Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kh1oSycDy3TK0t3On5LJTP1o4WQ.roa
File: kh1oSycDy3TK0t3On5LJTP1o4WQ.roa (raw, json)
Hash identifier: Opw/0a9CKmmx9O7DSECupfmFNGGexsCCBmd4RhlZ7lM=
Subject key identifier: 92:1D:68:4B:27:03:CB:74:CA:D2:DD:CE:9F:92:C9:4C:FD:68:E1:64
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43716941
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kh1oSycDy3TK0t3On5LJTP1o4WQ.roa
Signing time: Mon 13 Jun 2022 05:51:03 +0000
ROA not before: Mon 13 Jun 2022 05:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33829
IP address blocks: 188.241.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1131505985 (0x43716941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jun 13 05:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=921d684b2703cb74cad2ddce9f92c94cfd68e164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4f:78:85:fa:87:12:ee:f5:64:c2:64:d4:3b:
51:9a:57:f2:9f:ff:f2:56:3f:b5:91:a9:5c:4a:d8:
e5:a2:e1:8b:be:d0:dc:2c:dc:01:0a:53:62:53:85:
99:7d:0d:15:a8:a7:65:1d:35:f5:6f:2c:e8:e7:41:
6f:10:f3:48:cb:3f:35:78:86:4a:e0:3c:6f:92:28:
73:23:b1:e1:cf:8a:b9:0e:ab:38:62:d0:13:7b:c3:
4d:23:ef:1f:93:c5:3b:2d:fc:20:9c:85:9a:00:1f:
74:60:34:ae:a9:b9:59:ef:9b:74:08:f4:f9:ee:1f:
5b:c6:c9:89:10:7a:84:0e:22:c5:46:49:ae:40:cc:
57:fc:72:33:52:e1:83:fa:f5:89:6b:d9:9b:88:89:
4e:79:09:7e:d3:da:31:84:21:2c:43:64:0b:8f:31:
40:64:6e:9b:42:0b:b3:3a:d5:4f:13:4c:b9:23:17:
28:56:4c:2b:3d:af:be:c4:7b:81:77:04:19:1a:67:
e7:0f:5d:e1:f5:f2:77:ee:d3:e9:bf:dc:23:99:52:
4a:57:14:92:42:cd:95:8f:d6:e1:f8:f1:1c:21:dc:
e2:f8:52:2e:24:e1:25:d1:7b:1b:7c:34:06:0e:f2:
38:d3:23:3b:9b:9c:d7:8f:ce:a5:e1:93:e4:80:a0:
69:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:1D:68:4B:27:03:CB:74:CA:D2:DD:CE:9F:92:C9:4C:FD:68:E1:64
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kh1oSycDy3TK0t3On5LJTP1o4WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.64.0/24
Signature Algorithm: sha256WithRSAEncryption
61:21:4e:fb:d9:be:76:c3:cf:57:1d:fc:84:ff:ac:36:26:39:
19:b3:51:56:fe:ea:47:52:f1:6d:6a:43:75:ec:af:eb:b1:e4:
0c:cb:50:78:46:52:71:03:1c:97:a4:71:d0:4d:85:7b:6e:73:
84:c3:f9:51:46:e4:96:c0:0f:00:cc:ef:c5:12:6d:4a:d8:92:
18:04:5d:fd:17:05:b3:21:2f:df:45:86:95:b2:7a:46:03:38:
b8:77:08:f4:be:87:92:5a:6f:34:61:7c:eb:52:9f:02:7e:e4:
49:d1:8a:d6:be:78:fe:c1:ec:32:f6:1b:f4:31:46:9a:e3:70:
4c:9a:9b:95:8f:6c:cf:35:d6:df:07:42:43:80:c8:06:97:b8:
6e:f6:92:e3:27:2c:0b:fd:68:d9:d1:31:84:3b:98:13:a7:ce:
3b:cc:b6:56:ea:1d:2d:39:92:87:e4:f5:29:35:fe:db:ea:b1:
a0:3d:02:b3:17:75:d7:b8:83:9c:86:6b:c8:2f:9f:fc:66:f3:
5d:72:a3:de:72:c4:a0:9a:ae:45:05:f3:fb:f9:13:51:21:9d:
72:98:a5:31:6d:7f:cb:5c:1b:e8:98:4a:ea:57:93:55:eb:b3:
bf:ed:55:62:d9:37:d6:0a:81:65:1e:a1:1b:f1:a4:03:4c:ab:
79:50:72:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org