Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/suD6tbXL4DOJNIKo3K8uPgj0D4w.roa
File: suD6tbXL4DOJNIKo3K8uPgj0D4w.roa (raw, json)
Hash identifier: 9yw8+U+u/Ua4Ld8AV1ggKy64SdCVdoecLBjkHYY1zsU=
Subject key identifier: B2:E0:FA:B5:B5:CB:E0:33:89:34:82:A8:DC:AF:2E:3E:08:F4:0F:8C
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 05FC6916
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/suD6tbXL4DOJNIKo3K8uPgj0D4w.roa
Signing time: Sat 01 Jan 2022 13:55:33 +0000
ROA not before: Sat 01 Jan 2022 13:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206487
IP address blocks: 188.86.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100428054 (0x5fc6916)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2e0fab5b5cbe033893482a8dcaf2e3e08f40f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ac:b5:0e:78:0e:1c:1b:81:53:60:ad:44:53:
f4:c4:3c:da:ad:20:db:cf:fd:11:ef:2a:39:d2:6a:
c6:b7:30:9f:d4:e3:7b:70:e0:2a:2f:a6:6e:c5:45:
e8:80:ce:8d:c3:1f:fc:8e:f0:cf:d7:fb:9f:67:e3:
1a:81:db:07:d2:64:84:a9:50:19:41:5c:d4:08:37:
76:5c:40:62:6f:23:ea:e9:b6:d0:81:d3:27:e5:2c:
34:69:b1:6a:3d:95:d2:c2:de:a4:4e:ea:f7:54:c1:
9f:34:6c:47:1c:c8:13:34:32:fe:83:b8:62:f1:fe:
89:a0:c7:59:ed:1a:25:f2:29:a1:7f:0c:b2:7c:78:
9f:7f:6b:59:7b:b4:95:98:98:83:b0:ec:2c:6e:25:
e1:c0:92:8b:1b:c7:15:00:21:19:73:d4:72:ca:a3:
61:4a:09:fb:3a:1b:ab:be:26:72:1c:64:6a:bb:ca:
ec:c9:51:3b:84:8e:e5:a2:15:85:30:37:a6:56:3e:
d7:0b:f7:9d:9b:fc:06:7f:1b:68:92:cd:76:7e:4d:
31:6e:93:b1:39:45:52:55:c1:e5:69:2c:4b:db:fb:
a8:df:f3:69:ec:c5:af:b8:e4:a4:50:e4:00:f2:47:
5d:fe:62:3f:7a:32:8e:2c:c0:08:2d:e8:da:bd:83:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E0:FA:B5:B5:CB:E0:33:89:34:82:A8:DC:AF:2E:3E:08:F4:0F:8C
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/suD6tbXL4DOJNIKo3K8uPgj0D4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.86.116.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:46:59:74:c9:78:07:78:47:d5:20:06:cd:ff:8b:81:d3:09:
66:50:db:9a:8e:d1:7f:c8:ce:8b:c0:05:07:18:bf:43:f7:fb:
f4:de:ac:17:6a:d6:2a:4f:38:95:95:72:90:0f:38:a8:ff:d9:
0b:10:91:88:30:0f:8d:00:c3:1e:cb:5b:af:08:6e:7e:da:ed:
5c:f2:0c:6b:65:e0:aa:42:e4:0d:c6:ec:a8:32:ac:c3:a3:97:
62:89:89:e9:ae:a1:df:ef:df:53:06:55:4a:0d:a7:37:02:7f:
4d:03:e4:53:dd:7a:f7:1c:5b:8c:65:0d:4c:fc:a6:dd:11:d9:
a8:bd:9f:54:02:2e:7e:a2:74:03:78:4e:bb:a8:04:ab:0d:fe:
9d:60:93:97:40:a9:92:da:7a:25:31:18:2f:43:06:25:2e:4a:
b6:96:b3:bf:a9:6f:d9:a4:f2:5b:4a:e8:b0:a6:61:df:10:96:
2f:b0:48:d3:1c:1d:21:cb:65:ef:5e:e9:79:41:39:bf:53:20:
24:4f:7b:22:93:33:0a:0a:a1:7e:df:91:0a:ee:ac:05:75:17:
b1:74:1f:4a:a5:8a:16:62:20:38:45:58:16:68:d2:a0:a8:59:
c0:09:61:91:8c:3e:c4:36:90:ae:5b:65:0a:82:05:9f:12:04:
5b:60:e5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org