Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Ag3kP4QfHRWSWWgxohkdBwc4BdU.roa
File: Ag3kP4QfHRWSWWgxohkdBwc4BdU.roa (raw, json)
Hash identifier: 4cd2khy5Pao9qADGv3QtQ6wf1uN8TEH1eZxjWKO3irk=
Subject key identifier: 02:0D:E4:3F:84:1F:1D:15:92:59:68:31:A2:19:1D:07:07:38:05:D5
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B72CCDC
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Ag3kP4QfHRWSWWgxohkdBwc4BdU.roa
Signing time: Sat 29 Jan 2022 08:51:19 +0000
ROA not before: Sat 29 Jan 2022 08:51:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212161
IP address blocks: 2.188.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192072924 (0xb72ccdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 29 08:51:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=020de43f841f1d1592596831a2191d07073805d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d3:52:46:50:76:38:59:8f:16:64:96:6a:e8:
93:94:37:87:dc:6b:73:19:31:f7:45:21:4c:b7:72:
93:12:8f:44:7e:5b:17:be:8a:8c:a4:25:68:5c:18:
23:9d:80:40:4e:8a:a4:44:39:b3:b1:26:f7:8a:46:
57:9b:42:87:c6:1a:30:0d:b8:b0:26:0a:8f:76:da:
a2:2b:4b:91:be:cb:99:1c:f3:22:1e:74:04:42:f2:
af:4a:50:84:ab:17:ef:95:00:90:5f:a7:b1:52:e9:
c3:c5:b4:bb:ec:a3:ab:72:56:45:97:06:c4:ee:0a:
67:2f:2b:5c:4c:90:ef:6e:ac:16:9f:0d:d5:5d:c5:
42:f7:b5:07:5a:d7:0f:fa:5e:fa:e5:5a:2f:de:ee:
98:84:ad:f5:88:ae:bd:98:cf:f5:19:be:a4:54:83:
55:48:ed:be:14:02:a1:be:80:eb:85:fc:5b:1c:35:
a8:ae:70:f7:ec:73:92:81:3f:0b:d1:91:c0:50:e0:
9e:1d:9c:39:d8:2b:de:57:33:17:ae:fc:95:38:bd:
70:d4:33:3a:98:7d:59:2f:03:9d:6f:bc:98:2e:32:
6b:70:66:d5:db:9c:95:37:bd:07:09:85:11:48:2c:
0f:f6:a4:31:fe:ff:83:e8:4e:19:f8:d8:41:38:18:
7a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0D:E4:3F:84:1F:1D:15:92:59:68:31:A2:19:1D:07:07:38:05:D5
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Ag3kP4QfHRWSWWgxohkdBwc4BdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.229.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a4:38:9b:08:c4:39:5d:cd:80:2e:b3:3a:6d:03:bf:41:a6:
c0:83:49:ce:f1:a2:e3:60:f7:d0:3a:71:84:b0:e4:7a:24:1a:
e4:17:50:ab:9a:d6:d8:cb:a2:0e:57:ec:ee:d3:a0:59:e0:32:
13:70:27:ad:f7:de:c0:fc:be:58:18:90:12:f7:97:d1:37:06:
15:ea:22:1d:5e:da:bd:9b:c8:e8:ea:a3:6b:41:b2:12:57:7e:
b1:ed:a6:1c:ad:00:0e:5c:e7:1d:67:25:9d:0c:6e:9c:d3:14:
e1:17:03:77:bd:f8:60:0d:ed:6d:4a:40:71:c9:7f:9f:65:94:
14:07:1e:84:3f:e2:c3:11:5c:64:e2:95:8e:6b:b0:ca:16:03:
b1:70:14:3e:b2:96:f1:35:c9:81:25:e6:cc:08:c1:19:75:96:
5b:04:87:2d:22:dd:d4:58:41:87:f9:06:17:eb:3a:26:41:55:
9e:0b:80:5d:ef:6e:7e:23:f1:40:0e:5e:b0:82:81:e4:dc:c7:
75:62:d9:aa:f4:ca:05:e7:01:cf:81:20:f5:42:ce:14:16:2e:
05:b9:26:04:95:08:26:6a:af:60:72:44:c5:75:16:12:6f:dd:
d6:3e:78:ee:5e:b0:4e:5d:4f:be:ca:33:e7:a5:37:fc:74:ed:
f1:f4:42:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org