Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/a-7pnsVeTWiMZmp4ECgub_tm0Ys.roa
File: a-7pnsVeTWiMZmp4ECgub_tm0Ys.roa (raw, json)
Hash identifier: NAzqFl340IUQtB2J0BXZIUDkopbh3/3kRVdnaNceAjc=
Subject key identifier: 6B:EE:E9:9E:C5:5E:4D:68:8C:66:6A:78:10:28:2E:6F:FB:66:D1:8B
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42EDC53C
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/a-7pnsVeTWiMZmp4ECgub_tm0Ys.roa
Signing time: Mon 09 May 2022 10:52:55 +0000
ROA not before: Mon 09 May 2022 10:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59765
IP address blocks: 188.214.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1122878780 (0x42edc53c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 9 10:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6beee99ec55e4d688c666a7810282e6ffb66d18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b5:bb:4f:8a:2a:ea:8d:c5:fc:0c:22:4b:5a:
00:ad:84:05:9b:1c:1c:28:7f:cb:87:50:0d:ae:c9:
60:ef:f9:bc:0b:57:c9:73:86:34:19:59:1d:c9:a5:
3f:9a:41:86:6c:ff:35:89:ea:03:5e:23:82:58:ec:
e3:8a:21:ae:c0:70:3f:cd:3a:87:5f:9d:85:68:9e:
2b:87:e0:98:25:a0:b9:42:55:99:8e:a8:be:c4:68:
01:a5:7a:fc:f8:3e:97:74:79:86:fe:ec:74:06:30:
db:5f:46:3a:98:81:89:01:f5:6e:13:02:69:7f:3c:
89:9a:d5:e4:55:b6:0a:9e:a1:bd:cc:61:75:75:3f:
66:eb:42:60:a1:cd:a2:e7:9f:c6:d6:5f:fa:c3:73:
79:e4:93:be:51:8e:76:d0:33:5e:22:51:4e:c9:59:
1f:1e:28:26:b2:8a:74:1d:f1:13:d0:ba:df:14:c6:
5b:b9:82:28:ae:9f:07:c8:59:9a:e0:31:72:4c:dd:
4b:96:c6:0d:5c:c3:50:1c:c8:dc:00:7d:9a:1b:b9:
58:43:88:4c:09:be:f8:4c:0c:4f:50:1b:4f:c2:bf:
42:80:b1:81:fa:89:0d:13:33:69:aa:35:de:44:98:
40:9e:01:89:59:90:3f:00:df:d4:ac:88:b8:13:e5:
f2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EE:E9:9E:C5:5E:4D:68:8C:66:6A:78:10:28:2E:6F:FB:66:D1:8B
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/a-7pnsVeTWiMZmp4ECgub_tm0Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.111.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:6d:7a:69:cc:fd:88:06:10:d4:9f:d2:ca:ae:f0:cb:a6:1b:
6b:02:a2:65:d2:67:4c:39:67:d9:4f:02:89:c7:0f:a4:a0:23:
44:d8:fa:2f:df:a5:08:97:3f:52:e6:fc:16:e1:68:3f:74:eb:
13:90:cb:d6:5f:6f:81:6f:85:3e:e8:01:74:43:89:4a:d8:b7:
b4:d8:8f:c7:d1:8b:4c:fe:71:fd:2d:b5:ba:15:49:9f:98:df:
86:10:88:ea:b6:69:9c:f3:96:97:36:8e:76:12:08:09:5f:bf:
89:9c:d9:33:62:d4:bd:5a:fe:ac:fd:77:75:6b:1e:88:98:0f:
c9:be:48:e2:a4:8e:68:00:fe:f3:c8:8a:a8:ac:c3:65:77:26:
b9:d3:f5:89:87:2c:b4:f4:6c:36:c9:1f:ea:78:96:d5:59:ef:
86:0e:bd:e0:f0:b5:f3:ec:d6:02:35:ca:20:20:50:ce:77:36:
8c:eb:fb:2c:7c:61:8f:18:b1:c4:9a:ac:04:ed:58:77:87:22:
1e:3f:67:cf:10:4f:0b:c4:20:15:c8:61:39:c0:af:b6:20:27:
8a:44:29:fd:79:ee:48:9e:a2:09:b2:a2:79:76:87:d4:09:b7:
5b:14:ce:5a:20:1e:9c:5e:f7:44:61:e5:3f:f4:68:09:96:86:
b9:ac:9a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org