Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/ojE-4mMggCBZ6yNhODuElnEdp3o.roa
File: ojE-4mMggCBZ6yNhODuElnEdp3o.roa (raw, json)
Hash identifier: nYJ0GmTrTWR9Xv9NLiEwPPbymoahCaiEL+iUSeq+2u4=
Subject key identifier: A2:31:3E:E2:63:20:80:20:59:EB:23:61:38:3B:84:96:71:1D:A7:7A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01847ECFE3A87FDD722A7DFE5D11DD6C8782
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/ojE-4mMggCBZ6yNhODuElnEdp3o.roa
Signing time: Wed 16 Nov 2022 05:01:04 +0000
ROA not before: Wed 16 Nov 2022 05:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205194
IP address blocks: 192.162.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7e:cf:e3:a8:7f:dd:72:2a:7d:fe:5d:11:dd:6c:87:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 16 05:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2313ee26320802059eb2361383b8496711da77a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d2:9e:37:a0:55:18:25:5a:92:cf:65:93:b2:
e7:dc:e8:62:20:38:c3:4a:d2:db:22:52:b3:0b:09:
55:b9:98:1a:78:1f:3e:c5:f2:e7:09:ee:6b:f3:1b:
7c:93:4f:9e:35:04:91:bb:5e:f6:9d:98:a1:a4:4a:
9a:ad:2e:58:80:ed:dc:b9:bd:63:a6:f0:8e:2c:fd:
fd:2f:fd:c8:13:c1:74:77:97:26:e7:9d:6e:a3:62:
1f:04:eb:bf:27:ef:ed:8f:75:d8:d8:e4:a7:52:a5:
97:16:ea:31:a8:fb:d4:f1:ba:d8:a2:66:00:ec:ab:
0b:18:6f:8e:1b:6a:da:c6:04:ae:50:d5:09:23:70:
bb:af:f1:6a:18:f8:5b:e8:7d:f0:0b:44:6c:4b:1a:
55:7f:b1:6d:c6:e7:63:0f:5a:84:42:7e:04:4c:05:
51:09:df:a9:0c:8b:af:2b:c6:53:37:69:97:c9:1c:
05:9c:cf:8d:4c:de:ff:eb:38:72:c2:9e:b8:75:6c:
b0:ab:16:c6:9a:a2:c6:21:36:94:f2:ef:98:f5:0d:
ee:db:af:2e:e4:72:ef:a1:fa:67:c7:33:31:9c:3a:
a2:6c:a4:8c:47:ab:a9:af:99:b5:7c:f6:b6:b8:fe:
e9:5d:2b:d3:89:f0:0e:d9:e8:86:68:43:43:9a:95:
7f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:31:3E:E2:63:20:80:20:59:EB:23:61:38:3B:84:96:71:1D:A7:7A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/ojE-4mMggCBZ6yNhODuElnEdp3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.65.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ce:96:ed:30:d9:24:5c:bf:cb:49:a1:27:86:24:42:4d:c9:
16:38:d8:d0:b2:6b:41:2f:ec:3a:b2:28:1a:8a:79:9a:ef:d9:
10:09:7a:4d:15:44:1d:34:46:3c:15:df:7d:c5:91:5a:1a:f2:
1a:04:d1:89:84:60:33:34:1e:ff:a9:aa:21:c9:65:f0:1f:7c:
1d:ef:3f:99:74:61:d6:46:15:9c:42:01:1e:48:fb:92:47:a7:
4d:ed:75:79:c1:d6:5c:08:4c:2f:fb:6b:7c:f4:a6:6b:d8:50:
93:88:e4:f5:89:b0:e8:8d:d4:06:1b:6c:9c:09:3d:bf:7d:04:
41:48:74:6a:10:77:69:93:64:7e:a9:ec:be:d8:1b:03:06:c4:
7c:c8:77:47:67:7f:29:a5:89:c1:d4:0a:11:46:76:88:49:d4:
0a:91:76:a4:08:93:87:ab:2e:2a:59:01:49:38:34:de:0e:45:
e1:f9:6a:18:12:b8:4a:70:cd:ed:fc:75:07:83:bb:43:2d:47:
6a:75:36:23:f0:55:db:db:03:c6:e0:8f:e1:78:19:aa:d3:17:
41:13:fe:94:ea:e1:c1:b8:26:b6:7a:13:b8:e3:f3:48:73:9e:
8b:d3:d9:f8:71:0d:5a:31:e8:fe:6f:b6:5a:f6:a4:dd:ec:d1:
52:4c:5d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:56 2025 by rpki-client