Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-rHdQqRkGZZII9L6VWQ1E8jZok.roa
File: B-rHdQqRkGZZII9L6VWQ1E8jZok.roa (raw, json)
Hash identifier: nTInbRvb9+PFMwld0zxTc0rZy3Hbagmm/6mZnu+WDuU=
Subject key identifier: 07:EA:C7:75:0A:91:90:66:59:20:8F:4B:E9:55:90:D4:4F:23:66:89
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01848F35C448DC7123D99176C574C8C50D3F
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-rHdQqRkGZZII9L6VWQ1E8jZok.roa
Signing time: Sat 19 Nov 2022 09:26:16 +0000
ROA not before: Sat 19 Nov 2022 09:26:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201233
IP address blocks: 188.132.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8f:35:c4:48:dc:71:23:d9:91:76:c5:74:c8:c5:0d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 19 09:26:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07eac7750a91906659208f4be95590d44f236689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:75:06:55:30:fd:19:f0:3c:5a:d3:12:9e:43:
c1:33:f9:4a:b8:b2:ec:12:3e:47:5c:41:2f:4c:b3:
51:ab:9e:a0:1d:0e:f0:eb:9c:3e:8d:d2:af:95:af:
ad:80:74:46:2b:bf:53:f0:8b:3f:d9:85:9b:1a:bf:
65:b5:d7:d2:00:b5:8f:1e:c5:d3:64:36:55:24:fd:
45:16:2d:95:c9:d4:ee:68:23:5f:59:4f:96:a6:f1:
07:24:91:f5:7a:7d:72:46:ef:0e:80:2e:07:56:6d:
a2:6a:98:db:2d:63:b1:d7:73:2e:7f:8a:f1:24:c8:
07:73:6a:e3:d9:db:b8:78:ec:07:32:5a:df:78:ab:
c3:79:ac:95:05:1f:e8:59:b8:98:a8:00:7b:d5:a2:
d3:46:f4:83:09:ed:f1:bc:47:ad:d1:55:a4:94:fa:
b5:44:ae:16:76:d1:48:10:e7:61:c3:8f:84:7e:02:
99:2a:80:a8:8a:ff:97:58:51:91:3e:b2:7c:eb:f7:
01:2a:b8:8d:cd:ce:24:60:34:62:ea:5e:35:58:f9:
2f:70:ac:c3:44:1c:35:e0:39:ab:3b:c3:34:8a:43:
58:cb:19:7c:c0:b7:56:e5:b5:0e:74:0e:0b:01:4b:
a9:7c:5d:f4:9b:92:ee:b1:b2:d1:d8:3c:3d:1f:77:
3c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EA:C7:75:0A:91:90:66:59:20:8F:4B:E9:55:90:D4:4F:23:66:89
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-rHdQqRkGZZII9L6VWQ1E8jZok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.193.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:4d:3e:7e:87:4e:03:f3:a2:25:00:ad:32:cb:73:3e:76:ee:
f1:e6:2c:17:c7:e4:c2:d8:49:95:f9:fe:f4:8f:7f:f2:d2:1a:
b3:e0:6d:d8:f4:1b:b2:14:25:c2:ac:31:cb:bd:e2:5c:a1:20:
6e:b6:82:78:51:7a:5c:ad:4d:bd:7c:8f:38:3a:b1:66:44:89:
bd:47:14:22:49:1e:5f:0f:94:52:4b:6b:31:b5:e7:24:2c:eb:
de:fe:76:91:1c:e9:13:c0:00:83:7c:4a:7d:8a:7d:e8:78:bc:
56:0a:39:56:3c:0b:28:ed:5b:e3:98:32:fa:b6:bc:38:ce:96:
f0:cb:40:c0:f3:80:f2:cc:46:aa:83:64:b9:09:4a:fd:e7:66:
06:3c:51:5c:2f:f1:89:1d:39:2d:50:d5:18:c5:4e:e2:ec:e5:
80:bc:a1:d0:a9:0a:4f:3a:ae:ba:6c:ff:a7:12:5c:ea:2f:a7:
1d:f6:bd:bc:13:79:46:61:f1:fc:f3:a6:98:09:5b:2c:40:57:
1a:08:ce:26:9f:3a:a4:c8:4d:a5:dd:e1:bd:2b:d9:dc:a4:34:
c2:98:12:0c:69:ee:b2:24:70:e4:e2:e5:18:b0:44:e4:19:11:
dc:f3:87:66:f4:73:3b:31:55:7b:95:0d:e1:84:59:23:71:87:
ee:9a:d2:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org