Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/cAHVSy_IKDBCxX5H4IYcnaAkYRM.roa
File: cAHVSy_IKDBCxX5H4IYcnaAkYRM.roa (raw, json)
Hash identifier: kzMibSgSzk695E6tK10qy3gBT7/ohgE8Do5OcfuqgNs=
Subject key identifier: 70:01:D5:4B:2F:C8:28:30:42:C5:7E:47:E0:86:1C:9D:A0:24:61:13
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0184C7DFF798FDF7211E214E1854CADBC656
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/cAHVSy_IKDBCxX5H4IYcnaAkYRM.roa
Signing time: Wed 30 Nov 2022 09:30:54 +0000
ROA not before: Wed 30 Nov 2022 09:30:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 188.255.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:df:f7:98:fd:f7:21:1e:21:4e:18:54:ca:db:c6:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 30 09:30:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7001d54b2fc8283042c57e47e0861c9da0246113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f7:e8:d4:e4:05:54:f1:fb:8c:f6:2d:36:0d:
22:88:ef:d9:4f:37:a3:e9:77:df:43:ce:27:55:72:
2e:d7:83:3e:ed:50:4f:f1:66:67:57:54:e0:56:21:
c6:a0:a2:a0:2b:19:52:eb:6c:3e:d3:f6:ec:7e:1a:
84:df:b0:39:98:3f:c8:52:59:97:b5:3e:31:ec:18:
71:bc:79:e4:f1:5e:12:3f:a9:51:48:fd:94:5e:1f:
89:62:86:f5:f9:9a:80:49:e5:1c:94:d2:ff:3d:3c:
1e:ff:7d:ae:96:22:96:52:60:e6:f2:37:cb:73:ed:
f5:f0:1d:2c:a5:e3:c2:1b:15:b6:5b:48:20:37:bd:
7a:ad:1d:bf:74:fa:2e:d9:4f:8b:e3:14:1d:e9:6b:
39:a4:4c:89:ab:92:bf:62:7e:60:2d:03:4d:3f:3d:
88:52:06:b2:ce:d8:b3:31:c6:2e:3e:c1:88:d2:42:
f2:11:c6:bc:48:be:c2:9b:c8:4f:dd:17:5b:51:36:
a2:60:aa:4e:5d:27:dd:11:a7:d5:97:c1:cc:fe:16:
44:99:ed:6d:7f:4b:2b:c8:fe:9b:98:37:70:06:2c:
45:99:2e:4c:2c:8b:42:60:4d:0a:7d:4e:3f:f2:fb:
26:82:9e:66:46:26:ad:42:cf:6f:86:07:91:e0:ce:
cb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:01:D5:4B:2F:C8:28:30:42:C5:7E:47:E0:86:1C:9D:A0:24:61:13
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/cAHVSy_IKDBCxX5H4IYcnaAkYRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.215.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b2:84:aa:df:67:48:ba:1f:6f:99:ce:ae:54:c5:79:ea:90:
55:ff:ca:af:15:c3:61:25:19:39:a4:13:49:56:96:dc:0f:71:
c9:9c:6e:58:97:fc:c4:80:b8:67:e9:62:a0:fe:a2:e2:e1:69:
7d:22:f0:f1:d4:ed:19:48:7f:bf:93:6f:9d:44:7e:60:63:32:
3e:00:15:c4:85:3d:01:a3:8e:95:a8:55:f3:78:d1:de:34:49:
a2:a8:0c:ea:35:a6:bf:b5:b0:76:66:4e:e8:bf:54:91:86:ac:
01:26:a5:4b:58:c1:3a:74:b6:19:46:a1:47:bf:81:c0:e6:83:
99:a2:75:a2:ba:0e:85:07:ab:92:98:0a:dc:e8:6b:0a:5c:3c:
a2:8e:83:f0:cd:1d:53:7a:8c:d9:cd:19:e2:3e:21:81:c7:e4:
b8:31:9a:7c:48:39:fb:aa:2e:01:fe:0a:de:9d:d1:c5:99:26:
a1:53:25:9c:06:ed:70:50:8f:af:e6:77:1b:a7:c1:d5:27:ce:
c1:ef:93:5a:28:2f:b1:19:c2:e4:13:92:b9:85:99:ba:ad:6c:
77:d1:42:50:9f:0b:a7:d1:3d:b7:6b:5b:b1:86:5d:41:f1:89:
c0:cf:71:a1:18:20:ea:de:91:dd:c5:e4:23:d8:97:60:b0:76:
26:c2:90:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org