Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/837R3BoDCiU1piUKRwiugtB2Yuw.roa
File: 837R3BoDCiU1piUKRwiugtB2Yuw.roa (raw, json)
Hash identifier: rwX3YYYEsn81t1p/KcDmMZ8lXbaioyOXZcJ1ARgPCx8=
Subject key identifier: F3:7E:D1:DC:1A:03:0A:25:35:A6:25:0A:47:08:AE:82:D0:76:62:EC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 038D55B4
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/837R3BoDCiU1piUKRwiugtB2Yuw.roa
Signing time: Tue 01 Feb 2022 21:57:32 +0000
ROA not before: Tue 01 Feb 2022 21:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208425
IP address blocks: 188.132.128.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59594164 (0x38d55b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 1 21:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f37ed1dc1a030a2535a6250a4708ae82d07662ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:39:f3:10:f9:3d:d1:5a:a5:2d:93:bc:9f:
e0:c3:03:cb:dd:ad:a1:a4:2c:01:84:cf:aa:59:b5:
26:77:1c:24:b9:b2:6a:5c:13:90:e3:2c:d6:6c:19:
90:35:ba:ae:ba:39:58:b0:d9:c5:ff:31:3b:18:f9:
25:62:6c:f3:ce:af:9b:aa:04:59:9b:61:2a:bd:3b:
c1:ed:31:c5:7e:bd:1c:06:9d:87:94:4f:f6:69:26:
8a:7c:66:fa:b4:76:59:0c:dd:9c:21:c5:6a:b3:35:
9c:09:54:e4:35:54:c4:b6:58:ee:71:e8:d8:0d:57:
ae:74:68:16:d8:e1:22:dd:d1:66:8e:51:6d:20:39:
d9:a6:3f:ff:ce:9c:1e:89:2d:04:c6:36:15:1f:51:
b8:54:11:b0:a6:74:4a:7b:79:98:ba:f1:8c:8d:87:
e6:9c:8a:a5:65:3a:22:16:b1:c3:f7:34:ec:4b:ea:
04:a7:62:8e:36:ae:f4:b5:fd:01:e7:c0:ba:b7:f7:
ee:7b:9e:c3:19:c0:5f:ee:2b:86:17:1a:fd:54:b6:
72:cf:57:94:0f:10:60:33:e8:c3:f9:21:51:69:55:
02:e9:2e:96:e5:6a:94:91:7a:64:57:b8:17:5c:75:
78:fb:37:13:08:9c:2e:7d:b6:b8:23:4f:98:c4:fa:
40:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:7E:D1:DC:1A:03:0A:25:35:A6:25:0A:47:08:AE:82:D0:76:62:EC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/837R3BoDCiU1piUKRwiugtB2Yuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ab:ec:d0:21:02:a6:51:42:0d:b7:fd:30:21:a6:30:39:4f:
99:b2:14:fc:42:ed:5d:a2:44:b2:86:97:1a:72:7f:40:fe:67:
cd:98:2b:de:f2:e8:51:67:8f:6f:a9:cf:ee:e7:28:d4:81:5b:
63:eb:72:b3:24:1b:d5:e5:6e:9f:22:02:bb:5d:3e:c8:3b:2d:
2a:c1:5f:73:1d:17:d6:ce:f7:57:07:3d:0c:28:1e:e0:48:41:
64:81:24:a3:f8:57:78:39:a4:35:55:7e:35:03:2a:76:35:ef:
9c:d5:1f:78:5d:2f:44:00:f2:17:0d:4b:5c:9c:4e:68:9e:10:
7c:e8:95:11:51:8c:5f:a9:c0:7b:01:33:8e:ff:e5:ca:92:a0:
08:97:75:7f:6d:6f:43:ff:ad:09:71:e8:24:82:b1:e4:88:ea:
97:37:18:c2:2c:0b:18:66:50:b1:79:cf:66:86:b0:c4:b6:66:
54:a2:f4:8c:a9:ed:4b:1a:73:87:34:e7:42:8d:9f:f3:0c:a2:
02:d9:55:61:0d:9c:b6:c2:ee:8b:95:3c:0d:59:d9:30:c2:34:
1c:dc:9d:39:c9:3b:f7:48:90:13:70:43:22:a3:1a:f7:ff:1c:
68:88:5e:d6:32:f1:84:67:3f:a3:6c:a6:88:9f:0f:9e:1c:bb:
1f:11:33:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org