Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-USDssAhwQGC9N_cSg47CNPTeYw.roa
File: 1-USDssAhwQGC9N_cSg47CNPTeYw.roa (raw, json)
Hash identifier: KZSdSk204DBa6r2Ko0F3VsxPmW2KVGcAGJrnJ2WecpM=
Subject key identifier: F9:44:83:B2:C0:21:C1:01:82:F4:DF:DC:4A:0E:3B:08:D3:D3:79:8C
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 429200E7
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-USDssAhwQGC9N_cSg47CNPTeYw.roa
Signing time: Thu 21 Apr 2022 09:58:22 +0000
ROA not before: Thu 21 Apr 2022 09:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62042
IP address blocks: 188.215.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116864743 (0x429200e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 21 09:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f94483b2c021c10182f4dfdc4a0e3b08d3d3798c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:33:0b:c9:4a:16:9a:d4:91:84:c8:69:08:1b:
9f:02:22:44:db:ca:35:81:30:15:90:77:1d:a5:b1:
db:fb:83:fc:c1:60:7c:03:b7:9f:5a:20:a7:a3:f4:
0d:7e:50:d1:65:45:81:06:cc:9f:e2:49:30:3d:e0:
96:4a:36:a0:18:06:9c:c3:d2:f8:b2:ae:27:b6:0c:
93:0a:01:b2:1e:28:4f:d4:75:0b:ca:67:ae:af:47:
3c:bf:ba:84:65:1b:80:a0:64:a8:8f:8c:26:eb:91:
83:22:46:33:8e:e6:7a:bc:6a:7e:4c:00:a3:6b:0f:
d4:cd:55:2f:87:63:f5:ef:dc:8f:9a:fd:3d:bc:53:
83:30:a4:81:cf:18:1a:07:a4:8b:f5:29:39:10:4e:
52:44:0c:00:59:e8:e0:8e:eb:f0:6d:90:59:a9:8d:
4e:3c:ef:56:6e:25:b5:b4:6b:bf:19:39:9a:70:e4:
ba:ed:cb:32:62:33:78:6e:dd:94:8c:25:05:54:bd:
16:b0:5b:52:e7:0e:ff:a1:78:3a:a4:32:6b:43:08:
da:e1:bf:bd:d4:ab:f1:4f:2f:19:fb:f7:46:e2:05:
fd:08:f1:35:4c:7f:1a:40:9e:c4:32:12:6a:b4:f0:
29:71:9e:b7:0a:1e:ec:f1:61:a2:a8:ca:62:b5:62:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:44:83:B2:C0:21:C1:01:82:F4:DF:DC:4A:0E:3B:08:D3:D3:79:8C
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-USDssAhwQGC9N_cSg47CNPTeYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.39.0/24
Signature Algorithm: sha256WithRSAEncryption
f4:25:86:ab:4b:23:00:b7:b8:bc:fe:90:66:ef:d7:b8:17:fc:
92:c2:b1:e6:32:19:4d:1b:e9:aa:33:9f:32:2f:db:fb:8b:fd:
2c:02:8b:86:22:02:94:c0:36:5b:83:1f:dd:c4:aa:c1:db:08:
c2:4c:ac:d9:ac:fd:7b:6b:1d:11:94:02:f9:41:e9:61:ba:84:
55:0c:bd:ca:70:fc:ee:52:35:09:ca:c7:6a:08:d5:10:2f:82:
af:a9:56:a9:0d:56:ae:a2:05:bf:58:5b:b9:bd:18:1d:f3:49:
b7:ad:91:27:07:41:f1:f3:cf:d6:d0:d4:2c:55:17:5b:14:a3:
6f:a4:80:3d:10:61:43:3a:4c:24:a9:d0:2b:2f:e4:ef:4a:70:
78:f4:b8:7a:da:5f:15:17:b5:03:11:36:f5:04:7b:97:f4:8a:
fc:6a:96:19:b0:38:9d:cf:ef:53:03:f0:5b:06:cf:6f:f2:5b:
47:18:a3:74:33:95:90:ee:d1:77:2f:be:80:3c:b0:95:19:4b:
0a:91:32:4e:86:6d:4b:c5:87:a6:a2:57:14:75:41:16:53:d3:
ac:e8:6b:a9:85:eb:c0:d6:29:97:6a:56:6e:e2:89:32:98:cf:
c7:32:a3:43:31:a4:a4:61:cd:bc:06:26:89:a4:64:45:44:8d:
be:82:ae:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org