Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/AHSoacTh7O3wyNfqsx7P4kx_57o.roa
File: AHSoacTh7O3wyNfqsx7P4kx_57o.roa (raw, json)
Hash identifier: ioLguz5/15AClbdoyC3PeBkbqwsH//oE93Hdm6Q0zBk=
Subject key identifier: 00:74:A8:69:C4:E1:EC:ED:F0:C8:D7:EA:B3:1E:CF:E2:4C:7F:E7:BA
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0724F4C0
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/AHSoacTh7O3wyNfqsx7P4kx_57o.roa
Signing time: Fri 11 Mar 2022 06:28:40 +0000
ROA not before: Fri 11 Mar 2022 06:28:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 188.209.136.0/22 maxlen: 22
45.11.188.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119862464 (0x724f4c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 11 06:28:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0074a869c4e1ecedf0c8d7eab31ecfe24c7fe7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:17:f2:58:36:7c:cf:a8:c5:01:92:f9:2d:2d:
78:d2:64:38:dc:c0:62:11:8e:f1:7c:9b:e0:01:33:
43:d0:e3:3d:ee:57:dd:54:f1:ff:4c:dd:44:c4:dd:
1f:42:f9:93:5f:48:35:5e:60:c0:12:8b:14:8a:44:
f6:eb:1b:99:78:40:21:67:86:4d:28:27:b5:3f:39:
dd:16:ca:52:72:11:a6:13:07:6f:cb:40:03:c3:60:
f0:36:27:7b:88:a3:39:75:a0:cf:13:60:af:4b:d4:
76:01:2b:a0:c4:17:1c:f5:2f:e4:24:7f:a7:67:1c:
37:42:76:94:79:40:69:f3:1a:9d:84:ab:94:a2:9e:
f5:38:3c:6a:a2:1e:c7:5f:f0:7b:d6:59:93:34:20:
16:07:f7:e0:57:ce:91:7f:66:df:78:2f:10:37:ef:
fa:2d:91:27:f6:4b:f9:99:29:63:9e:87:85:e9:13:
a1:86:b5:55:41:b6:e3:eb:18:17:d4:9d:2e:96:18:
12:f3:6b:45:f1:4f:e4:5b:e6:54:64:9c:11:2f:79:
a1:c0:25:17:87:bb:b3:17:48:24:a2:4b:44:6e:c8:
dc:e3:fd:fe:01:50:58:bd:33:e0:e5:d9:1f:c2:58:
6f:33:91:63:6a:cb:37:09:bc:31:3a:e5:30:57:34:
61:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:74:A8:69:C4:E1:EC:ED:F0:C8:D7:EA:B3:1E:CF:E2:4C:7F:E7:BA
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/AHSoacTh7O3wyNfqsx7P4kx_57o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.188.0/23
188.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
98:d4:00:74:9e:c9:7c:ee:d6:87:f9:d5:86:ca:d5:89:70:ba:
e5:92:0c:97:69:b6:9c:ab:2b:b7:bd:e0:e8:8f:8a:10:b8:b6:
13:3c:59:0c:5e:b3:60:ec:d4:01:76:bd:f7:85:33:a8:fe:cf:
c9:8e:95:eb:5c:e6:b5:64:c6:4a:64:96:4c:61:10:5e:03:0d:
0d:3d:02:d6:66:f3:2e:ed:a6:11:81:40:ff:8f:87:1e:49:5b:
7c:20:2f:60:a9:3c:ee:47:ad:f4:7c:a8:2b:b9:3f:29:fd:68:
bb:d8:27:8c:04:a8:bc:95:e9:02:5f:29:f0:3d:4b:68:b3:13:
54:e2:0f:3a:dd:40:b2:e0:f6:bc:d6:77:69:73:fc:1a:e4:d6:
d6:b4:58:6a:91:a2:fa:51:88:bf:be:d3:1a:a1:67:55:51:43:
48:87:e4:0f:f3:33:19:7e:ad:87:ef:dc:c4:f8:1a:6b:46:21:
dd:8d:09:9e:01:04:2d:d7:4e:b8:03:fe:ae:1c:3b:d3:4e:67:
ac:6d:99:64:75:e9:51:53:b4:96:95:3b:e2:03:f0:21:fe:be:
1c:23:8f:ba:b0:ce:31:b8:d6:77:f6:55:36:69:2b:72:92:fb:
9e:cf:b9:ce:08:f1:8a:c1:f7:5b:9f:a9:d9:c0:32:9e:46:b5:
94:72:0c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org