Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Splk2TWatR9OlCX1Xju4S7pEgsQ.roa
File: Splk2TWatR9OlCX1Xju4S7pEgsQ.roa (raw, json)
Hash identifier: yS9IpYPLIO7HWPahDU99uhHdo+Okta5qRSKp+f8+jac=
Subject key identifier: 4A:99:64:D9:35:9A:B5:1F:4E:94:25:F5:5E:3B:B8:4B:BA:44:82:C4
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04B4C2ED
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Splk2TWatR9OlCX1Xju4S7pEgsQ.roa
Signing time: Wed 01 Jun 2022 14:25:21 +0000
ROA not before: Wed 01 Jun 2022 14:25:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211804
IP address blocks: 188.132.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78955245 (0x4b4c2ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 1 14:25:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a9964d9359ab51f4e9425f55e3bb84bba4482c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:92:e1:ae:35:14:22:ca:96:41:53:2b:a0:
c7:aa:68:71:b4:ee:16:be:20:6a:63:f3:c1:d5:ae:
80:c4:5b:44:c0:7f:2a:7d:af:32:b6:74:08:15:15:
d2:6a:cf:79:f2:b8:0f:cd:9c:ae:5a:da:82:5c:02:
94:18:3d:85:6d:b8:4d:c3:a1:bf:a1:33:c8:5c:07:
58:61:6c:07:19:69:65:12:ff:6b:8f:7a:82:f9:5f:
95:68:ec:9b:81:cc:86:95:e5:e4:c6:f9:92:ec:67:
ba:3b:b7:58:fd:8c:48:ca:48:bf:f4:cb:e1:79:17:
3e:48:86:4a:bb:fa:e1:1b:4d:75:00:96:09:39:09:
9c:cc:d9:c9:db:5c:f6:60:a3:62:68:48:8f:cd:d7:
54:fb:e0:8a:ee:56:c2:71:2e:ab:f3:c1:15:b4:90:
ca:d5:c6:fd:34:92:11:bc:48:05:2b:c9:32:57:9c:
d1:da:4e:bf:37:54:05:13:9c:7f:8d:aa:de:01:77:
93:b5:8a:d3:75:2f:1e:22:81:db:c4:fd:7b:7e:f3:
8f:1a:12:5a:e4:6f:53:8b:bc:82:5c:bf:f1:d4:b0:
42:b0:63:56:bd:46:d3:66:66:fe:9f:40:02:7d:ff:
7d:56:c5:bc:3e:1f:f0:6f:13:06:ce:36:d3:7c:d2:
4f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:99:64:D9:35:9A:B5:1F:4E:94:25:F5:5E:3B:B8:4B:BA:44:82:C4
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Splk2TWatR9OlCX1Xju4S7pEgsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.151.0/24
Signature Algorithm: sha256WithRSAEncryption
84:82:5d:aa:12:78:0e:92:6d:67:11:de:bf:e7:6b:26:95:56:
58:8b:7a:68:f8:e5:a6:38:52:fa:a9:7c:e6:0f:89:0c:bd:94:
a9:03:e5:42:31:04:5a:d3:46:3f:99:89:06:cd:d6:f4:27:0f:
16:2e:02:d4:c8:8c:b0:fc:e3:cb:5f:1e:34:b9:8c:13:fa:b3:
59:36:3d:a6:15:ed:c0:b8:43:62:04:d4:71:5d:47:05:87:92:
ae:3c:de:ba:b4:15:e7:3e:4a:3c:81:fb:3d:2a:a8:c5:37:b8:
f2:6d:52:7f:16:0f:7b:52:78:01:75:b7:ad:db:55:e7:2e:7e:
c7:3d:f2:81:1e:94:64:61:48:f3:6b:e0:37:36:30:c3:e5:b6:
08:33:6c:91:c6:92:14:5e:76:87:6d:42:31:08:42:ba:80:75:
4e:a9:d9:ee:3e:dd:41:0e:d7:da:9e:25:48:9f:83:43:8b:04:
8f:57:c6:c6:ef:b2:ee:1c:92:f0:91:0f:c1:2c:2a:61:28:8c:
d9:43:07:18:7f:f4:54:29:db:fd:4c:82:fb:6c:e3:2d:09:5b:
19:93:9b:c9:58:00:9a:cc:65:b8:be:d3:ed:54:d0:38:ee:88:
64:bd:cb:52:ac:f9:ec:90:c3:08:c3:94:d5:53:1e:f0:ae:24:
4c:e0:4e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org