Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/q8DOut7MOt-Mah6dD9RzqSUzQDg.roa
File: q8DOut7MOt-Mah6dD9RzqSUzQDg.roa (raw, json)
Hash identifier: TbrEFCFwg/namI1VK1hKAJ8Ce5dzw6a2ictGBJ+Of9Q=
Subject key identifier: AB:C0:CE:BA:DE:CC:3A:DF:8C:6A:1E:9D:0F:D4:73:A9:25:33:40:38
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0712CD07
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/q8DOut7MOt-Mah6dD9RzqSUzQDg.roa
Signing time: Mon 07 Mar 2022 10:12:08 +0000
ROA not before: Mon 07 Mar 2022 10:12:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 188.209.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118672647 (0x712cd07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 7 10:12:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abc0cebadecc3adf8c6a1e9d0fd473a925334038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:00:c5:00:e4:30:0c:35:30:84:86:2a:55:
ef:72:e0:e5:01:17:d4:8a:fe:8d:74:2d:18:77:fd:
26:df:3f:68:cb:8b:dc:81:79:50:97:3d:cc:fb:9b:
0b:83:36:7f:ca:ef:85:0d:5c:95:ec:a1:dd:a0:ea:
14:3e:c7:53:6b:96:92:fd:7d:0a:de:31:48:d7:ce:
70:e5:a5:8a:1c:6c:78:f9:50:2a:8a:01:f5:cc:3a:
3c:d6:65:a8:99:8a:b4:73:a4:b3:e0:20:65:26:48:
38:22:16:a3:e4:dd:5c:29:4b:92:a5:51:24:a5:2a:
bf:1a:fe:c3:cb:ba:b7:04:cc:96:6a:d6:8d:ea:6f:
09:66:9f:4f:9c:a7:2c:d0:cc:96:ed:74:35:a5:47:
46:a2:69:e1:38:02:66:b8:fc:47:59:10:b0:84:cc:
96:f4:b8:97:3e:f8:8d:02:f9:dc:aa:f3:60:d1:8e:
31:c7:fb:67:56:bc:98:ae:46:28:15:ce:08:6e:5d:
d0:7e:93:4c:ed:a0:aa:96:16:5a:43:72:42:7d:93:
c2:17:f2:99:88:34:13:25:3d:aa:e5:80:48:1b:b6:
b6:c1:4b:55:8a:b9:fd:e3:3e:b0:b6:11:06:65:f7:
bf:41:3c:9d:4e:4a:41:f8:0b:6c:39:e8:99:da:0c:
a4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C0:CE:BA:DE:CC:3A:DF:8C:6A:1E:9D:0F:D4:73:A9:25:33:40:38
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/q8DOut7MOt-Mah6dD9RzqSUzQDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
95:23:89:c2:31:ba:fd:a7:63:39:04:46:dc:9b:25:a5:13:1c:
5d:23:d9:87:c3:15:57:7b:1b:96:a0:b3:00:3a:b5:c9:b8:05:
fe:02:7a:9a:a3:87:5d:40:82:6a:f8:07:a3:36:ad:6b:4c:c3:
0a:69:49:08:98:29:0c:4a:00:b1:61:c6:46:75:d0:1a:87:48:
2f:51:43:ba:4a:fa:32:35:ea:53:0e:29:7e:ac:24:e9:ed:ea:
4d:3f:13:1f:c3:c6:a5:5e:0a:af:28:8a:ff:ed:3b:82:12:07:
80:38:38:54:bd:c0:aa:76:83:b2:89:03:85:90:5f:fc:8c:fa:
92:0b:d8:09:93:08:99:21:6b:95:bd:63:44:a0:89:46:11:2a:
7a:94:d8:69:bf:84:e3:68:9b:11:c0:15:fc:7f:0e:c5:1c:e8:
29:37:e4:ca:3f:f6:8c:4f:fb:22:ad:50:f7:01:a1:39:9c:f1:
b4:14:81:ed:e6:f6:47:26:bc:6e:4f:80:0e:57:cb:15:ef:36:
d0:1a:ee:87:b7:03:b8:91:7b:74:97:7a:8d:e3:62:6d:72:73:
94:77:45:97:51:ec:f6:c0:56:14:73:e1:cd:e0:a3:5b:4a:ed:
b0:66:79:bb:34:d5:0f:63:59:1c:64:57:d9:43:20:68:76:47:
83:0d:33:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org