Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bc6edc-fb17-4de0-9aa7-dd222e2fb5c7/1/PlZkhibCeqt0qFVnoCzEnD1DLPM.roa
File: PlZkhibCeqt0qFVnoCzEnD1DLPM.roa (raw, json)
Hash identifier: R40DvnqxjVZk+oq3YrojmX27IdVR3jZ3tLGKT4joByo=
Subject key identifier: 3E:56:64:86:26:C2:7A:AB:74:A8:55:67:A0:2C:C4:9C:3D:43:2C:F3
Certificate issuer: /CN=f9124ce7b99124defb55b8247358dfdda35f6ce0
Certificate serial: 415C39
Authority key identifier: F9:12:4C:E7:B9:91:24:DE:FB:55:B8:24:73:58:DF:DD:A3:5F:6C:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-RJM57mRJN77Vbgkc1jf3aNfbOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bc6edc-fb17-4de0-9aa7-dd222e2fb5c7/1/PlZkhibCeqt0qFVnoCzEnD1DLPM.roa
Signing time: Sat 01 Jan 2022 02:58:27 +0000
ROA not before: Sat 01 Jan 2022 02:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56464
IP address blocks: 188.244.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4283449 (0x415c39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9124ce7b99124defb55b8247358dfdda35f6ce0
Validity
Not Before: Jan 1 02:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e56648626c27aab74a85567a02cc49c3d432cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:cf:72:9e:d5:4c:b3:90:e3:76:73:b1:4c:
91:e1:21:bd:d2:2d:2a:a3:75:b8:5d:ac:74:1c:49:
47:5c:6e:81:dd:88:b2:3d:75:07:c6:fd:e8:ed:4c:
64:39:31:cc:b5:37:82:10:58:24:a8:f5:90:8a:fd:
7b:11:ba:af:1b:ad:cd:ad:9e:97:8f:56:a1:89:27:
ce:f6:38:1a:9e:90:35:bd:01:1b:f7:22:7f:cb:24:
b8:61:c1:a0:ac:55:6b:68:20:2b:2f:4f:75:1e:e1:
c4:83:c6:1c:41:fa:41:75:ca:ab:0a:bd:bb:b1:30:
4a:43:57:18:19:c6:70:bb:20:d0:47:6b:b8:94:74:
67:f4:c5:41:a9:3d:9c:18:4f:e8:6a:92:62:26:80:
97:74:e8:ca:94:8f:42:ec:50:ea:fe:09:1f:4c:26:
98:ce:33:15:a5:4a:b2:e6:21:76:f5:6c:1c:b5:95:
9b:d3:49:d1:70:63:27:57:92:23:e7:9e:dc:14:17:
e3:31:ac:47:30:e7:10:42:80:b7:85:4c:b0:f8:4b:
76:00:09:d9:e5:46:0e:3c:36:57:b9:fd:7f:86:e6:
95:42:b1:99:56:08:0f:15:3d:01:ff:7d:d1:c1:f8:
bd:97:1f:5f:1b:c2:c0:9c:37:43:fa:00:b5:a7:04:
96:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:56:64:86:26:C2:7A:AB:74:A8:55:67:A0:2C:C4:9C:3D:43:2C:F3
X509v3 Authority Key Identifier:
keyid:F9:12:4C:E7:B9:91:24:DE:FB:55:B8:24:73:58:DF:DD:A3:5F:6C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-RJM57mRJN77Vbgkc1jf3aNfbOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bc6edc-fb17-4de0-9aa7-dd222e2fb5c7/1/PlZkhibCeqt0qFVnoCzEnD1DLPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bc6edc-fb17-4de0-9aa7-dd222e2fb5c7/1/1-RJM57mRJN77Vbgkc1jf3aNfbOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.124.0/24
Signature Algorithm: sha256WithRSAEncryption
93:52:04:2e:8e:13:17:f3:1a:4f:74:2c:9e:e1:b5:8a:ce:b7:
a1:3d:47:53:b4:ad:b4:47:29:56:bf:68:e3:8b:62:7d:ee:18:
48:66:ec:9d:33:dd:93:8b:88:39:39:46:4f:1b:7d:69:4a:b7:
1d:7d:dc:f9:a7:54:c7:b6:a7:82:ff:d4:2f:91:07:79:5c:2b:
0a:76:4c:56:fb:6d:98:2c:d3:e2:e2:77:91:a0:41:d2:ab:fb:
c7:b0:3a:18:8f:bc:5b:a6:31:ef:0a:1e:a3:1f:68:2a:b4:e1:
fa:c2:0a:17:0d:9a:2c:c0:bf:11:e1:24:cd:16:f9:26:5a:22:
67:4b:95:b0:5d:4e:e8:14:5b:bd:9f:3a:a8:31:04:f8:4b:0c:
47:dc:4f:a2:29:bd:fb:26:ea:7e:e6:11:76:d9:8c:80:06:72:
a6:76:82:2f:3c:a8:f2:69:31:0d:83:ee:f8:52:30:1a:99:f7:
c3:97:28:ae:40:1f:dd:ba:02:af:b4:f5:a6:89:43:05:1b:5c:
f8:81:09:2c:12:0d:a7:92:0e:4f:96:31:02:e7:14:5a:6c:1c:
c6:39:f4:ff:82:49:a4:7c:4c:5c:b8:47:04:2b:7d:1f:e7:09:
db:98:46:57:e2:0b:ba:0c:06:dc:04:bd:12:1a:a7:ea:af:95:
1d:2c:04:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:45 2024 by rpki-client on console-ams.rpki-client.org