Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/he98RKI4bnPhqsIQeGldntqIfnU.roa
File: he98RKI4bnPhqsIQeGldntqIfnU.roa (raw, json)
Hash identifier: jIdmqWIv9rRvz2bXFsX3DjeFLyAN0HxmT2aHsBjTU+g=
Subject key identifier: 85:EF:7C:44:A2:38:6E:73:E1:AA:C2:10:78:69:5D:9E:DA:88:7E:75
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B2C0A0A
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/he98RKI4bnPhqsIQeGldntqIfnU.roa
Signing time: Sat 01 Jan 2022 05:02:34 +0000
ROA not before: Sat 01 Jan 2022 05:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204650
IP address blocks: 2.188.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187435530 (0xb2c0a0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 1 05:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85ef7c44a2386e73e1aac21078695d9eda887e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:95:70:cf:1c:ce:70:1b:ab:4d:07:33:c5:
0c:eb:0f:7c:c6:fc:03:70:38:4b:3c:cc:20:47:7f:
f1:a6:84:70:c4:6e:8b:74:d0:d7:a9:8c:29:3a:d3:
a2:6e:7f:ea:c1:1b:99:40:51:a1:46:52:3f:f2:53:
99:5b:42:c6:c5:2d:16:1f:c6:85:52:f1:a7:e7:70:
0b:21:17:49:89:88:9e:28:f4:cb:64:31:03:eb:db:
35:85:19:d7:f7:d6:1a:ad:44:de:2a:3f:4a:54:a3:
9e:4a:86:d8:80:30:08:62:16:69:a0:86:5e:70:8a:
d8:56:2f:33:63:ff:ae:57:f9:b7:aa:8b:b1:72:4f:
fc:47:50:66:a1:6d:ce:ca:1e:9f:4f:83:a2:b0:1c:
57:ea:95:2e:e5:d0:b6:85:45:6a:a9:85:4c:a2:e9:
2d:62:94:eb:b8:e1:41:8b:5e:fb:99:7a:e9:bc:68:
8d:13:c6:be:25:7b:eb:64:ba:5c:09:98:82:3a:74:
ad:4a:68:0e:54:65:cc:a3:16:39:83:a6:df:dd:1b:
50:66:ae:de:4c:d3:09:7c:9f:fb:34:f2:f4:f3:fa:
f2:17:36:f1:9c:b0:40:25:1c:11:a2:b8:15:a9:81:
f0:ee:f3:ae:31:53:8c:2d:53:49:34:a7:9b:a4:fd:
ee:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EF:7C:44:A2:38:6E:73:E1:AA:C2:10:78:69:5D:9E:DA:88:7E:75
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/he98RKI4bnPhqsIQeGldntqIfnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.239.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1f:9f:c9:8d:55:c4:0c:6e:47:41:77:31:af:a3:00:af:d3:
93:65:01:6c:e1:ca:6b:8e:01:e2:17:e6:71:1d:45:99:9a:2f:
6d:46:2c:e8:58:d2:ed:e0:71:1d:9d:38:88:f7:03:7f:83:aa:
e4:3e:49:b9:3c:66:a6:c6:e9:1b:bf:66:da:0f:be:39:7e:b5:
bb:90:b8:a2:34:5c:b0:95:0f:80:9a:3b:9b:43:89:fd:5d:64:
3e:95:d1:dd:29:45:51:ff:0b:11:6c:91:67:4f:4d:3e:ad:24:
ad:a4:2a:b2:8e:ff:be:d9:07:65:50:6b:a2:cf:86:d2:a6:c7:
e5:8f:13:24:19:de:84:10:6d:a1:23:49:31:c9:4f:5f:ef:a0:
e6:16:7a:0d:a2:ed:40:3c:e1:fe:f5:17:9e:c8:99:ee:c1:3e:
ce:a3:80:db:48:c0:0f:83:35:15:67:b0:8c:67:0d:e7:65:d2:
d7:c5:2c:bd:74:f1:4b:0b:73:81:ca:49:d6:c7:8b:02:fa:d2:
d1:b1:24:8e:e4:ec:41:d5:ae:b7:59:fb:44:66:1c:ba:a5:35:
7e:86:79:7c:3e:6d:8f:49:44:0c:c7:04:e7:6f:ee:2d:c2:53:
1f:76:e3:9d:79:ba:50:2a:5a:1c:f9:6e:dc:3b:69:bd:55:4d:
40:4d:f0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:02 2023 by rpki-client on console-fra.rpki-client.org