Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/oaV3lD6lnaBarV50xLPzcQLpyH8.roa
File: oaV3lD6lnaBarV50xLPzcQLpyH8.roa (raw, json)
Hash identifier: BJTZ0lDlN7SloXCGYQ23fLa0E2F3RiflH1vdTBhdZr4=
Subject key identifier: A1:A5:77:94:3E:A5:9D:A0:5A:AD:5E:74:C4:B3:F3:71:02:E9:C8:7F
Certificate issuer: /CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Certificate serial: 057BE7CE
Authority key identifier: 4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/oaV3lD6lnaBarV50xLPzcQLpyH8.roa
Signing time: Sat 01 Jan 2022 05:03:31 +0000
ROA not before: Sat 01 Jan 2022 05:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43754
IP address blocks: 193.111.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92006350 (0x57be7ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Validity
Not Before: Jan 1 05:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1a577943ea59da05aad5e74c4b3f37102e9c87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:71:e0:e8:59:2b:6b:c6:22:ef:3c:3a:44:a7:
43:6b:76:eb:e0:b8:ba:ea:20:2d:37:d7:3d:3a:22:
6c:8d:f8:2a:2e:c5:c6:69:93:94:dc:8d:e9:f8:9f:
8b:9c:a2:dd:f8:3e:d0:cd:48:49:a0:24:d3:f5:ff:
86:b2:c5:0b:85:73:b9:52:0b:ad:89:be:27:93:5c:
1e:58:73:19:e2:e0:b3:ac:9d:2c:ed:77:46:b7:ab:
48:b8:22:27:78:b6:81:09:ee:13:83:d6:43:2d:99:
05:a5:12:5b:55:25:cf:03:2d:c2:d0:53:ea:fe:51:
58:2e:05:f4:7f:12:a3:1f:5f:32:66:d0:c4:b4:f6:
6c:52:35:89:51:ac:80:e6:b4:34:0b:36:06:88:3a:
31:fd:76:4a:ff:46:92:02:68:31:69:57:81:1e:8f:
a8:26:1c:32:e2:00:2c:89:75:51:43:ec:b9:c8:01:
7c:a9:48:6f:58:ee:8c:c2:41:0b:75:e0:71:a3:9f:
fa:ea:3b:31:d3:80:c7:41:fe:ed:de:4c:9e:aa:3d:
3e:0b:20:0b:36:fc:70:00:a9:c1:2b:9f:77:29:12:
ba:e1:40:1d:7f:12:8f:46:fb:5e:94:32:af:c4:4a:
fe:5c:43:48:9c:dc:6d:90:44:9a:74:d5:fe:67:42:
35:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A5:77:94:3E:A5:9D:A0:5A:AD:5E:74:C4:B3:F3:71:02:E9:C8:7F
X509v3 Authority Key Identifier:
keyid:4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/oaV3lD6lnaBarV50xLPzcQLpyH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/Ss70X7sPJpMK64M895_EHiLKkjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.234.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:fd:c9:18:1a:73:ea:fc:f8:96:c7:81:c2:3d:11:66:08:ac:
0a:03:ac:43:fc:ba:06:86:d0:54:36:cc:7b:f9:55:ca:df:0e:
f5:8e:bd:40:ad:1f:dd:53:c5:27:b6:a3:b8:16:c1:17:bc:71:
3d:94:e6:c1:cf:52:f6:86:aa:da:cc:56:c1:4f:09:65:fa:df:
4c:2c:6b:05:84:14:1b:c3:75:7f:0c:98:8f:fc:f2:24:c1:49:
05:14:b9:57:da:4c:2e:1c:a1:85:53:17:6b:3a:0c:68:b4:6c:
0c:ca:ac:6a:0d:d2:d4:ad:c5:01:59:6e:f9:b7:36:f9:c4:a2:
05:ca:59:d8:00:84:24:fc:1e:7d:da:f2:c9:3b:2d:d3:51:40:
25:3f:4d:47:43:42:4e:e8:b9:11:2d:d7:af:73:7b:65:7c:d2:
48:58:be:fd:d3:cd:99:46:ce:8f:d8:c8:73:69:36:29:4e:99:
24:29:a6:be:46:25:02:6b:74:7e:66:ec:ac:6f:c4:6e:27:cb:
15:93:dd:85:dc:2e:a7:b0:8c:65:26:b6:59:da:d9:1f:aa:54:
6c:12:5a:96:3e:78:bd:79:bf:5d:ba:06:cd:73:c4:02:67:3f:
e7:93:79:2c:2c:b8:a1:6b:4e:0b:d0:db:c3:be:5c:50:1c:5f:
0e:30:90:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:15 2024 by rpki-client on console-fra.rpki-client.org