Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/W1TpKIEo2hBfOUJf4P-jVhf7cTE.roa
File: W1TpKIEo2hBfOUJf4P-jVhf7cTE.roa (raw, json)
Hash identifier: MV8xyyKZa0d77UnMpjVlCKP7I+wbbToy4x0LoZK4hN0=
Subject key identifier: 5B:54:E9:28:81:28:DA:10:5F:39:42:5F:E0:FF:A3:56:17:FB:71:31
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 05FF3E4F
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/W1TpKIEo2hBfOUJf4P-jVhf7cTE.roa
Signing time: Sat 01 Jan 2022 13:55:34 +0000
ROA not before: Sat 01 Jan 2022 13:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207294
IP address blocks: 188.86.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100613711 (0x5ff3e4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b54e9288128da105f39425fe0ffa35617fb7131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:3f:8f:08:e1:fa:3e:bf:7b:61:55:a4:db:
c0:52:4a:17:93:cb:b9:5f:0f:a4:97:37:a0:25:f3:
01:47:66:94:27:d0:e3:59:1a:14:19:05:de:f1:56:
ec:5a:31:08:7a:ba:6e:b0:b4:f4:97:20:d5:7b:6b:
ac:f2:ab:a8:6f:63:62:de:20:1c:ff:87:db:dd:a1:
61:fe:0b:8d:66:fa:44:a1:8e:5d:33:49:66:0e:4c:
f1:59:de:f1:9c:a9:29:96:e5:3b:c9:8e:d9:64:aa:
5f:72:b9:ab:d3:90:74:a6:6c:1e:c2:b2:01:73:bc:
e6:38:4f:be:e5:06:34:dd:6e:c2:26:5c:ce:f8:bf:
dc:6d:ba:af:61:6a:73:c7:3d:dd:51:2e:fc:65:74:
13:83:9c:16:e4:98:84:02:0e:2e:9a:fa:fe:f6:35:
f2:dc:88:f2:05:b6:9a:ea:a2:1a:c1:e6:03:1d:d2:
1b:6c:ed:af:2f:12:bc:d4:80:35:18:a4:32:97:57:
26:21:68:e7:15:ea:ea:ad:43:97:05:6e:52:c4:0b:
80:7d:cf:49:6f:37:24:cf:c5:f7:c2:23:b5:a8:fc:
21:13:4f:f6:13:0c:7e:b2:fc:bd:8b:59:e7:e7:9d:
85:32:c6:f5:31:c6:e0:a4:d3:e6:e7:d1:48:ac:bc:
7e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:54:E9:28:81:28:DA:10:5F:39:42:5F:E0:FF:A3:56:17:FB:71:31
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/W1TpKIEo2hBfOUJf4P-jVhf7cTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.86.29.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:76:c9:c5:98:11:02:6e:75:a7:c2:da:ce:bd:12:e2:39:dc:
ce:e8:a4:f2:3e:db:e6:fc:99:66:1e:63:f7:4c:af:aa:46:b0:
07:12:48:4b:06:e4:e5:d3:80:1d:1d:7b:b3:0f:7e:cf:99:1b:
db:fe:12:22:4a:0d:27:10:7b:e4:f6:f7:ba:a3:4e:c8:c2:1f:
20:42:96:00:fe:c7:a2:bf:4c:ef:53:a2:48:16:5f:b1:be:e6:
23:49:22:fc:2e:06:14:a1:e6:ab:9e:c4:03:d4:ca:95:40:dc:
21:5a:48:3c:7f:c8:d1:a2:7b:cd:47:43:90:5e:04:b9:ac:d4:
36:9a:76:99:55:09:54:3e:c1:04:c1:f4:10:79:ec:ee:da:51:
90:65:9e:be:46:e7:0a:36:ee:4c:96:85:13:09:2a:d0:8f:76:
b9:94:13:6f:75:b2:39:2b:e2:89:4c:39:a4:c7:20:8d:9c:4f:
f7:51:f6:1c:da:69:b3:54:22:96:7e:51:78:54:de:4a:2a:84:
06:80:3c:35:3e:16:43:b5:bb:9f:b4:65:0f:42:dc:ec:a1:5b:
c8:49:dd:61:8a:28:a5:76:b2:c3:c8:b9:e6:33:78:c5:e8:58:
22:ef:c0:9d:24:9d:ba:93:bb:21:e7:a1:cf:5c:d5:3f:e9:84:
53:b5:ca:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org