Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/exbT_SBPamSXNk1cXcwDObylGEc.roa
File: exbT_SBPamSXNk1cXcwDObylGEc.roa (raw, json)
Hash identifier: Xa8/8ktTQOGvKTzapOsB2J+4D+37NiqBlC2QfstfHgc=
Subject key identifier: 7B:16:D3:FD:20:4F:6A:64:97:36:4D:5C:5D:CC:03:39:BC:A5:18:47
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 03D788A1
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/exbT_SBPamSXNk1cXcwDObylGEc.roa
Signing time: Tue 01 Mar 2022 12:36:54 +0000
ROA not before: Tue 01 Mar 2022 12:36:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 188.132.178.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64456865 (0x3d788a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Mar 1 12:36:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b16d3fd204f6a6497364d5c5dcc0339bca51847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:bc:f9:0f:79:0a:a9:c3:2e:cd:6c:58:d7:
c2:2e:f5:d2:dc:87:65:67:8b:85:af:a3:33:0d:ba:
a1:f5:82:dc:23:ab:8c:f7:65:e0:fd:38:cc:ad:1a:
b2:0a:a3:9f:08:7e:4b:f9:2b:ee:75:bd:32:37:37:
af:7b:23:0c:54:61:4f:d4:03:6c:67:4c:41:77:ad:
36:2c:8c:ec:e5:60:a7:b8:79:f7:bb:db:ba:24:e3:
6b:f0:e3:e5:4d:a6:ce:d6:4d:9c:9b:61:83:17:cc:
cb:c1:a0:9f:8a:66:9e:ff:03:a7:f1:b9:eb:22:8b:
32:9e:49:3c:02:87:e2:1a:09:e5:f3:f5:12:c6:67:
12:cb:d2:3e:3b:3d:6a:f4:61:6a:e8:cd:e0:f9:1e:
52:99:46:41:6b:20:a2:7b:46:19:1a:99:30:7d:fb:
52:89:a8:e2:c4:ba:ed:6f:7f:c8:77:50:f9:3e:31:
16:45:5c:4e:71:0d:09:21:a0:27:95:dc:81:cd:54:
5c:ed:11:22:92:4c:6b:40:8d:39:b4:49:98:d7:a4:
e3:6e:15:19:c4:19:7c:1a:8f:3d:6d:e8:bd:48:49:
5b:68:92:16:6e:82:e3:c4:0e:db:47:3b:53:4e:39:
cb:5b:d4:7d:fb:71:be:3d:c1:27:5f:a5:76:03:4f:
6f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:16:D3:FD:20:4F:6A:64:97:36:4D:5C:5D:CC:03:39:BC:A5:18:47
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/exbT_SBPamSXNk1cXcwDObylGEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.178.0/24
Signature Algorithm: sha256WithRSAEncryption
82:c5:29:11:e9:43:cd:38:7c:9f:60:b4:4b:74:79:8d:e4:df:
63:f7:be:0b:a6:40:e5:9e:af:a0:29:f1:6f:2f:41:a6:73:84:
98:e4:cc:c8:74:d8:95:32:ed:dc:d2:d0:06:ee:9b:75:0e:1c:
d8:28:b2:4c:49:88:e2:c1:ee:87:f1:54:e2:4e:36:4e:99:1f:
03:a1:c2:b5:92:88:48:53:16:20:8d:37:a6:e8:25:73:b7:07:
23:3b:ab:7c:00:ee:2e:21:db:74:db:78:e2:07:b2:00:dc:f8:
14:35:bf:b7:9f:83:6d:bb:bd:5e:4b:7d:b7:05:e6:c2:a5:14:
61:c7:53:52:3b:ae:09:92:de:ab:2a:a7:23:c0:91:58:21:df:
3a:f3:68:f4:6e:c9:ed:c1:78:34:67:64:c2:3d:ca:60:4d:28:
bf:6c:d0:b1:b8:b2:40:f5:cf:12:f2:34:2c:fa:20:89:32:fd:
d7:ec:e7:c2:86:8d:f6:54:84:63:bb:ab:bc:33:97:12:fd:29:
ab:06:55:cf:24:3f:94:9b:34:43:06:c0:e0:83:29:7e:2a:ea:
15:c4:cd:ab:3f:39:bd:39:58:c8:2c:81:6d:98:94:3d:e5:f1:
55:36:bb:f6:c3:b7:c0:4a:cb:42:fa:15:d5:db:32:c0:49:17:
af:68:10:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org