Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/kPrcpJpB6bvSGRvXvvE3KGbogrc.roa
File: kPrcpJpB6bvSGRvXvvE3KGbogrc.roa (raw, json)
Hash identifier: +7Gqn9pPVtpps4jVopD9nbY9VdzennrpNEgM7rzKFps=
Subject key identifier: 90:FA:DC:A4:9A:41:E9:BB:D2:19:1B:D7:BE:F1:37:28:66:E8:82:B7
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 01EFD937
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/kPrcpJpB6bvSGRvXvvE3KGbogrc.roa
Signing time: Mon 27 Jun 2022 07:35:40 +0000
ROA not before: Mon 27 Jun 2022 07:35:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58909
IP address blocks: 188.42.96.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32495927 (0x1efd937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Jun 27 07:35:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90fadca49a41e9bbd2191bd7bef1372866e882b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:27:bd:f1:92:b9:18:38:2a:09:77:2e:c9:54:
b4:ab:e2:18:d5:e8:1f:a8:b7:43:a6:39:c2:35:0f:
a9:b1:80:0d:71:fe:ac:50:63:10:81:2f:e3:68:6e:
1a:dd:e5:48:7b:37:8c:8a:d9:ab:cc:cc:28:42:6f:
cf:77:f4:d6:c5:da:b9:66:40:1d:82:96:7b:7b:49:
41:7f:f6:19:6e:8d:99:be:63:07:11:2a:5d:31:64:
7e:c3:54:9e:19:11:06:b6:b6:d2:08:e0:4f:fc:38:
8b:05:1f:24:cd:15:17:a6:e3:81:59:45:77:a2:3c:
ce:02:10:e0:eb:d8:a1:21:17:b5:97:4e:07:32:0b:
57:26:02:b1:a6:4c:55:fe:b6:7f:4a:80:98:88:79:
9b:df:de:4c:9c:7b:2e:2e:20:fd:d2:15:3d:a5:d0:
16:25:84:2e:52:5a:c7:3f:6d:18:9a:1e:1c:41:86:
57:0c:b0:59:e8:98:e4:f3:91:fd:14:d2:82:56:ec:
12:90:b3:e4:2d:0c:58:b2:ac:7b:e6:79:3f:73:57:
19:0b:63:5a:4e:ec:d0:68:78:77:0a:9e:8d:01:d7:
9f:0b:88:c5:5b:c0:69:83:ae:ae:63:1f:bb:2b:83:
da:74:d5:1c:fe:d0:6a:1d:a4:c4:df:a9:3c:e6:79:
f2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FA:DC:A4:9A:41:E9:BB:D2:19:1B:D7:BE:F1:37:28:66:E8:82:B7
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/kPrcpJpB6bvSGRvXvvE3KGbogrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.42.96.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:40:4b:52:85:1d:87:7e:b6:08:6c:fb:2e:2f:ee:49:38:c6:
28:61:fd:0d:43:97:fa:fc:90:35:e3:b5:50:9f:bd:87:66:d6:
9e:66:e9:13:2e:b2:b5:3c:e0:46:e3:d2:f2:72:ab:7b:9e:42:
1b:b1:1d:96:61:a5:37:50:ad:2f:46:11:ce:f2:1c:42:b4:7b:
82:57:0e:7b:52:b6:40:2b:0e:70:75:78:4b:9a:12:1a:c9:88:
86:94:4c:96:59:40:f6:f9:e6:11:27:c8:f6:16:94:e2:89:f7:
5e:52:c4:c2:6d:65:3c:ed:8a:c7:7f:c1:87:fd:16:a0:23:19:
99:c4:60:de:bb:3c:cf:0d:00:ce:e9:be:96:60:84:64:e4:71:
cf:2b:e6:ca:65:b4:d9:88:7e:28:69:02:3a:bc:e5:8a:1b:4f:
c9:2b:d7:75:b2:73:9c:25:7e:9d:43:24:56:82:44:0d:a6:6b:
bb:07:55:46:4e:c3:1d:ca:4e:af:c9:f6:97:fe:b2:f5:78:25:
b6:29:41:8d:eb:ce:b6:9e:60:6f:34:cb:3e:de:57:43:91:d5:
d8:fb:73:cc:0a:3e:31:c8:27:c7:97:1a:0c:86:a6:a5:a6:3c:
c5:3c:93:1d:27:50:65:c4:a9:88:90:50:57:34:fb:b9:32:e0:
2e:c1:bd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org