0a:93:c0:97:7b:16:10:e2:b6:88:4f:93:85:
7d:6d:49:2c:51:12:d1:b9:b3:d0:bd:36:ad:cf:c0:
2b:37:8c:80:76:01:31:62:5a:f4:cc:ff:a9:b4:c0:
58:a6:8e:0a:7f:a5:0d:b1:9d:e4:85:b1:f8:30:e8:
21:3b:f9:e2:22:ef:bf:b1:f3:58:b0:fc:8a:18:14:
45:f0:a7:e6:26:26:ee:aa:d9:e5:ae:06:c5:a8:b3:
5f:0a:b1:c0:dd:e0:40:e3:a2:6e:f0:82:ef:bd:4f:
76:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:05:83:A5:EB:43:3B:70:51:B5:64:DE:B5:3C:C7:AB:53:EC:21:BD
X509v3 Authority Key Identifier:
keyid:50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/oAWDpetDO3BRtWTetTzHq1PsIb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.233.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:61:34:41:21:02:75:e6:00:fa:5e:b8:7d:de:93:69:5f:dd:
70:0e:7b:7a:4e:10:28:2b:4f:28:81:15:d4:0f:f5:a6:41:5e:
9e:ae:d9:2e:fa:0d:3b:2f:ba:02:a3:dd:65:e0:29:ca:72:bc:
df:57:a4:5a:e1:21:df:da:99:c9:8f:0b:d5:28:68:b6:45:46:
d5:5b:4f:d6:4d:f0:ef:42:40:e7:51:af:c5:a3:75:02:dc:26:
46:e7:52:d0:95:13:86:a3:47:10:57:da:23:56:c2:1e:39:59:
90:9e:0b:b1:34:4a:11:5c:35:c0:65:db:e1:11:6c:7f:4a:d8:
5b:d4:4c:da:3b:66:25:12:95:c1:b8:4b:d7:e7:8e:d5:3d:fd:
cf:9b:8c:fc:38:48:24:64:55:79:8e:be:0d:0a:a7:68:4a:8b:
38:a5:8e:4e:6d:b0:f0:f2:3f:25:6c:59:6f:33:72:c5:17:6b:
be:2a:f5:a0:fb:ea:b6:bc:ea:69:b2:1b:0f:e8:d0:71:c5:7b:
a2:30:b0:4c:f1:b1:f5:38:87:86:96:cf:1a:02:be:da:a1:6c:
bd:55:82:1a:4d:9d:b4:32:62:70:64:58:1c:4f:59:22:03:bc:
74:b0:44:5b:3a:7b:74:8b:ff:75:e4:3c:8d:8f:a4:73:bc:23:
46:a4:8f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:00 2024 by rpki-client on console-ams.rpki-client.org