Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/eKP5IwydgvS_HEUp2LqlprGLZZI.roa
File: eKP5IwydgvS_HEUp2LqlprGLZZI.roa (raw, json)
Hash identifier: rLOvtJXjhTmnlHRxS9998JTiWCIlK2XZZMKiOKe34D0=
Subject key identifier: 78:A3:F9:23:0C:9D:82:F4:BF:1C:45:29:D8:BA:A5:A6:B1:8B:65:92
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B7183BC
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/eKP5IwydgvS_HEUp2LqlprGLZZI.roa
Signing time: Sat 29 Jan 2022 08:51:18 +0000
ROA not before: Sat 29 Jan 2022 08:51:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204393
IP address blocks: 2.188.238.0/24 maxlen: 24
2.188.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191988668 (0xb7183bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 29 08:51:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78a3f9230c9d82f4bf1c4529d8baa5a6b18b6592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cc:71:96:13:fb:23:30:9e:08:c0:07:32:46:
b8:e6:28:ff:87:48:f4:e0:b3:97:1c:f4:f1:59:8d:
12:4f:c2:fc:fb:f8:bd:97:4b:c3:5e:ab:00:29:d9:
fd:c1:2a:13:df:2a:c7:f8:da:2a:30:ed:50:82:49:
81:f5:b2:7b:30:72:e3:1d:a7:cf:63:b3:88:24:dd:
b4:e7:ab:d1:fd:46:31:ba:a6:ee:92:6e:9e:44:92:
0b:2a:cc:75:b0:aa:14:6a:1e:57:b6:4a:2d:27:93:
cc:e7:ab:e3:62:fc:b8:c7:2d:83:b0:24:66:eb:48:
ee:ed:65:ff:65:80:8e:16:ed:ff:11:dd:42:1a:bd:
48:d5:df:e3:54:37:b2:ce:b5:ea:2a:9b:8b:85:2f:
d9:e5:9f:5e:51:f1:f0:e0:b5:40:48:54:4a:ef:e2:
68:d0:b9:2c:15:d2:87:0c:30:0a:d9:26:7b:57:ef:
fe:93:65:b5:92:05:01:35:06:9d:bd:6f:8b:af:60:
d5:02:37:c0:2d:da:c5:c2:92:d6:cd:ef:2d:2a:de:
fc:f9:71:cb:9a:da:e1:76:69:76:f0:b6:b2:a5:8d:
8d:c9:8a:38:c5:9b:c9:21:98:66:e2:15:4f:b3:4e:
12:ab:3f:ba:1f:36:74:8f:e1:dd:4f:3a:1f:27:e2:
29:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A3:F9:23:0C:9D:82:F4:BF:1C:45:29:D8:BA:A5:A6:B1:8B:65:92
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/eKP5IwydgvS_HEUp2LqlprGLZZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.234.0/24
2.188.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:13:79:34:05:02:ff:96:61:83:86:93:69:89:0c:17:02:24:
9c:bf:bd:22:05:51:07:df:39:45:72:e7:ac:11:65:ab:7a:e4:
00:6c:f2:c8:92:07:f8:57:fe:95:5a:32:a4:fe:b3:9b:07:f6:
85:be:a1:86:07:ee:20:46:18:5d:79:68:6d:7c:33:9d:65:3a:
49:d3:8c:83:7d:66:58:cd:b7:77:11:2f:7f:e8:95:df:4f:5a:
91:5a:77:28:bd:07:b8:0f:ae:3d:c0:2f:74:9c:fd:fa:6e:96:
b4:05:f3:9a:11:f6:b4:27:a9:f8:f8:22:ff:a8:cc:37:b0:80:
b1:39:c9:12:7d:9c:e6:ab:e9:84:e1:7a:96:5a:c9:90:32:54:
a2:e9:fd:61:95:61:96:b0:7d:91:2d:d3:3d:8b:a6:15:36:b0:
8d:ef:c0:49:43:ec:5e:1f:8d:ac:0e:6c:21:ce:df:1a:10:3f:
61:e1:20:57:77:3a:df:af:49:49:52:8a:aa:2d:cb:b8:10:11:
c4:52:d6:49:b4:a8:4c:a3:ae:ea:c4:77:cc:2f:dd:9a:db:65:
d6:c3:73:65:da:15:97:88:a6:2f:61:7b:1d:bf:94:0e:43:f7:
11:39:fb:18:53:29:66:d7:34:74:7b:97:1e:be:eb:ab:d5:18:
ca:5d:1d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org