Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OvMSmi1RYInWXmWumg6bxXJ0CHo.roa
File: OvMSmi1RYInWXmWumg6bxXJ0CHo.roa (raw, json)
Hash identifier: foyWw96KRuRKDfi4drVZMlX/UdTmzAVxwOvQ6Haf150=
Subject key identifier: 3A:F3:12:9A:2D:51:60:89:D6:5E:65:AE:9A:0E:9B:C5:72:74:08:7A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01831EBD91E872939984D48D1EB94CA604A1
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OvMSmi1RYInWXmWumg6bxXJ0CHo.roa
Signing time: Thu 08 Sep 2022 20:14:43 +0000
ROA not before: Thu 08 Sep 2022 20:14:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 188.209.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1e:bd:91:e8:72:93:99:84:d4:8d:1e:b9:4c:a6:04:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 8 20:14:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3af3129a2d516089d65e65ae9a0e9bc57274087a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2d:30:5c:54:dc:19:9b:2d:55:c8:31:54:13:
e1:2d:75:3c:2d:6e:56:77:2d:f0:9b:f2:1e:46:83:
43:c0:be:18:c7:df:e8:5a:af:0d:65:1c:20:56:3f:
28:e3:f4:37:4f:eb:34:77:4c:25:cb:7c:08:78:56:
c7:6e:53:3d:b7:7d:14:ed:3b:1b:ea:f0:2d:7c:5c:
35:2a:86:03:0f:7c:a0:48:e9:4e:63:21:c0:3e:2b:
43:57:23:81:63:7e:3b:d1:0f:54:3d:35:f9:31:66:
c3:31:59:07:f9:58:70:e7:2d:fd:28:84:8a:9d:36:
68:45:12:f3:4d:ab:4a:22:71:d3:b5:8c:73:9d:42:
0a:45:a6:fe:32:14:cd:57:45:fd:a4:ad:44:46:82:
f3:0d:63:5b:84:d7:b4:fa:f1:c7:db:b6:be:f6:8b:
03:df:25:cb:a0:ee:da:9e:c5:e1:63:53:bc:5e:1c:
d1:7e:d7:30:49:b5:38:ee:bf:d9:06:a3:a0:de:db:
25:09:22:07:07:a6:3a:ea:a2:3a:2e:fe:40:8d:b0:
50:16:cb:98:ae:49:21:71:98:b0:15:7d:fd:f2:f8:
6a:34:4a:66:78:d0:c8:cb:37:30:a3:26:55:d7:8f:
74:d1:ec:df:95:50:0a:c3:15:b4:6c:3d:46:8d:1a:
7e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F3:12:9A:2D:51:60:89:D6:5E:65:AE:9A:0E:9B:C5:72:74:08:7A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/OvMSmi1RYInWXmWumg6bxXJ0CHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.140.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:36:92:b0:bc:75:30:5f:b1:01:1d:24:ee:f5:26:d1:b5:10:
9c:f6:57:38:c8:67:ac:42:74:13:2f:aa:58:19:d7:dc:3a:a9:
6a:ec:05:b9:75:a7:62:33:97:81:40:c7:db:db:3e:60:03:3a:
5e:b2:cd:8b:28:4d:f1:96:45:fa:c7:58:07:a5:00:65:6e:fe:
0a:a4:4f:95:9a:42:bb:ed:99:a0:bd:c0:4c:da:d3:22:b8:57:
20:17:5c:f4:39:a8:c1:1f:bc:2f:41:05:0c:2a:6c:09:c1:0c:
2f:52:f9:cf:49:0f:1a:b4:dc:9e:f5:cf:1b:99:ef:88:a0:ca:
c6:32:56:39:a6:d2:64:cc:4e:ac:40:c9:ea:06:54:34:0e:97:
ec:24:b7:1a:48:2c:00:ac:f5:e8:40:2c:2c:54:66:c6:5a:0d:
ad:be:77:b6:25:fc:ef:60:cf:ee:bf:c7:50:0b:b3:a3:12:c8:
e8:08:b1:79:0f:8e:41:8a:94:ba:ad:b2:94:ee:bb:70:61:86:
0f:0c:1f:ae:87:8b:34:b1:1c:72:69:bc:7a:eb:40:21:ec:29:
5b:5a:c2:fd:d9:41:11:58:21:c5:41:aa:be:06:ce:95:df:ed:
90:0a:f5:8f:a5:d0:27:ab:6b:c3:3a:74:5c:d7:da:72:3b:21:
bb:a5:cd:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org