Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/3e0W6UcBeoRAnMf2O9kquAZ6paw.roa
File: 3e0W6UcBeoRAnMf2O9kquAZ6paw.roa (raw, json)
Hash identifier: 4GGT/mJuFf8EDhizI/R3SKIeDzLzXOuHdPJmn6mHYD0=
Subject key identifier: DD:ED:16:E9:47:01:7A:84:40:9C:C7:F6:3B:D9:2A:B8:06:7A:A5:AC
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43531846
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/3e0W6UcBeoRAnMf2O9kquAZ6paw.roa
Signing time: Fri 03 Jun 2022 03:30:20 +0000
ROA not before: Fri 03 Jun 2022 03:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50637
IP address blocks: 188.212.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129519174 (0x43531846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jun 3 03:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dded16e947017a84409cc7f63bd92ab8067aa5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:69:bc:a3:cc:80:a6:dd:5e:fb:48:c6:d1:
71:d4:52:0e:a9:3e:9d:ca:43:f7:c1:f2:db:ce:af:
c4:64:e2:ca:8a:d9:22:e5:3b:54:fc:68:36:a5:42:
19:e8:51:59:2f:c1:93:ea:a0:6d:a0:71:c6:56:29:
da:4c:a0:30:d6:30:74:3f:ee:06:c4:53:1d:10:02:
75:21:f5:ff:08:a9:bd:e4:da:18:4a:ee:95:0d:3b:
d1:1e:1d:d0:b8:f8:9e:8b:73:c0:af:be:55:d4:98:
ba:cc:79:c2:b5:5b:9f:33:df:b5:d8:9d:e4:e7:67:
17:0a:f2:47:67:de:2f:7e:4b:a4:21:56:f4:12:55:
71:0a:6b:46:ef:f8:3f:17:71:d9:22:67:5c:73:b5:
a9:76:76:cd:10:6a:ea:50:16:a7:08:b3:19:e5:dc:
49:bd:30:94:cd:0f:b0:7d:5a:cc:e5:84:ed:30:77:
ae:1a:09:d3:e7:1b:81:1d:93:73:77:21:86:1c:81:
f2:54:fe:63:85:b6:dc:3f:4e:7b:f8:49:86:bd:77:
ee:c0:0f:1b:ba:9f:94:81:55:29:a6:28:17:db:3e:
dd:e1:ed:51:41:af:70:be:0a:88:44:dc:23:f9:a3:
9b:e9:db:ac:14:4f:10:43:b0:81:42:06:71:b3:3e:
61:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:ED:16:E9:47:01:7A:84:40:9C:C7:F6:3B:D9:2A:B8:06:7A:A5:AC
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/3e0W6UcBeoRAnMf2O9kquAZ6paw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.130.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:d7:73:fa:ea:50:be:31:5d:06:f9:1b:c5:a0:c6:fb:39:d9:
db:c0:5e:c8:83:e5:87:7b:d0:ab:77:2a:5b:42:d0:18:a0:a0:
9d:24:eb:06:d4:9f:84:8b:4d:78:45:4c:1f:af:e6:75:a9:06:
90:47:6e:3b:9c:b3:f6:0f:d4:14:fe:c9:27:cd:56:41:86:56:
00:d7:39:4b:4e:e7:4b:c6:49:17:1f:92:1c:3f:60:8e:ec:6f:
8f:73:f8:c1:88:10:e0:2d:11:59:c6:61:8f:57:48:22:f9:8c:
58:20:7f:44:c6:e9:d3:ca:e9:c9:e2:2a:5b:aa:0a:49:e3:fa:
c7:b7:b7:70:73:b3:5c:40:1e:68:78:00:cb:be:15:ea:61:11:
76:0a:10:b8:cb:c9:86:92:d9:88:99:ab:0a:86:82:f3:da:f0:
9b:1f:03:6d:9a:8b:19:4e:bd:99:93:e3:1a:a8:d0:5f:6d:cb:
b0:57:55:4a:7d:74:5a:cf:7f:af:1c:9d:54:58:bb:35:29:92:
1b:04:3e:b6:6d:ec:48:53:ea:2b:ba:a2:7c:6d:43:d6:0f:b8:
b7:a3:7a:6e:b8:5e:f4:f9:81:bb:e4:cf:ef:04:cf:8a:b2:4e:
74:4d:72:5c:b6:69:24:74:6f:d3:cd:52:d9:c3:97:ff:42:46:
d9:9f:8c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org