Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3oprCfaNRTV_UXep6qVEdhCuMrI.roa
File: 3oprCfaNRTV_UXep6qVEdhCuMrI.roa (raw, json)
Hash identifier: IhK4he+764ZKCbFCUSWW4P9D4PYuWCzhjQsXEDqrIfQ=
Subject key identifier: DE:8A:6B:09:F6:8D:45:35:7F:51:77:A9:EA:A5:44:76:10:AE:32:B2
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0930E193
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3oprCfaNRTV_UXep6qVEdhCuMrI.roa
Signing time: Wed 11 May 2022 07:57:02 +0000
ROA not before: Wed 11 May 2022 07:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 188.255.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154198419 (0x930e193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: May 11 07:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de8a6b09f68d45357f5177a9eaa5447610ae32b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c4:49:87:63:da:ce:d3:32:15:7b:9a:15:15:
03:c4:2f:ee:bd:25:98:d3:11:c2:63:9f:6b:05:3b:
2c:11:96:aa:51:05:c4:7f:6b:c2:f0:71:c1:95:71:
c3:7f:46:52:a9:3b:f2:df:2a:92:60:02:ac:3f:b1:
4d:67:97:ca:ba:02:52:c0:83:41:20:6f:5f:48:bb:
32:ee:06:18:f2:6d:f6:ec:32:82:13:7b:c1:19:80:
da:64:a9:d0:e2:04:87:f2:59:3e:77:ff:44:ea:bb:
9d:ec:ea:11:5c:28:be:7a:4c:2b:d7:74:cb:7e:b9:
9b:5f:24:a8:b1:58:cd:bb:b0:49:99:0f:9a:2b:3c:
a6:e0:14:13:f6:4f:45:ba:e4:ff:7c:21:85:af:7f:
52:57:f4:29:ff:dd:7f:08:b2:b1:78:d8:91:43:2f:
6d:79:d1:23:a6:a2:4a:a6:64:4a:73:ac:95:d3:f2:
8f:3f:87:8b:75:de:42:86:4c:f8:2d:49:ab:d3:30:
cb:08:75:eb:5e:55:62:64:7a:75:53:45:3f:77:79:
56:6b:68:55:46:e2:e4:ce:8c:5f:85:94:5d:7b:7e:
8f:59:6e:4e:2d:99:d3:7d:b6:b0:34:5f:06:fb:f0:
45:99:cf:f3:75:9b:ec:7d:85:eb:d2:57:81:e0:5b:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8A:6B:09:F6:8D:45:35:7F:51:77:A9:EA:A5:44:76:10:AE:32:B2
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3oprCfaNRTV_UXep6qVEdhCuMrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6d:30:87:7a:1d:71:76:ae:9e:0d:65:5d:b6:6c:39:11:bf:
d3:ae:b5:73:e1:21:1a:ed:99:b5:7c:bf:64:a5:d0:4d:4a:a5:
9d:33:c5:85:16:19:e4:49:a7:52:6b:54:75:f0:10:dd:a2:a0:
c1:5b:ce:63:b3:05:7b:0e:17:db:6c:65:92:e1:1e:f1:3b:b1:
9c:6b:be:c0:aa:76:4c:4e:2b:4c:c5:24:08:bc:c5:3e:a7:ad:
fc:c2:a3:bd:1e:f2:8c:b1:0c:30:f3:fc:c4:87:3b:1f:b1:1d:
1a:34:b2:c4:4d:b4:4d:da:fb:2d:f5:57:c8:5a:f8:5b:e5:d4:
ea:07:ca:93:eb:47:22:0f:15:a4:c5:36:3e:87:df:e1:af:a9:
84:43:86:7f:52:84:e9:ce:b8:67:2e:44:0d:6c:af:ae:fd:c1:
e8:68:dd:f8:c5:18:20:a8:48:c7:2f:7e:b7:a4:2a:e4:4c:6f:
aa:f7:68:30:af:86:d8:fb:5e:e8:21:5e:a4:5f:82:da:34:31:
08:e6:35:38:3f:97:59:ac:f5:69:b6:15:82:a9:34:a5:4f:aa:
39:ba:18:62:65:cf:8d:be:ef:b4:7b:f1:ef:1e:fc:61:18:f2:
bc:e2:94:79:75:62:3f:8f:ef:85:23:56:07:ce:d7:1c:72:b8:
39:29:0a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org