Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tTlIQY1s5DpISpwg10IsXcEa-94.roa
File: tTlIQY1s5DpISpwg10IsXcEa-94.roa (raw, json)
Hash identifier: 4FLThmsxd7AToo47KQBAIp/yMJdYNUknY7B8Wl7TwwE=
Subject key identifier: B5:39:48:41:8D:6C:E4:3A:48:4A:9C:20:D7:42:2C:5D:C1:1A:FB:DE
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0182442EA9F17A887A116F16A81D3CF7D70B
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tTlIQY1s5DpISpwg10IsXcEa-94.roa
Signing time: Thu 28 Jul 2022 09:41:24 +0000
ROA not before: Thu 28 Jul 2022 09:41:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203657
IP address blocks: 188.132.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:2e:a9:f1:7a:88:7a:11:6f:16:a8:1d:3c:f7:d7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jul 28 09:41:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b53948418d6ce43a484a9c20d7422c5dc11afbde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fc:d6:ae:99:9d:43:31:ff:2a:d5:c8:b6:87:
87:e8:5a:16:63:c0:b4:0c:c7:fc:0b:bf:34:a6:15:
64:1f:66:d6:82:56:0b:ee:65:d1:dd:31:2c:b2:df:
d8:dc:25:9e:2e:7d:f6:f1:54:43:40:04:e2:a8:e6:
1c:7d:30:e3:8e:20:92:2e:c4:9d:8b:04:45:4b:06:
ab:82:c0:2b:fd:2d:8f:e5:35:d6:da:a8:ef:67:97:
c2:1f:60:20:a7:cb:0a:b7:9a:0e:84:7c:27:f9:df:
68:db:37:47:cd:fa:35:28:57:71:6d:38:29:31:4e:
fd:bd:1f:19:4c:64:cf:79:60:1d:d4:95:00:c0:fa:
bc:ec:bd:fa:8b:b1:93:1f:f3:52:67:e1:03:30:21:
ee:25:7a:bf:25:09:50:b4:34:79:95:2a:64:45:b3:
df:82:69:0c:0e:94:ab:81:b4:71:81:42:7a:87:39:
40:f9:5d:6c:90:c2:75:06:73:ef:a1:68:4f:11:f1:
27:3f:a2:6b:56:45:ec:e4:e2:b3:a4:3a:8c:1a:ce:
9b:82:75:92:ef:65:03:c1:51:ee:46:bd:62:70:4a:
2c:7f:55:54:5b:5e:23:83:30:ef:1a:9c:d3:d5:51:
5d:e3:d3:4a:79:f3:4b:a1:85:e4:d5:bb:d5:d8:43:
1d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:39:48:41:8D:6C:E4:3A:48:4A:9C:20:D7:42:2C:5D:C1:1A:FB:DE
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tTlIQY1s5DpISpwg10IsXcEa-94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.149.0/24
Signature Algorithm: sha256WithRSAEncryption
98:8d:57:f3:dd:b8:77:26:60:d0:f3:3a:9d:bd:53:73:a3:d5:
d5:bc:12:d0:b4:40:da:25:7b:a2:44:2d:ee:53:d3:fd:49:c5:
86:af:47:a3:46:d7:58:c2:3a:07:01:66:3c:93:2f:29:e9:64:
4c:e2:2f:65:93:90:86:8c:f4:37:7e:2f:4d:43:5b:47:fa:94:
30:2a:84:53:4f:f2:1c:ac:49:eb:dd:a4:e8:a8:9f:69:02:92:
5a:56:b8:c8:cb:43:55:92:97:2b:02:80:34:b0:11:fc:35:eb:
bc:84:d8:bf:b0:21:b8:d5:fa:1a:94:ce:e1:4a:6b:2a:fc:c8:
63:b2:c2:10:8b:43:86:7e:e5:c3:3f:8b:e8:40:30:b5:87:17:
e1:44:08:df:b4:62:83:3b:3b:fd:2a:1a:bd:b0:7a:74:e7:27:
6c:d7:09:85:37:7c:01:e5:ac:f8:51:23:5b:a6:c8:e4:78:9d:
6a:84:26:8b:a7:ae:cd:e4:5e:c2:ba:ec:19:0b:f4:3a:65:2b:
aa:cc:05:c0:43:f5:77:74:82:1d:39:34:9c:6d:50:e5:44:fd:
f0:86:e4:02:5c:a2:7b:66:e1:06:62:e7:42:6e:39:22:bb:b4:
ef:e6:47:10:cc:d4:c0:39:df:ce:20:0a:2f:a3:42:5e:af:bb:
22:c6:45:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org