Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/7IUfW1bhMJiQ1HZ_deek9dVQFME.roa
File: 7IUfW1bhMJiQ1HZ_deek9dVQFME.roa (raw, json)
Hash identifier: kZI4EqIuGUEoocQloaBCeIgtcTQ3KHJxFBdt+eI9J74=
Subject key identifier: EC:85:1F:5B:56:E1:30:98:90:D4:76:7F:75:E7:A4:F5:D5:50:14:C1
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01853D9B7063B44C7BD88D9EAD1E29DC293A
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/7IUfW1bhMJiQ1HZ_deek9dVQFME.roa
Signing time: Fri 23 Dec 2022 06:11:15 +0000
ROA not before: Fri 23 Dec 2022 06:11:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132335
IP address blocks: 188.208.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3d:9b:70:63:b4:4c:7b:d8:8d:9e:ad:1e:29:dc:29:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Dec 23 06:11:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec851f5b56e1309890d4767f75e7a4f5d55014c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bc:1b:4d:7a:45:49:21:d0:2e:c5:5b:e9:5f:
ba:a9:ab:4c:e3:8e:60:65:e6:5a:ca:3c:a2:da:a5:
71:5b:de:5f:99:3f:9b:2e:2b:87:ce:47:2a:38:00:
47:cd:c6:e1:d8:0f:25:56:22:ec:53:d8:44:43:26:
52:20:12:2a:a0:27:6e:c5:1b:c6:9f:4f:e6:63:a6:
52:3d:ac:99:df:7c:81:55:3a:68:00:cd:b5:e2:97:
1d:34:85:b8:a0:6d:1a:df:23:d2:37:cb:e6:1b:c3:
e3:73:bf:ae:20:33:1c:c6:bc:5f:56:b2:45:7e:63:
ae:f4:99:42:1e:2c:da:8f:ad:7e:c0:8f:35:b1:c0:
c2:26:bf:aa:3a:1f:3d:a3:4d:5f:45:4b:f7:ce:5e:
25:15:1c:54:29:47:d6:ba:ad:87:f8:8e:42:45:a3:
92:33:ad:7c:34:32:30:4d:e1:89:0d:2e:e7:ce:40:
e4:65:04:f5:78:03:73:8c:71:b4:8c:64:b6:e4:95:
6d:3d:4f:51:42:af:4a:ea:d1:4f:50:bc:40:99:f8:
0c:52:f0:ba:b7:1e:16:c7:52:83:c9:85:c8:7a:b3:
c1:bd:4d:c7:c2:00:11:18:46:37:13:0b:39:40:28:
11:13:11:fa:73:6f:50:17:56:f2:96:23:89:d1:11:
a8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:85:1F:5B:56:E1:30:98:90:D4:76:7F:75:E7:A4:F5:D5:50:14:C1
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/7IUfW1bhMJiQ1HZ_deek9dVQFME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.140.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:4b:86:14:91:52:f7:27:94:9a:1a:f0:50:52:83:fa:53:e2:
7f:14:1d:e8:fb:64:5b:7a:9f:2f:00:bb:ad:0f:f6:f4:0e:67:
4d:16:e0:54:55:16:37:4f:c3:af:a4:46:5d:6c:43:2b:71:ca:
0f:ad:0a:29:af:81:61:74:b9:4f:78:20:9a:f2:10:d3:3f:18:
e6:3e:4a:ee:34:f0:c2:c8:e0:2e:8f:86:50:a2:4a:69:20:52:
fb:ac:f9:08:e3:ea:18:f8:34:6f:e7:e8:d2:01:3e:f9:b6:6f:
22:42:42:c7:ea:2e:bc:6a:9f:41:ab:fd:d0:bc:bd:2d:fb:0e:
70:d2:7b:fe:16:ed:f5:5b:ff:fa:e8:44:f0:36:f0:0f:5b:ae:
c6:37:3a:bd:28:32:59:00:8d:d0:e7:60:cb:31:e0:7d:5f:70:
4a:5e:eb:22:d3:79:f0:1a:31:fd:9f:5c:6d:dc:80:06:bd:47:
0a:1c:ef:32:9e:09:22:b1:d1:27:d7:bb:67:89:da:7b:ef:b6:
62:55:c3:80:46:4c:29:be:0c:c4:23:17:64:f0:c5:6b:ce:51:
8a:8c:cd:eb:db:35:81:37:ad:24:48:53:f3:a2:13:57:50:39:
9f:c1:a2:65:94:92:7d:de:03:92:0c:dd:26:86:88:af:8c:da:
40:1b:97:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:32 2024 by rpki-client on console-ams.rpki-client.org