Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HtWmQ0lEgADHLL2g4pWQBr6n94M.roa
File: HtWmQ0lEgADHLL2g4pWQBr6n94M.roa (raw, json)
Hash identifier: Nqlz6zTdHlP36jDlhLwBp7rjKnk8TBfkt677rfHi1Y4=
Subject key identifier: 1E:D5:A6:43:49:44:80:00:C7:2C:BD:A0:E2:95:90:06:BE:A7:F7:83
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0424AF8C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HtWmQ0lEgADHLL2g4pWQBr6n94M.roa
Signing time: Fri 01 Apr 2022 15:01:45 +0000
ROA not before: Fri 01 Apr 2022 15:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202561
IP address blocks: 188.132.221.0/24 maxlen: 24
188.132.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69513100 (0x424af8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 1 15:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ed5a64349448000c72cbda0e2959006bea7f783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:31:ab:cb:cd:10:f6:e2:cb:2e:99:26:3a:4b:
b6:30:5e:60:1a:5c:2e:17:14:05:07:f3:c7:77:2c:
dc:44:40:f8:59:1e:35:15:57:dc:15:3a:6a:da:d8:
c5:a5:0a:97:9c:be:8e:81:12:90:9d:7c:ed:3e:47:
85:0d:99:44:49:82:f1:5a:23:93:8e:eb:1c:ff:4a:
85:24:79:e8:49:3d:b3:ec:6c:f4:65:00:de:0f:ee:
7c:0e:7c:c7:b5:2c:5c:a0:73:61:1c:37:93:20:48:
23:6c:e7:2e:bb:84:a6:79:b6:45:ff:2c:74:42:78:
4c:d4:7f:6c:5a:95:9c:a9:25:46:ca:76:7f:cd:70:
1f:c0:fb:05:94:de:b7:5c:e0:8d:ff:51:45:47:72:
39:f7:67:04:e6:f6:3e:68:95:65:96:1f:c5:fe:4b:
9a:72:8a:22:f2:b0:d2:34:16:24:5d:4e:45:9a:18:
2f:e3:1d:20:8d:30:df:fa:14:1a:f3:7b:ea:38:05:
9a:07:f9:19:80:c4:45:f5:47:12:b8:7d:dd:1e:d6:
6b:d8:eb:79:4f:e0:44:1c:e9:40:cc:f8:bb:b6:f5:
88:28:24:38:dc:34:bb:96:13:23:ae:07:79:25:f7:
4a:dd:f8:47:3e:c8:08:45:ed:cd:a9:86:96:00:55:
9e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D5:A6:43:49:44:80:00:C7:2C:BD:A0:E2:95:90:06:BE:A7:F7:83
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/HtWmQ0lEgADHLL2g4pWQBr6n94M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.221.0-188.132.222.255
Signature Algorithm: sha256WithRSAEncryption
78:4f:14:b6:93:25:81:45:d9:46:74:fb:37:54:b7:d4:11:82:
dd:ac:d1:bc:70:ba:7d:18:4c:f9:df:f3:c8:a8:63:76:dc:87:
3b:96:fb:91:eb:56:6b:08:2a:5a:66:5e:41:86:50:76:47:23:
c5:89:91:a1:0b:81:05:dc:e8:68:28:a4:81:f6:34:5d:a2:93:
e9:08:26:98:d2:71:33:f7:5f:84:38:0b:3c:1f:20:8a:72:73:
3d:76:a2:50:d6:ee:7f:e9:ac:29:e3:64:78:f8:e0:69:d9:1e:
19:e1:a3:29:f1:9c:b4:03:ce:44:a4:06:ff:f8:03:70:a7:ab:
17:2b:b4:8f:e4:6a:35:f3:4f:7e:83:03:19:c2:32:7f:82:55:
a3:b3:30:1a:7c:d7:c6:9c:1d:1e:94:eb:08:53:6d:b0:0a:af:
cb:58:23:a5:34:ef:f6:0f:c2:f3:6f:de:39:a2:69:0f:e5:10:
92:a4:82:65:81:3e:00:d1:56:8c:37:8c:d0:97:02:0b:c0:5e:
79:42:af:21:45:0c:7b:6f:27:a2:f2:89:7c:0d:54:b8:38:0a:
4d:ff:d5:c3:81:d2:cb:a3:84:c5:0f:fc:63:b5:13:02:2a:d3:
14:c9:6d:bd:ff:54:1a:3f:46:50:41:2a:c7:48:96:4b:ec:56:
38:5b:7c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org