Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/2OvZEaPBk53zSK-drWzfhOzuDVI.roa
File: 2OvZEaPBk53zSK-drWzfhOzuDVI.roa (raw, json)
Hash identifier: wAj6jN4BC5GmsjOXOzVf/GR7APFbj7OrbkZi71Xvb6E=
Subject key identifier: D8:EB:D9:11:A3:C1:93:9D:F3:48:AF:9D:AD:6C:DF:84:EC:EE:0D:52
Certificate issuer: /CN=016dae23d2e2eb64c96853480e0778cbd3fd5624
Certificate serial: 10457A00
Authority key identifier: 01:6D:AE:23:D2:E2:EB:64:C9:68:53:48:0E:07:78:CB:D3:FD:56:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AW2uI9Li62TJaFNIDgd4y9P9ViQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/2OvZEaPBk53zSK-drWzfhOzuDVI.roa
Signing time: Sat 01 Jan 2022 14:07:42 +0000
ROA not before: Sat 01 Jan 2022 14:07:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 139.30.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272988672 (0x10457a00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=016dae23d2e2eb64c96853480e0778cbd3fd5624
Validity
Not Before: Jan 1 14:07:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8ebd911a3c1939df348af9dad6cdf84ecee0d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:eb:df:d8:bc:6c:99:f1:83:e4:a7:f4:c4:75:
89:42:c0:c5:29:29:86:00:1f:30:f5:97:bf:25:89:
6b:c5:cf:bb:bb:1c:19:a3:17:a6:fd:46:53:a1:a5:
c7:ad:32:18:69:fb:be:40:c4:6c:fd:91:83:ca:78:
3f:4c:fb:20:62:f2:5f:8f:9c:fb:72:b4:86:b6:80:
da:38:12:1a:d1:7e:67:f7:93:7e:1b:7f:03:9e:4f:
44:86:e7:fe:05:d9:c2:3d:99:97:5c:4c:c8:ba:60:
22:65:c8:ef:8c:21:70:51:56:40:3f:b6:a5:f9:f7:
4e:2d:37:20:57:8c:d7:45:1a:f8:ce:b0:0b:ad:fd:
d8:f9:0e:e7:84:2b:e1:c0:63:38:85:3f:99:2a:3c:
58:9a:ec:db:d1:55:b8:4a:78:c4:c7:b1:8c:31:fd:
79:64:55:f4:ff:4b:4b:80:ba:9a:ce:ee:2c:35:ab:
dc:01:7a:ab:d4:3d:e3:1a:63:b5:1a:6d:5b:f0:92:
f8:2a:42:64:6b:b7:2f:0e:40:9e:af:ba:28:77:f1:
ce:2c:01:21:d0:e0:58:8f:11:10:03:a0:43:ec:60:
5f:2d:13:92:f0:6e:8e:e4:c6:30:8f:e7:c9:58:78:
0a:51:0f:2a:b2:c5:19:a9:d6:66:94:a1:36:81:46:
6e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EB:D9:11:A3:C1:93:9D:F3:48:AF:9D:AD:6C:DF:84:EC:EE:0D:52
X509v3 Authority Key Identifier:
keyid:01:6D:AE:23:D2:E2:EB:64:C9:68:53:48:0E:07:78:CB:D3:FD:56:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AW2uI9Li62TJaFNIDgd4y9P9ViQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/2OvZEaPBk53zSK-drWzfhOzuDVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.30.0.0/16
Signature Algorithm: sha256WithRSAEncryption
39:c1:9f:c2:60:6b:c7:ca:73:d2:cf:be:37:f6:a2:55:e9:ff:
7d:44:21:77:dd:f5:f3:17:75:bd:5e:68:30:54:ef:8e:16:fa:
90:63:12:7a:22:01:48:cf:2b:44:9a:2c:ec:49:fd:e0:c9:93:
10:5e:17:b6:25:82:c2:85:fb:b6:38:c4:fd:8a:16:11:a2:9c:
c0:87:bd:f2:0f:7b:64:8f:de:1d:5c:9a:c8:71:cb:49:ec:cd:
b7:68:23:0b:14:ff:c1:19:b3:8f:14:42:fc:7e:2c:17:4e:de:
53:e7:0d:5b:e9:5a:ab:b1:2d:bc:a2:25:26:00:46:cb:9b:7e:
b7:23:63:bc:72:18:4b:17:40:33:f1:6d:d6:e2:1e:07:a3:d5:
de:b3:24:35:bf:3b:19:b9:3e:2c:6b:60:e7:3e:6d:68:62:0a:
54:a4:0d:af:82:fc:41:0b:96:55:7e:27:fb:f6:89:9d:77:34:
2c:81:17:ad:4b:ee:10:74:2e:25:77:35:d8:a3:90:43:c1:f4:
dc:c1:6f:d3:be:2a:58:98:f8:d2:ab:08:6e:a9:04:53:28:79:
e4:20:82:a2:1a:2d:4b:da:e4:19:e1:19:80:f4:9e:a7:33:12:
e7:01:24:7f:5a:af:60:45:bd:c9:69:cf:23:2f:c1:fe:2f:12:
55:d8:75:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net