Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/IJeaHgkltFPGc43mj3AYrWURYr4.roa
File: IJeaHgkltFPGc43mj3AYrWURYr4.roa (raw, json)
Hash identifier: LG5CPJs57L2rnGOt9p6IRnhes0pdwdj+WzdZOQ13vxI=
Subject key identifier: 20:97:9A:1E:09:25:B4:53:C6:73:8D:E6:8F:70:18:AD:65:11:62:BE
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 01E64B4D
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/IJeaHgkltFPGc43mj3AYrWURYr4.roa
Signing time: Fri 24 Jun 2022 05:04:18 +0000
ROA not before: Fri 24 Jun 2022 05:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58909
IP address blocks: 188.42.96.0/23 maxlen: 23
188.42.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31869773 (0x1e64b4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Jun 24 05:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20979a1e0925b453c6738de68f7018ad651162be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:d3:b5:3f:f3:4b:c5:dc:07:eb:d6:8c:29:
ed:5e:f2:b9:60:03:ed:21:29:86:db:b0:16:a3:15:
37:0e:a7:b3:36:b9:5c:f7:28:ad:36:4a:19:12:81:
bc:38:61:fd:7a:b0:3b:d6:2a:b5:f9:9b:d0:e8:b6:
6c:00:8a:52:f0:0e:64:1d:3b:9f:52:92:db:1e:3a:
73:ef:2a:5d:98:20:67:47:e4:d0:b5:27:b5:8b:81:
74:29:b7:85:29:5c:fa:31:52:a6:6e:87:de:32:13:
53:fb:b5:bc:06:3a:74:3c:80:cf:4e:21:cb:e1:7a:
1b:71:3b:58:89:46:5e:f0:f3:f2:7a:4f:f7:2c:b9:
a2:96:85:8b:62:7d:b4:ae:f9:aa:27:f7:79:b6:33:
76:6f:88:f6:d2:70:1a:ff:cf:47:68:ae:ca:82:12:
d8:26:5e:8b:48:7f:12:4b:8d:9a:d7:8b:80:95:88:
a0:c2:02:6c:f5:5e:d8:4e:16:c6:fc:3a:fb:a2:46:
e4:14:b3:4f:10:c8:3c:39:8d:29:8b:50:84:da:45:
37:58:c4:30:10:0a:ef:57:61:4b:f6:43:b7:92:c7:
f7:68:31:6e:cc:4b:6b:33:9b:c5:87:a2:ec:d2:dc:
b1:c3:93:04:2e:78:8c:fc:7c:a9:d1:5d:16:68:b8:
ac:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:97:9A:1E:09:25:B4:53:C6:73:8D:E6:8F:70:18:AD:65:11:62:BE
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/IJeaHgkltFPGc43mj3AYrWURYr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.42.96.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:3e:23:8a:3e:ad:a4:73:53:98:8a:06:43:14:b1:1c:65:c2:
31:f5:51:65:fe:1b:63:49:65:c6:32:f6:0a:4e:99:4b:e0:7b:
d7:84:bf:cd:c1:64:f6:7d:8d:ff:4d:74:fb:a9:f3:98:25:52:
d6:80:5f:2e:49:01:71:1a:d8:76:06:0d:04:5b:bf:5d:33:32:
39:52:a4:4b:7d:57:7e:51:04:f4:d1:e4:b7:f9:8d:ec:b3:af:
27:af:e1:e1:39:79:ed:cd:e5:8d:84:bb:85:38:c8:74:85:68:
07:91:bc:26:3c:c6:36:0b:cf:12:ec:7b:35:52:05:ad:9e:11:
ef:04:be:5a:e1:6f:52:69:e6:57:92:d2:d9:15:7d:44:f2:22:
e8:0f:7f:af:c2:14:25:7d:de:d5:dd:c3:8e:4e:4f:71:94:96:
3d:6a:ad:bb:5c:96:be:50:69:a5:e0:e3:32:58:59:75:d0:0e:
3d:a4:d4:66:67:62:25:7b:74:b1:a3:28:0c:bf:a5:a5:ed:23:
5a:da:25:dd:b9:e4:68:b1:52:19:90:8b:55:cf:da:4c:c0:2e:
91:be:2b:ee:80:69:78:f1:63:10:6f:cc:8b:4b:4e:37:d4:34:
19:aa:0d:d1:37:f6:f3:6f:45:5e:3a:46:5e:b0:0d:06:9e:25:
6d:95:73:5a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAeZLTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OGQzZWNiOGY3MTFlMGI5MmI1MDViOGEwZjdhNWVlMDQyMjkxMzk1MB4XDTIyMDYy
NDA1MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjA5NzlhMWUwOTI1
YjQ1M2M2NzM4ZGU2OGY3MDE4YWQ2NTExNjJiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK7Q07U/80vF3Afr1owp7V7yuWAD7SEphtuwFqMVNw6nsza5
XPcorTZKGRKBvDhh/XqwO9Yqtfmb0Oi2bACKUvAOZB07n1KS2x46c+8qXZggZ0fk
0LUntYuBdCm3hSlc+jFSpm6H3jITU/u1vAY6dDyAz04hy+F6G3E7WIlGXvDz8npP
9yy5opaFi2J9tK75qif3ebYzdm+I9tJwGv/PR2iuyoIS2CZei0h/EkuNmteLgJWI
oMICbPVe2E4Wxvw6+6JG5BSzTxDIPDmNKYtQhNpFN1jEMBAK71dhS/ZDt5LH92gx
bsxLazObxYei7NLcscOTBC54jPx8qdFdFmi4rDUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQgl5oeCSW0U8ZzjeaPcBitZRFivjAfBgNVHSMEGDAWgBS40+y49xHguStQ
W4oPel7gQikTlTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VOUHN1UGNSNExrclVGdUtEM3BlNEVJcEU1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvMzY4YThkLWVmZjItNDljMi1hOTYzLWExODYxZTUzNTQ0ZC8x
L0lKZWFIZ2tsdEZQR2M0M21qM0FZcldVUllyNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYv
MzY4YThkLWVmZjItNDljMi1hOTYzLWExODYxZTUzNTQ0ZC8xL3VOUHN1UGNSNExr
clVGdUtEM3BlNEVJcEU1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArwqYDANBgkqhkiG9w0BAQsFAAOC
AQEAHz4jij6tpHNTmIoGQxSxHGXCMfVRZf4bY0llxjL2Ck6ZS+B714S/zcFk9n2N
/010+6nzmCVS1oBfLkkBcRrYdgYNBFu/XTMyOVKkS31XflEE9NHkt/mN7LOvJ6/h
4Tl57c3ljYS7hTjIdIVoB5G8JjzGNgvPEux7NVIFrZ4R7wS+WuFvUmnmV5LS2RV9
RPIi6A9/r8IUJX3e1d3Djk5PcZSWPWqtu1yWvlBppeDjMlhZddAOPaTUZmdiJXt0
saMoDL+lpe0jWtol3bnkaLFSGZCLVc/aTMAukb4r7oBpePFjEG/Mi0tON9Q0GaoN
0Tf2829FXjpGXrANBp4lbZVzWg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org