Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/pkf9kpvCL7y6uvFsDqnKAls4Azs.roa
File: pkf9kpvCL7y6uvFsDqnKAls4Azs.roa (raw, json)
Hash identifier: 4uPrMr9pPxHw+oxDFuGhGKoN1n7LBfN8Gb3gl9X6c+U=
Subject key identifier: A6:47:FD:92:9B:C2:2F:BC:BA:BA:F1:6C:0E:A9:CA:02:5B:38:03:3B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0184E9075D04676FD0624B4CBC155654AE68
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/pkf9kpvCL7y6uvFsDqnKAls4Azs.roa
Signing time: Tue 06 Dec 2022 20:01:24 +0000
ROA not before: Tue 06 Dec 2022 20:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 188.255.215.0/24 maxlen: 24
188.255.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e9:07:5d:04:67:6f:d0:62:4b:4c:bc:15:56:54:ae:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Dec 6 20:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a647fd929bc22fbcbabaf16c0ea9ca025b38033b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:cd:6f:78:67:44:86:38:83:5a:00:7b:bb:
04:29:6c:fa:06:6d:d9:bd:3d:e9:4f:eb:5a:ff:09:
72:93:21:66:b0:7d:5d:88:4c:e3:7c:04:4c:c2:79:
46:5a:ee:d3:72:6d:a5:a3:b5:7e:ec:cf:19:79:1a:
ed:01:16:a1:2e:c1:45:aa:00:dd:f5:71:41:9b:61:
f9:db:59:29:f1:30:c9:a0:5f:fd:9f:d2:ea:9b:28:
e1:d6:cc:f8:93:e4:3d:1e:f3:d6:aa:5e:fd:5b:f7:
48:aa:3e:fb:6b:da:e3:33:a7:a4:a3:7f:74:09:69:
16:5e:72:21:15:54:9d:71:e6:b4:82:2a:78:c2:b0:
ce:b3:73:2f:f3:bc:08:6e:98:d0:58:7c:08:8b:9e:
e8:0d:54:8a:59:67:1a:c9:59:97:65:24:16:16:32:
d7:b0:52:a1:91:f6:f3:47:38:15:1b:14:6c:77:ea:
05:89:9f:2b:9d:4b:5f:a7:aa:f2:8f:86:9e:bb:29:
27:e0:1a:57:b4:75:4e:a5:84:69:7a:0f:fc:39:2f:
f5:f4:26:b9:ec:93:6f:c7:8b:c1:9f:fe:c9:d0:7a:
90:d3:1e:91:4f:fa:d7:1b:8c:d3:ce:11:d1:91:ea:
a8:42:f2:4c:9e:26:dc:b6:2f:bd:67:a0:d6:36:17:
20:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:47:FD:92:9B:C2:2F:BC:BA:BA:F1:6C:0E:A9:CA:02:5B:38:03:3B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/pkf9kpvCL7y6uvFsDqnKAls4Azs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.141.0/24
188.255.215.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a1:60:d8:79:f0:98:ba:42:8d:09:c4:1c:0a:8d:e3:0e:99:
b0:9d:f1:6b:b2:2d:4c:36:37:79:3d:76:ba:c9:a0:3d:d1:b6:
74:25:5e:f4:00:56:f3:72:57:b4:e5:5b:88:d3:a5:a7:45:99:
15:13:05:1f:6e:a5:9d:33:b5:cc:78:1f:5f:47:b5:a9:48:26:
6b:8b:d4:2b:68:0f:a1:14:87:d3:ed:3b:2a:3d:8c:8a:d3:b1:
5b:5b:b1:ae:d2:bf:1a:9c:6f:55:d1:b0:47:4c:8a:3e:8b:82:
68:fb:db:bd:65:6a:44:44:28:f3:81:6e:db:bf:ec:5d:6f:81:
5e:ea:b1:11:92:ee:73:e2:ea:07:a5:d8:8f:76:b9:36:94:c4:
5f:14:44:be:8f:86:b0:af:42:d2:52:b6:9e:e7:69:70:a8:85:
bf:fe:88:cf:ff:5a:87:ea:e2:d4:5c:e2:f1:12:fe:58:01:84:
91:1d:50:27:22:c4:9b:74:ac:9b:f5:28:64:89:57:54:18:82:
08:b9:9d:40:38:f9:d5:46:26:2e:2f:e9:84:b4:a6:23:66:83:
6a:36:1c:d5:64:82:71:90:e2:03:5f:ca:5e:28:e3:cb:86:3a:
9b:cd:21:e9:58:6b:e2:38:d0:07:84:9a:68:45:d9:ab:51:4f:
44:3b:5c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org