Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/1MZmIz-9i7j1h47hesZ1AzIR5HI.roa
File: 1MZmIz-9i7j1h47hesZ1AzIR5HI.roa (raw, json)
Hash identifier: d36A1+9/tmPFroOjs4onEwZgsLX6oxFaV6wpszf3j+o=
Subject key identifier: D4:C6:66:23:3F:BD:8B:B8:F5:87:8E:E1:7A:C6:75:03:32:11:E4:72
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 02FE878E
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/1MZmIz-9i7j1h47hesZ1AzIR5HI.roa
Signing time: Fri 10 Jun 2022 12:02:08 +0000
ROA not before: Fri 10 Jun 2022 12:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211597
IP address blocks: 188.74.96.0/19 maxlen: 22
2a10:bcc0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50235278 (0x2fe878e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Jun 10 12:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4c666233fbd8bb8f5878ee17ac675033211e472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:54:aa:1d:ce:2e:2b:84:26:bc:f6:11:25:27:
b7:cb:94:57:51:6c:1d:10:4f:e7:a3:72:00:68:bb:
67:1a:7c:a4:97:b8:80:92:56:92:61:0f:5c:1d:2d:
41:67:d5:06:f6:43:a7:d4:c9:bc:cd:bd:d5:4f:89:
2e:9d:58:94:00:76:63:4e:26:79:4c:cb:9b:5f:53:
ea:9f:4b:de:1a:5e:33:59:64:2d:a0:58:b9:12:ee:
4a:49:cf:18:7f:fe:e1:32:3b:ba:4f:51:9f:51:ba:
58:8b:43:3f:56:8d:91:57:94:9f:c5:14:bb:e9:61:
bd:af:d1:a0:72:15:63:34:09:d6:da:84:d6:10:b9:
53:c2:99:a6:92:a5:b5:88:9b:c2:e9:f4:e8:e6:04:
f9:9d:07:26:be:3d:32:eb:17:d9:d8:b0:46:38:ce:
9a:a5:a1:1f:d2:e5:5c:fa:92:12:11:fb:a2:e3:1f:
3d:4f:ca:8f:b1:d6:62:96:fc:7d:43:8d:43:34:85:
fd:a2:5a:04:6a:06:65:9f:8a:b7:a8:f8:44:e7:93:
9d:b4:9c:75:0c:f4:97:a4:3b:11:d1:ba:35:34:bc:
76:8c:c7:2c:00:e1:0f:de:1a:32:a3:2b:da:5e:72:
6f:68:6f:7e:fc:76:69:7b:87:32:63:5e:6b:c4:6f:
e8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C6:66:23:3F:BD:8B:B8:F5:87:8E:E1:7A:C6:75:03:32:11:E4:72
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/1MZmIz-9i7j1h47hesZ1AzIR5HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.74.96.0/19
IPv6:
2a10:bcc0::/29
Signature Algorithm: sha256WithRSAEncryption
7d:48:08:13:18:c4:72:5a:4d:79:2d:5a:c6:12:46:01:6a:3e:
aa:81:bf:44:66:d6:26:6a:06:5f:80:a5:46:28:f4:60:56:7d:
26:a9:f8:85:f7:45:33:7f:17:c7:a9:df:f9:c3:d9:34:02:85:
b2:7b:1e:81:3f:e1:20:64:5d:48:3e:89:7f:2a:9c:c7:d9:07:
38:23:00:cd:b6:e9:42:ae:4d:47:10:18:fe:c8:bf:35:ca:90:
9d:9a:30:a9:0a:f9:ea:7e:4d:59:01:64:a7:28:20:39:0e:35:
ba:5d:57:99:f8:40:80:4c:58:18:7c:b0:56:89:d3:e3:a8:43:
10:3c:a7:21:39:e8:a5:17:ae:48:4b:27:4b:a8:b7:c9:9e:e1:
a5:2c:7a:1f:23:1b:cc:be:61:20:c3:9e:c3:67:88:ae:6e:7c:
2c:5c:42:ca:39:e2:b7:be:57:7c:86:46:b4:67:a8:c4:1c:0c:
33:89:1b:c1:61:86:bd:f3:04:82:c7:db:77:c7:c9:c3:2e:14:
cf:43:f4:30:c9:21:8b:56:7b:f1:05:7a:d8:f1:67:88:ce:a4:
b5:c6:70:02:94:79:bb:96:e9:cc:03:81:7b:5b:db:96:80:99:
d0:e9:7d:59:ef:7c:e3:a3:25:9f:72:cd:41:24:7f:eb:15:dc:
2f:9a:76:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org