Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/h3WGD_r0Oe1EhYO7skLeNfN6kt0.roa
File: h3WGD_r0Oe1EhYO7skLeNfN6kt0.roa (raw, json)
Hash identifier: /tprOOfnGnQFEYb8XM1yUJ3/6oske1baOtfNJakYd2g=
Subject key identifier: 87:75:86:0F:FA:F4:39:ED:44:85:83:BB:B2:42:DE:35:F3:7A:92:DD
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B17BE3F
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/h3WGD_r0Oe1EhYO7skLeNfN6kt0.roa
Signing time: Sat 01 Jan 2022 13:58:11 +0000
ROA not before: Sat 01 Jan 2022 13:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206118
IP address blocks: 188.114.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722976319 (0x2b17be3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8775860ffaf439ed448583bbb242de35f37a92dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:73:c1:7a:c2:35:cc:43:6d:62:46:06:e3:
6e:a6:78:b3:46:3b:cd:79:e3:3a:c8:f5:86:10:3a:
a2:99:d3:28:01:8c:c7:4e:7e:0d:fd:cd:c5:c2:cc:
11:29:b9:f5:49:ae:cc:fe:07:82:8f:a6:20:2d:7e:
ea:7b:18:c4:a1:4f:7d:d2:81:c1:c0:3c:56:ef:7f:
2d:d4:1a:cc:7d:28:d6:b8:90:53:30:7c:bc:ff:36:
dd:9f:f3:b8:b9:dc:26:6d:1e:89:3b:0c:7f:78:d8:
17:67:e3:4e:cc:ed:c4:aa:f1:1c:c3:24:7d:d7:35:
f8:25:1a:ea:fa:7b:f3:22:e6:75:05:16:38:c5:05:
43:a7:23:34:a8:46:4b:5c:d9:03:5e:60:c1:cf:89:
a8:4a:44:8f:84:0f:4e:4c:29:11:3a:08:43:e1:d8:
aa:28:ee:98:d5:8e:43:d6:e8:95:b9:ee:ca:1d:4d:
39:7b:02:57:2d:7a:6a:2d:d9:c8:77:41:e8:e0:1c:
1e:a6:d0:c9:9b:0b:18:2a:fe:32:31:63:49:8f:09:
d6:37:8c:f8:6d:0d:3b:33:10:5e:24:d2:1c:7c:04:
e2:ef:af:9f:02:88:57:40:bc:1e:ac:ac:01:f4:86:
be:c6:3f:d8:b5:e0:2d:b1:62:e0:19:49:2a:34:5f:
75:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:75:86:0F:FA:F4:39:ED:44:85:83:BB:B2:42:DE:35:F3:7A:92:DD
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/h3WGD_r0Oe1EhYO7skLeNfN6kt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.69.0/24
Signature Algorithm: sha256WithRSAEncryption
20:c9:42:b8:aa:1f:cb:51:22:cf:eb:d4:3c:32:f9:ed:7c:b0:
fd:8a:73:93:f7:d8:87:69:4f:2f:64:f8:52:65:eb:2d:40:32:
25:b3:a9:45:61:d4:d4:4f:d1:35:31:7a:c6:0e:2e:b7:66:c9:
c7:c3:db:45:a1:6b:83:a5:d3:f7:9c:3e:b5:3a:35:69:b2:b9:
8a:8e:bd:80:86:1c:d4:d0:15:d1:5f:ad:30:30:b2:40:80:a8:
a3:5f:92:bb:e8:c5:28:c8:df:7b:38:b0:35:b3:a0:e7:75:21:
7c:cc:5f:bd:91:94:cc:96:4e:57:71:51:2b:f3:b9:b1:43:8c:
82:7c:9b:e2:0c:69:e6:42:ca:27:92:c6:e7:e2:38:b8:ca:dd:
c0:64:fb:af:27:4f:3e:68:7d:7c:81:25:44:6e:85:29:26:f9:
f6:ea:0b:bd:d9:ee:74:9c:19:96:ca:b3:c1:cd:5b:5e:15:e7:
bf:05:2c:59:a2:87:8d:05:37:76:f1:84:43:b3:df:41:9d:bd:
9a:1f:1c:d0:cf:17:3a:17:a4:8d:84:9d:b7:6c:d8:db:bc:4c:
6e:03:93:27:e8:96:8f:0f:7b:d7:59:31:44:10:47:1f:cf:de:
44:30:00:26:8b:fb:9e:2a:72:2d:16:58:86:79:46:fd:ad:65:
4c:df:d3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org