Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/36a532-ef0d-414f-8ebf-9daca5b471d5/1/pB2_xOkIPk8XroPreg56qI_J_Xk.roa
File: pB2_xOkIPk8XroPreg56qI_J_Xk.roa (raw, json)
Hash identifier: zspDKkNJIjpfNRWreZ12qh0ODkr+DtugZvorGCg6gEM=
Subject key identifier: A4:1D:BF:C4:E9:08:3E:4F:17:AE:83:EB:7A:0E:7A:A8:8F:C9:FD:79
Certificate issuer: /CN=399688ba8fe2baf62d39d1924b4c628e9541672d
Certificate serial: 012106
Authority key identifier: 39:96:88:BA:8F:E2:BA:F6:2D:39:D1:92:4B:4C:62:8E:95:41:67:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZaIuo_iuvYtOdGSS0xijpVBZy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/36a532-ef0d-414f-8ebf-9daca5b471d5/1/pB2_xOkIPk8XroPreg56qI_J_Xk.roa
Signing time: Wed 09 Feb 2022 17:38:58 +0000
ROA not before: Wed 09 Feb 2022 17:38:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34907
IP address blocks: 188.93.115.0/24 maxlen: 24
2a11:1140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73990 (0x12106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399688ba8fe2baf62d39d1924b4c628e9541672d
Validity
Not Before: Feb 9 17:38:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a41dbfc4e9083e4f17ae83eb7a0e7aa88fc9fd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:d0:5a:82:54:34:47:84:84:4b:62:b7:cc:
c0:ad:f2:f3:b7:6e:d0:14:a1:29:e9:b7:99:81:ea:
44:19:36:0c:40:0d:0c:ce:b5:9e:a4:91:c3:24:3b:
af:d4:51:25:d0:12:c8:3b:3a:bc:07:96:c0:37:59:
eb:d0:80:e9:bb:b6:43:f5:f7:a3:a6:49:c1:f6:53:
4d:1a:2f:d8:8c:86:ba:b3:be:96:df:38:b0:5d:ed:
3b:51:8b:da:1a:78:31:ad:db:a8:0f:f3:25:06:c3:
57:e3:a1:27:f2:a9:89:98:22:3c:12:be:c5:ef:10:
66:e9:bd:4f:19:cf:8b:e7:56:3e:7c:85:cc:21:54:
fb:35:8e:ec:d7:4a:19:a5:65:21:99:ba:76:ff:1e:
b7:55:a0:eb:8a:9c:e1:56:a9:39:7a:b1:be:f8:f5:
1a:44:89:25:ee:25:5c:66:5f:5a:f9:34:ed:f5:14:
34:1c:7f:87:79:85:89:ec:14:19:e1:3b:3b:1f:77:
a1:f3:f0:3e:42:dc:16:ad:5f:d3:a4:8b:e4:84:3c:
e9:49:fe:3b:1d:52:35:3b:07:d7:b6:5b:c3:5f:db:
94:ac:28:ec:67:aa:d0:23:e9:61:bf:07:87:71:0a:
aa:9e:9c:2d:a9:e8:5c:e4:06:fb:c7:d7:4b:c6:e5:
94:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1D:BF:C4:E9:08:3E:4F:17:AE:83:EB:7A:0E:7A:A8:8F:C9:FD:79
X509v3 Authority Key Identifier:
keyid:39:96:88:BA:8F:E2:BA:F6:2D:39:D1:92:4B:4C:62:8E:95:41:67:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZaIuo_iuvYtOdGSS0xijpVBZy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36a532-ef0d-414f-8ebf-9daca5b471d5/1/pB2_xOkIPk8XroPreg56qI_J_Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36a532-ef0d-414f-8ebf-9daca5b471d5/1/OZaIuo_iuvYtOdGSS0xijpVBZy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.115.0/24
IPv6:
2a11:1140::/29
Signature Algorithm: sha256WithRSAEncryption
a2:97:5f:df:03:83:22:54:c0:9b:01:6b:85:84:70:45:83:3f:
17:f5:81:76:89:f0:a1:da:55:0b:90:fb:35:b8:5d:12:21:93:
4f:2e:2f:4d:78:1e:6b:e2:11:ec:9c:25:fe:dd:36:a2:f8:81:
ce:3e:d7:1e:f9:62:5c:09:d9:61:e6:30:53:8d:57:e1:ef:3f:
a2:cc:d1:77:bb:17:81:6f:a7:77:00:9e:69:a0:ef:6c:ca:87:
01:b3:2a:aa:fb:a5:05:07:1c:f7:81:16:9b:68:c8:9a:f7:b9:
0d:4f:d4:f4:b6:75:01:a3:68:55:cc:bd:05:29:61:96:f1:72:
ff:29:34:f9:90:ed:85:82:c1:1f:28:14:a0:4d:e1:2a:cf:2e:
6e:2d:26:0b:ea:b8:01:a0:15:08:75:23:0d:fa:5d:38:24:97:
20:ba:91:6e:d5:a3:6c:1c:52:d6:d7:35:21:e2:45:53:e5:77:
2a:f1:fd:7a:be:d0:65:a2:08:37:fe:14:bc:f3:b3:03:14:73:
d3:af:20:f9:89:99:7a:99:e8:38:ca:60:1e:93:26:ee:d7:4e:
e9:05:bc:b9:27:dd:53:c6:1c:1b:c0:11:91:90:43:c6:69:3c:
51:4f:c5:d4:c9:65:fd:10:bd:0a:b0:b4:1e:8c:0d:7b:b7:d8:
ce:3c:db:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-fra.rpki-client.org