Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NdRvhkTLHH9ZDw1qQVkOOdDR-zM.roa
File: NdRvhkTLHH9ZDw1qQVkOOdDR-zM.roa (raw, json)
Hash identifier: TWwaLNNFRyjTCJG9Y2ABlovigWwarLbppAwjY0DNiZw=
Subject key identifier: 35:D4:6F:86:44:CB:1C:7F:59:0F:0D:6A:41:59:0E:39:D0:D1:FB:33
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0184858829B80E01BEAB34DEF779754BDCB2
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NdRvhkTLHH9ZDw1qQVkOOdDR-zM.roa
Signing time: Thu 17 Nov 2022 12:20:04 +0000
ROA not before: Thu 17 Nov 2022 12:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201575
IP address blocks: 188.132.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:88:29:b8:0e:01:be:ab:34:de:f7:79:75:4b:dc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 17 12:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35d46f8644cb1c7f590f0d6a41590e39d0d1fb33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a4:07:74:e1:48:78:4b:1a:71:db:3d:af:c5:
38:ce:65:73:f2:e3:cf:a0:af:7c:8c:f6:40:ad:61:
22:a4:55:d4:a0:a9:12:90:db:4d:72:31:99:a3:ba:
dd:61:d2:23:ec:16:88:5d:9f:49:29:69:a9:85:ef:
a6:d5:e2:09:c9:12:71:59:ed:bb:04:ac:81:bf:31:
09:06:6c:e7:f2:c7:7e:98:aa:e2:80:6f:97:51:30:
07:0c:c9:07:0a:38:ea:fe:1f:48:f1:69:b9:23:97:
86:53:48:4d:48:06:6b:33:71:5e:f9:e7:46:25:6a:
65:4a:fc:d7:0b:8a:46:6b:99:78:32:64:dd:a6:e5:
58:65:a6:8d:09:7c:dd:bf:7a:c1:f7:b4:d4:c6:16:
71:87:46:23:d3:a5:48:9e:8f:9a:73:d7:e8:5f:d1:
02:7b:7a:4c:19:53:4f:d8:f9:5a:44:c7:96:66:38:
b5:fe:f8:2d:85:51:05:3e:06:53:28:00:dc:43:c6:
b6:11:b1:5a:7b:78:78:ea:15:00:25:5f:ff:69:02:
b7:0c:ff:44:d6:57:a5:f7:01:85:44:e8:3b:7e:80:
6f:32:b1:1d:05:47:95:27:d4:8d:98:e9:a0:79:97:
41:30:02:4a:fa:20:d2:4d:b6:31:57:6d:68:f7:7a:
89:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D4:6F:86:44:CB:1C:7F:59:0F:0D:6A:41:59:0E:39:D0:D1:FB:33
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NdRvhkTLHH9ZDw1qQVkOOdDR-zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.192.0/24
Signature Algorithm: sha256WithRSAEncryption
37:29:df:f6:89:a5:21:a2:db:d2:10:0f:46:41:cc:66:7a:0f:
0d:1d:b7:84:c3:0c:fb:99:c9:3f:1d:b1:e8:4c:dd:d7:1b:81:
68:5b:ff:67:b2:55:36:fa:f1:1a:fd:74:15:b4:d3:90:c4:af:
a3:1a:ee:8a:27:65:48:c9:1a:91:ae:14:7f:28:53:74:43:54:
d5:94:55:02:a8:43:58:c5:96:bf:db:0b:93:e6:5a:14:20:bc:
b6:dd:97:49:c8:bf:fc:3e:fe:bd:8c:e1:4f:c7:3e:3e:33:e2:
e0:e3:14:e2:e0:b8:c3:1f:c9:2b:1a:40:05:8e:c5:40:09:64:
16:59:0e:a7:8a:24:fc:f9:4b:50:a8:36:74:1f:08:50:18:de:
e3:e0:35:6a:fe:32:66:32:05:8a:f8:6e:e4:37:06:19:a5:35:
6b:01:f8:d1:68:93:e5:09:9b:85:58:81:53:05:e6:06:42:e4:
5b:55:80:79:f7:6e:f1:b6:96:37:78:d1:ab:62:25:5a:e0:af:
52:46:ab:bc:27:23:57:78:f3:a5:dd:8b:09:ab:b8:78:3c:fd:
7f:71:96:ca:05:d5:ee:87:c1:80:c5:79:05:1a:af:4e:67:1d:
40:e4:5d:47:fa:45:ac:5e:52:57:0c:bc:81:12:ca:6c:4c:ca:
3e:cb:b9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org