Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/2UnCVqMILgc0MAMUAJvG6QyaGw0.roa
File: 2UnCVqMILgc0MAMUAJvG6QyaGw0.roa (raw, json)
Hash identifier: bYPQJufV6T+x/UDKkvnOrsb9t9APCKYeutXyK+cGB3E=
Subject key identifier: D9:49:C2:56:A3:08:2E:07:34:30:03:14:00:9B:C6:E9:0C:9A:1B:0D
Certificate issuer: /CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Certificate serial: 0141971F
Authority key identifier: 02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/2UnCVqMILgc0MAMUAJvG6QyaGw0.roa
Signing time: Fri 28 Jan 2022 21:56:14 +0000
ROA not before: Fri 28 Jan 2022 21:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21075743 (0x141971f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Validity
Not Before: Jan 28 21:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d949c256a3082e0734300314009bc6e90c9a1b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:81:dc:74:3c:1a:85:f0:58:ca:eb:0e:37:
74:93:23:2d:c3:69:99:14:eb:75:2d:ca:f7:03:35:
59:97:fc:34:a6:67:f3:9e:3f:10:19:41:d8:97:5e:
ce:0b:f6:92:7b:d5:b3:09:1a:9a:df:88:4f:48:34:
9c:37:01:05:f4:a2:1d:f3:32:dc:8b:9f:3d:57:d3:
63:5e:e3:ff:0b:b1:6a:3b:fa:86:bb:ea:c3:05:7f:
9b:b6:ea:a6:bd:8c:f1:83:c4:18:1e:d2:16:60:a0:
04:7c:97:f9:4e:3a:a0:b9:f5:0c:f4:df:08:55:b3:
26:87:73:f7:cc:0d:77:c8:b3:f4:1f:30:0f:6d:53:
a4:c2:67:00:33:ba:4c:8b:1e:22:72:3b:a3:1e:fd:
e5:b2:3d:ca:6e:eb:71:a0:60:55:ae:24:fb:82:b7:
01:f4:7d:12:e6:7f:9d:33:62:0f:99:91:db:c0:4f:
cd:fe:c2:b0:69:90:12:17:75:48:20:5c:8e:03:4d:
04:da:00:e0:e3:7f:08:7a:db:eb:b5:f9:b1:26:95:
24:71:a7:d3:b0:ad:5a:dc:02:b0:37:94:ed:da:94:
e2:d9:73:ad:63:c7:4a:a1:a5:f5:c0:eb:f8:31:d4:
93:ac:f2:77:bf:2c:0b:00:e6:8f:59:71:90:a9:47:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:49:C2:56:A3:08:2E:07:34:30:03:14:00:9B:C6:E9:0C:9A:1B:0D
X509v3 Authority Key Identifier:
keyid:02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/2UnCVqMILgc0MAMUAJvG6QyaGw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/AuKyKLUM3JDuSY5Rv8kVmXymxZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
77:4b:77:0a:de:8f:94:90:d0:0c:a3:3e:02:46:43:b2:ae:25:
4a:ca:d0:3d:3e:24:26:3e:1e:aa:3f:9f:0a:41:e7:43:5c:76:
47:0b:99:a0:31:f9:dc:02:d7:d4:bc:d9:c6:0d:64:02:23:d6:
2c:4a:52:4b:36:59:e8:29:86:2b:07:d4:b3:71:62:43:cb:48:
03:07:2b:f9:a6:0e:c9:48:11:5c:f3:ed:a4:92:f8:93:6c:23:
67:b5:0b:7e:c3:4a:9a:cb:8f:3f:d7:df:86:ae:25:fc:98:40:
2d:22:18:8d:db:03:46:96:df:8d:59:9e:f3:48:44:c3:5f:e0:
63:00:34:15:97:14:e2:a8:e1:a8:ea:f1:35:1d:ad:09:31:68:
f9:1a:79:b5:b0:d2:da:3c:6e:0a:6f:e5:e5:27:fd:d4:56:97:
0f:cf:c7:34:4b:09:00:9a:71:80:76:76:1a:fd:96:28:f1:c9:
b6:6b:79:62:3d:09:19:29:e2:65:80:12:06:ec:9e:b2:68:14:
98:b2:f1:1c:3e:dc:76:0c:ec:3b:8b:ca:94:97:a7:d6:aa:41:
04:b4:d1:76:9d:41:cf:a3:14:35:f5:47:39:6b:ba:8a:e9:d5:
16:0c:47:48:39:89:d9:e1:b3:30:71:a5:d0:45:aa:06:63:42:
29:2f:7f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:16 2023 by rpki-client on console-fra.rpki-client.org