Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dRj48bf7lGdpabxIB8zwq4_qxc4.roa
File: dRj48bf7lGdpabxIB8zwq4_qxc4.roa (raw, json)
Hash identifier: uMptXr00ax1XxHu3Pdng7o9+RsLga6B4/cuzjyf9qpo=
Subject key identifier: 75:18:F8:F1:B7:FB:94:67:69:69:BC:48:07:CC:F0:AB:8F:EA:C5:CE
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B09163B
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dRj48bf7lGdpabxIB8zwq4_qxc4.roa
Signing time: Sat 01 Jan 2022 13:58:03 +0000
ROA not before: Sat 01 Jan 2022 13:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201113
IP address blocks: 188.114.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722015803 (0x2b09163b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7518f8f1b7fb94676969bc4807ccf0ab8feac5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cc:75:ce:a4:7a:1b:73:9f:54:fe:83:6f:dd:
41:db:4f:23:fb:55:7b:ba:b3:0c:c1:16:28:0a:39:
d5:8c:c2:f3:aa:37:4f:1e:38:90:5d:9b:ac:2f:7a:
02:7f:12:76:c5:37:63:7d:d4:87:0e:57:a4:61:48:
0f:86:5f:8d:45:03:f2:95:9d:61:93:8e:27:64:e9:
c3:80:62:b4:c8:fb:27:47:28:f1:8b:de:4b:d1:cc:
20:68:62:44:97:ee:91:30:6e:84:8d:81:74:4a:d2:
e9:82:33:7f:3d:76:f9:a6:ad:81:ee:53:fd:bd:08:
b3:b6:ff:c8:58:a5:3f:a1:d4:20:b4:4e:f4:0b:3b:
54:16:a8:24:09:84:36:06:59:a2:83:d3:18:54:6e:
ea:a8:3b:e6:08:2a:c2:8f:90:08:f6:8c:74:fe:4f:
74:ce:0a:c9:3c:cb:de:00:3f:98:d1:03:5f:d7:9c:
a7:45:70:8f:27:d6:6c:85:ef:df:ab:de:b7:5c:39:
5b:c8:50:e8:1a:80:a3:45:45:e6:01:f6:ad:df:a9:
84:ae:6a:dc:5f:d8:25:c9:ea:db:fe:31:5b:3d:e4:
fa:95:79:4b:f9:69:f2:bd:3d:93:4a:69:ff:d4:e5:
9c:d0:69:77:6d:55:66:0a:40:c9:c7:a9:8f:c2:7a:
1c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:18:F8:F1:B7:FB:94:67:69:69:BC:48:07:CC:F0:AB:8F:EA:C5:CE
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dRj48bf7lGdpabxIB8zwq4_qxc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.66.0/24
Signature Algorithm: sha256WithRSAEncryption
26:18:3e:7b:0d:1e:6b:29:e6:6f:ca:c0:d5:c0:17:e5:d6:1a:
97:3c:cc:ef:cd:fe:60:14:8e:47:fe:1e:e0:4b:1d:c4:77:7d:
e7:e6:23:48:a5:2a:7e:e5:1d:08:b1:02:71:a3:db:7b:2b:c3:
46:b0:28:31:8d:0f:51:ba:a1:a5:fe:2f:58:34:9a:9a:d1:f4:
2c:c3:82:d3:9e:ad:94:23:23:49:85:65:65:95:1c:4b:40:35:
fc:ee:58:36:17:bd:01:7c:d1:33:81:42:d7:ac:c0:64:a9:fc:
4c:91:92:14:0c:f5:d4:69:4d:17:1b:d0:8f:b1:13:7d:96:38:
e9:f6:77:42:87:0b:74:77:24:75:fb:06:a4:09:e4:8d:41:a3:
a9:d0:0a:89:2b:4f:63:c0:b2:22:30:1d:76:7c:23:65:c0:ea:
d7:3f:f1:29:94:ad:a6:71:75:b3:c1:9f:60:ee:b1:38:36:a7:
58:df:6b:0b:b4:04:27:d6:9a:4d:6f:6d:43:fb:69:ba:26:bf:
eb:9f:89:d1:27:f7:52:16:c5:2a:e4:70:77:fe:1e:97:aa:41:
c0:a7:aa:a2:14:c1:d5:50:b1:08:c5:e9:42:dd:2f:00:de:39:
e8:ec:ce:a9:fa:1e:85:68:f2:88:5e:dc:77:88:a8:5e:3b:05:
58:23:16:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org