Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/ovYZa7UbJdH4gAcfkrHgQBPb1iM.roa
File: ovYZa7UbJdH4gAcfkrHgQBPb1iM.roa (raw, json)
Hash identifier: 8Ocsetk1ey69d00Bggp/hv6cklJA20HwC/rQfmh/0+E=
Subject key identifier: A2:F6:19:6B:B5:1B:25:D1:F8:80:07:1F:92:B1:E0:40:13:DB:D6:23
Certificate issuer: /CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Certificate serial: 0412BA4C
Authority key identifier: 9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/ovYZa7UbJdH4gAcfkrHgQBPb1iM.roa
Signing time: Fri 03 Jun 2022 11:02:20 +0000
ROA not before: Fri 03 Jun 2022 11:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49632
IP address blocks: 188.125.175.0/24 maxlen: 24
188.125.173.0/24 maxlen: 24
188.125.172.0/24 maxlen: 24
188.125.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68336204 (0x412ba4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Validity
Not Before: Jun 3 11:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2f6196bb51b25d1f880071f92b1e04013dbd623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6e:ad:3e:8d:d7:a2:3f:c6:f3:46:ad:72:19:
14:14:a7:1a:c7:37:24:24:9b:5c:63:2a:ae:b6:f5:
8a:15:f6:dd:2b:32:14:8a:49:ec:4b:d7:23:b2:f9:
01:92:f1:38:ef:15:7b:c0:26:87:7b:3f:9b:0d:f1:
4f:d1:34:fe:bd:63:a6:c4:31:29:de:43:8e:d9:76:
99:9f:43:86:b6:c2:1e:55:47:4e:21:11:75:4f:57:
2d:95:c4:d6:ea:07:6a:fb:3d:0c:bc:bb:19:79:94:
41:87:28:fb:0e:ee:a1:2d:23:44:f9:7b:f9:04:15:
8a:8e:4e:67:02:c0:d2:2e:36:52:7b:21:41:48:5d:
74:69:e2:13:4b:f1:0a:c8:f3:83:61:ef:ac:11:47:
cc:4b:c0:ee:02:9a:d4:50:20:6e:43:5e:33:da:6c:
dc:bf:e1:c0:35:5c:e1:c1:0a:24:c1:29:0e:15:95:
20:54:2f:a9:69:43:31:39:41:d1:65:30:0b:e9:af:
db:95:c7:1e:50:22:59:a4:2e:81:80:3d:e8:82:42:
27:c1:54:d9:65:97:d1:5f:71:5a:60:b4:36:c0:c0:
e6:b3:57:1e:88:91:9f:7d:38:06:d5:f1:99:84:46:
42:f9:ca:d6:44:9e:76:00:7c:20:2d:9c:7c:3e:76:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F6:19:6B:B5:1B:25:D1:F8:80:07:1F:92:B1:E0:40:13:DB:D6:23
X509v3 Authority Key Identifier:
keyid:9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/ovYZa7UbJdH4gAcfkrHgQBPb1iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.171.0-188.125.173.255
188.125.175.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:da:6f:a0:77:96:1d:2d:b3:1c:6b:d4:8f:6a:a6:06:b2:40:
6e:d3:22:fd:61:dd:75:83:e9:83:5b:9d:e4:24:60:47:3a:20:
50:f1:10:e2:60:12:92:60:1d:d4:9b:21:39:bd:01:1b:d0:2f:
a9:c8:b3:c9:ab:aa:a4:8a:bb:ea:6c:aa:55:4b:56:21:6d:e3:
e0:96:be:ac:93:8f:72:eb:36:51:aa:02:2e:27:63:cc:4d:4a:
4b:68:ed:90:f3:a9:cd:42:2a:69:74:21:9d:80:05:d6:44:27:
8b:52:35:a6:4b:78:d5:c4:83:29:7f:e3:df:b5:30:e4:b8:e7:
46:d3:3a:04:f1:20:b2:16:72:2a:a0:07:6e:50:dc:e8:8e:84:
68:38:52:f5:44:62:f1:19:55:b4:b6:7a:0b:36:06:a9:79:83:
aa:8c:b5:af:96:e8:59:ce:c8:d2:2c:0b:4f:f7:c3:9b:a1:09:
c8:69:70:d8:24:24:3c:d7:10:b3:89:23:8c:35:8b:e3:53:0e:
fe:54:28:dd:9a:ae:a0:e2:5c:6a:6a:92:73:55:0a:4a:23:b5:
05:1b:1f:39:c0:a9:24:0d:88:42:6b:b0:cb:12:2e:f9:02:f0:
bf:11:0b:d8:81:61:a7:50:4c:ab:3c:cb:73:d1:71:d3:ff:05:
62:fe:b5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:01 2024 by rpki-client on console-fra.rpki-client.org