Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0Ia9lC-YeQ3jZXP0il9kBLAJaNo.roa
File: 0Ia9lC-YeQ3jZXP0il9kBLAJaNo.roa (raw, json)
Hash identifier: e99JyGFEiEth6OcMULE4lxpHiealdPrmPdt39RZBcxo=
Subject key identifier: D0:86:BD:94:2F:98:79:0D:E3:65:73:F4:8A:5F:64:04:B0:09:68:DA
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 434BE9A5
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0Ia9lC-YeQ3jZXP0il9kBLAJaNo.roa
Signing time: Wed 01 Jun 2022 07:48:23 +0000
ROA not before: Wed 01 Jun 2022 07:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56885
IP address blocks: 188.241.158.0/24 maxlen: 24
46.102.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129048485 (0x434be9a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jun 1 07:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d086bd942f98790de36573f48a5f6404b00968da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:91:48:af:ef:30:f7:4d:2e:71:47:af:8c:c5:
6f:83:26:33:39:99:c8:d4:54:ca:62:b3:f6:20:a3:
50:eb:da:ef:80:5c:92:c2:b1:4e:2d:de:79:d6:93:
27:aa:a4:50:74:37:09:a5:43:3d:9c:f8:01:25:c7:
c8:7a:36:53:43:1d:a9:cc:d9:b0:7e:24:90:66:97:
11:dc:03:fd:10:b5:19:17:22:f7:4e:10:b0:13:c0:
24:f6:26:50:bc:35:81:89:a3:80:1f:a1:fc:85:29:
81:cb:1e:7a:b2:b3:f0:be:de:58:c0:33:5a:74:fe:
41:a3:f4:dc:3b:25:46:2f:e2:ac:4c:82:1a:f2:e7:
cd:e3:97:1e:93:f9:6a:09:12:98:e4:a3:0f:d7:8b:
56:a5:bb:1e:33:73:13:34:88:15:e7:05:0d:38:62:
e0:cf:78:c3:16:c7:bd:7e:ac:a4:ed:6d:57:c9:4d:
d6:0d:48:df:f8:ee:40:73:ab:7f:a9:9e:8d:1b:ff:
7c:4f:c2:42:c6:87:f6:1c:67:3e:4b:c1:e4:bb:1b:
94:b7:34:9c:e4:83:1b:cc:8a:52:c4:e0:e8:8d:59:
5c:34:f0:41:51:e6:ca:80:fe:7d:3c:51:04:f2:60:
2b:42:4b:34:12:42:be:dd:b6:fa:12:85:16:f7:dc:
30:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:86:BD:94:2F:98:79:0D:E3:65:73:F4:8A:5F:64:04:B0:09:68:DA
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0Ia9lC-YeQ3jZXP0il9kBLAJaNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.109.0/24
188.241.158.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8d:e5:7c:00:ca:ea:d9:11:b9:c5:29:6b:68:e3:3a:72:b8:
e9:87:f8:a0:db:a9:b5:0b:e5:fc:f1:a9:58:50:48:02:5f:4c:
d8:a0:ed:37:79:e7:f4:00:03:58:43:17:0c:12:3b:b5:ea:d4:
c2:19:ef:f9:cf:23:51:d2:a7:42:cc:fe:11:11:75:71:70:2e:
fa:d5:33:ba:25:58:74:9c:f0:46:11:fd:b9:42:33:69:bd:18:
19:79:3e:0d:de:c1:73:33:fa:23:2d:d9:03:3d:14:4d:a9:f8:
2c:eb:c6:49:26:a1:67:15:41:37:ef:92:7a:ef:c5:e9:88:ba:
bc:c8:8c:8a:1d:ca:fa:8f:72:09:c0:35:70:15:a7:f1:96:d7:
77:5e:7f:55:76:de:3c:a5:ef:70:38:fb:09:10:14:b3:6a:62:
ec:c3:d5:46:56:16:43:02:9e:d1:4b:9e:f4:bb:67:43:22:e3:
af:18:7d:0e:c0:b8:67:a4:84:1f:ce:66:a5:ca:9d:71:9b:2f:
74:65:1c:6d:40:d0:ee:89:e4:84:d4:3a:67:7b:c7:3f:75:0c:
a0:4c:f2:e1:df:f0:f9:c8:6f:d7:ac:21:39:70:9a:9b:45:0f:
ac:c0:77:77:92:23:e2:64:fc:9d:c4:2d:c7:14:00:dd:d5:bf:
86:aa:45:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org