Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/Hb8y9GgvILE3W189IgjYyhaPVoc.roa
File: Hb8y9GgvILE3W189IgjYyhaPVoc.roa (raw, json)
Hash identifier: CIGA/CjEzAPRhtpIZYf7qY52oha3zYKFxPkgXVSsVZM=
Subject key identifier: 1D:BF:32:F4:68:2F:20:B1:37:5B:5F:3D:22:08:D8:CA:16:8F:56:87
Certificate issuer: /CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Certificate serial: 0BD85B76
Authority key identifier: B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/Hb8y9GgvILE3W189IgjYyhaPVoc.roa
Signing time: Sat 01 Jan 2022 08:53:32 +0000
ROA not before: Sat 01 Jan 2022 08:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43885
IP address blocks: 188.215.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198728566 (0xbd85b76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Validity
Not Before: Jan 1 08:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dbf32f4682f20b1375b5f3d2208d8ca168f5687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:05:cd:5e:ff:2c:51:7c:e0:e0:f4:8c:a1:
c5:1f:bf:96:db:77:b7:cd:28:11:43:18:56:3f:69:
79:fe:45:e9:16:ae:14:0e:8a:d9:1d:e1:2e:7d:ac:
1d:27:b3:3a:58:c3:2b:f7:bf:0b:2f:1d:f5:de:8f:
64:08:d1:19:f7:80:4f:af:85:a7:5f:40:5f:25:c6:
e9:7d:a6:e7:b1:07:10:ad:20:7a:54:78:e1:e1:17:
5b:b0:d5:25:31:fb:ac:3f:94:82:78:d8:5b:c4:eb:
bd:2d:7c:b9:41:94:a6:c1:60:bc:63:2c:4d:dd:13:
96:16:12:9a:a5:bf:7d:ae:e4:7d:66:8a:f5:ee:46:
69:71:96:05:0e:3b:6f:80:b7:89:79:4c:55:ff:96:
f1:0f:3c:74:2f:1b:d1:c9:c4:eb:fc:94:e0:e1:7f:
8e:25:ad:06:e9:d8:75:16:82:ab:40:bd:d7:9c:47:
d1:37:75:5e:f2:c5:2a:c3:a2:1e:2c:da:e3:c3:d8:
b7:00:f3:8d:5b:ff:c9:37:a0:5d:ee:c8:d4:6a:d3:
1b:cb:33:d2:2d:eb:c4:ea:54:84:a4:76:47:15:f8:
3a:29:bb:9a:17:be:c3:09:6d:e2:0c:78:b2:36:58:
0c:d7:81:08:49:cc:a0:62:e9:39:c9:d2:b9:df:86:
2b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BF:32:F4:68:2F:20:B1:37:5B:5F:3D:22:08:D8:CA:16:8F:56:87
X509v3 Authority Key Identifier:
keyid:B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/Hb8y9GgvILE3W189IgjYyhaPVoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/uMiqGHMPSoPihSxWklUau1se5-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.84.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:39:5a:2c:76:2e:86:fc:36:f5:d0:89:5e:24:c4:e2:e5:87:
80:fa:b9:0b:5d:f2:78:00:fe:f2:63:b7:81:9d:ae:bc:23:45:
08:60:11:39:31:72:18:20:6b:b2:09:04:e3:88:8a:ef:b6:6b:
5c:cb:4f:f6:f1:72:1a:a4:05:e5:65:df:f3:e1:2f:2d:be:93:
c8:9e:94:0f:0d:02:32:c5:4d:f3:e2:ea:33:10:68:73:1b:f8:
a2:70:f3:31:9e:6a:7d:47:e9:b5:ac:80:eb:7b:c3:06:dd:7e:
af:4d:fe:27:b5:66:51:62:93:d3:ef:24:12:fa:b5:3b:83:f7:
ef:54:ea:bb:1c:56:0d:26:c7:72:54:d1:9b:93:c8:59:03:e0:
28:ea:43:e4:30:0b:b2:d5:fb:f1:03:45:69:a7:3b:1c:fd:34:
c9:84:9f:15:3a:59:99:8e:ce:09:df:6f:c1:09:ab:1a:53:ec:
4d:14:d7:36:4f:91:b0:55:d2:f6:b9:35:f1:43:16:7a:b7:2c:
9e:ce:6b:b7:6f:82:bc:cc:a0:01:32:30:b7:b6:9f:ab:58:9d:
85:55:58:ad:ef:5e:48:2d:ee:c2:12:60:31:80:75:e4:32:42:
eb:18:17:3e:7b:32:a0:64:36:6a:84:0b:1b:74:2f:c0:bf:c5:
db:af:5a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:27 2024 by rpki-client on console-ams.rpki-client.org