Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HSgN6RMbml-k-_AiefRMKl5wIiI.roa
File: HSgN6RMbml-k-_AiefRMKl5wIiI.roa (raw, json)
Hash identifier: tP+6GJjZGF4qQB9GTsTYzmGLqYa7IxapGaOCVd/luDo=
Subject key identifier: 1D:28:0D:E9:13:1B:9A:5F:A4:FB:F0:22:79:F4:4C:2A:5E:70:22:22
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0182AD3D68F2038A095FD342FF91FBCEE610
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HSgN6RMbml-k-_AiefRMKl5wIiI.roa
Signing time: Wed 17 Aug 2022 19:17:39 +0000
ROA not before: Wed 17 Aug 2022 19:17:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203285
IP address blocks: 188.132.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ad:3d:68:f2:03:8a:09:5f:d3:42:ff:91:fb:ce:e6:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Aug 17 19:17:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d280de9131b9a5fa4fbf02279f44c2a5e702222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:da:52:d0:a0:6b:5e:87:41:82:a7:93:ef:
55:d2:32:58:0f:1f:43:ce:a5:6d:70:7d:97:d8:82:
cf:13:00:f3:99:78:d9:da:5a:fe:28:07:b0:66:9b:
7a:76:a5:ea:c0:6b:dd:d2:db:e4:49:da:22:c2:d6:
34:bc:55:4f:6e:34:c0:1a:fa:32:8c:81:f9:6e:a4:
df:62:f7:14:52:b4:14:c9:e1:f4:dc:93:fc:97:df:
3f:fd:1f:e9:ea:89:bc:aa:cb:b1:16:5c:78:d6:e5:
16:3a:7e:1d:0b:a9:2b:85:3b:fc:a8:c8:3c:8f:c8:
c0:2b:52:41:6f:cf:21:c6:c3:7f:9a:07:b5:40:39:
8f:14:55:0c:ee:32:4f:96:c4:60:5b:3c:b1:01:fe:
31:b5:49:b5:40:5a:c8:4f:42:5f:7f:5a:71:14:93:
ff:0a:df:8c:7c:44:2a:18:28:ab:64:e9:d6:35:1c:
ba:6d:e6:bb:33:34:ee:6f:ff:05:fa:51:3e:e4:3b:
09:95:40:3d:b7:28:ca:84:48:e7:7a:b8:ff:7d:87:
88:b2:4d:cf:11:e7:ee:a8:8a:07:b6:31:f1:53:5b:
37:c1:ef:b5:2e:9a:e8:29:53:0e:d6:80:54:0c:da:
db:2c:89:94:e3:7d:e4:12:32:1d:df:9d:9a:c9:d7:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:28:0D:E9:13:1B:9A:5F:A4:FB:F0:22:79:F4:4C:2A:5E:70:22:22
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HSgN6RMbml-k-_AiefRMKl5wIiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.171.0/24
Signature Algorithm: sha256WithRSAEncryption
19:12:19:b3:6a:05:bf:75:13:f3:2d:d2:25:f0:38:8f:3c:ea:
66:c4:81:af:84:3a:f6:7c:60:ac:3f:3d:23:09:19:25:bb:b7:
33:92:86:c6:b7:d8:33:d9:99:c2:43:e6:10:c7:4f:32:0a:43:
ff:44:30:1f:1f:68:b5:1c:89:c5:34:6e:c6:c2:06:22:7a:31:
72:ad:51:ad:04:1b:4d:31:4d:ba:b2:ee:e9:97:be:64:18:75:
a3:b4:6b:54:2f:2e:2e:b3:4c:03:99:31:e0:c6:9d:b5:7a:e4:
77:82:9c:b9:c0:d5:ac:ec:29:00:3d:36:bd:1a:5e:c2:e0:a1:
92:c8:d3:3d:ff:de:e8:16:28:d0:8d:a4:87:a9:7e:be:b5:1d:
ad:3f:94:61:9e:c6:06:48:6f:b3:0f:42:89:72:0a:91:bf:4d:
98:e5:c5:9b:12:8b:2a:aa:d4:fb:9a:0b:13:df:b7:9c:ad:9d:
b5:0d:6a:8d:33:c7:68:10:ba:d9:0c:ba:c8:52:e6:e0:e0:26:
c9:b6:56:08:2b:30:4b:d1:c6:22:c8:05:d2:72:69:72:de:06:
f1:88:9a:7b:a0:83:2a:cb:3a:69:df:b7:36:b8:43:cb:ca:f0:
8f:6d:fa:d7:eb:65:b7:fc:59:90:e4:9f:e9:1a:30:ca:55:94:
72:02:96:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org