Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/SNDRFRSu1qJJcQgXyvVOm1o-voU.roa
File: SNDRFRSu1qJJcQgXyvVOm1o-voU.roa (raw, json)
Hash identifier: o7vfS2UoFqAqQgKcbLEbPcp/DOx5FFpwhvPI/SfLSQE=
Subject key identifier: 48:D0:D1:15:14:AE:D6:A2:49:71:08:17:CA:F5:4E:9B:5A:3E:BE:85
Certificate issuer: /CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Certificate serial: 01827CB0E1A20D3E2D6FD5BD9BA76E2BA63E
Authority key identifier: 02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/SNDRFRSu1qJJcQgXyvVOm1o-voU.roa
Signing time: Mon 08 Aug 2022 09:02:23 +0000
ROA not before: Mon 08 Aug 2022 09:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:b0:e1:a2:0d:3e:2d:6f:d5:bd:9b:a7:6e:2b:a6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Validity
Not Before: Aug 8 09:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48d0d11514aed6a249710817caf54e9b5a3ebe85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a0:86:e2:96:0a:94:30:f9:a1:e8:5e:0d:9d:
8a:ac:9b:52:4e:c8:5e:99:92:2e:53:fb:be:64:54:
37:16:a9:08:96:3d:9f:4e:07:34:dc:5e:f7:6a:ff:
ba:0e:23:87:1d:af:0e:97:3f:bd:5e:21:9c:f0:cf:
71:b7:a4:9a:85:ef:23:76:5c:97:25:e7:b6:51:dd:
79:13:6f:9c:41:ed:db:52:e0:b1:38:7e:b2:38:e2:
25:a6:5a:67:bd:31:a1:bc:cd:d1:15:48:d2:b7:c5:
5c:dc:78:83:8a:58:4f:5e:42:b7:21:be:14:eb:7f:
74:52:f3:98:8e:38:eb:e2:50:9f:ee:e2:cc:f7:1d:
27:bf:66:c9:0c:d1:71:89:44:f7:8b:3f:76:eb:ef:
08:56:f9:4c:29:3a:6a:28:bc:51:d4:82:bc:21:83:
0a:32:f1:70:9b:19:ba:22:4e:e8:61:27:33:77:ee:
bb:15:b2:bd:44:1a:16:a6:5c:95:fb:38:85:23:0b:
71:c6:ee:9f:65:5a:ac:4a:19:0c:37:f8:be:6a:1f:
6e:14:a6:26:ab:8b:ad:b5:0e:c4:29:81:bc:a4:86:
01:d3:58:f2:c8:0a:81:de:83:df:38:fa:17:55:05:
14:65:d3:26:a6:22:d2:ef:df:e6:fa:ac:0d:07:af:
1a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D0:D1:15:14:AE:D6:A2:49:71:08:17:CA:F5:4E:9B:5A:3E:BE:85
X509v3 Authority Key Identifier:
keyid:02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/SNDRFRSu1qJJcQgXyvVOm1o-voU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/AuKyKLUM3JDuSY5Rv8kVmXymxZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
68:8b:26:59:17:13:7c:74:5c:fa:dc:8b:6f:6d:a5:53:2f:39:
09:4c:ac:f0:ed:2c:21:68:07:ff:f1:c6:e4:f8:c0:ec:b5:9a:
9f:3c:8d:ae:82:4c:b8:61:41:5c:cb:6d:1b:c0:00:b1:3e:6d:
19:df:b9:e0:92:81:a1:5c:33:c1:69:77:94:ea:5d:ae:d7:c7:
ba:e7:85:b1:8d:fd:ce:d7:c3:34:66:bb:60:a5:de:16:dc:42:
ec:59:88:6a:f7:e6:45:9d:1c:8f:4a:de:2b:84:70:18:da:b4:
de:3e:29:ed:38:b9:e4:9d:ec:c2:87:42:9d:f3:76:a6:3b:b1:
71:24:74:8a:46:85:fe:d2:ae:8e:93:a8:f8:0e:29:c9:bb:d2:
01:06:18:6d:15:b1:86:18:87:11:cc:a8:16:85:d6:d2:1f:ab:
d3:54:3c:80:9e:72:ad:ae:2a:31:28:d8:5f:3a:0d:8e:54:45:
6e:28:49:c3:90:92:62:b3:0d:1d:da:e5:0a:31:ff:24:c3:e4:
23:3f:a7:14:bd:02:54:c2:bb:7f:9b:eb:93:63:3e:c3:f3:ed:
7f:cb:07:f2:8c:ce:41:6d:8b:ca:cd:62:c9:77:bf:99:d8:5f:
ec:0b:4f:19:2e:ca:94:d5:67:9f:1f:3c:22:ee:0a:a2:5f:a1:
85:b8:52:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:16 2023 by rpki-client on console-fra.rpki-client.org