Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/9LhQMR2iBjQaSVqPGV9_wSTcHcg.roa
File: 9LhQMR2iBjQaSVqPGV9_wSTcHcg.roa (raw, json)
Hash identifier: 2+RJPRqqFdjXOpPG6ohYOvaO2sh1x1PgSCm1rw3oeiI=
Subject key identifier: F4:B8:50:31:1D:A2:06:34:1A:49:5A:8F:19:5F:7F:C1:24:DC:1D:C8
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BA5E82
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/9LhQMR2iBjQaSVqPGV9_wSTcHcg.roa
Signing time: Sat 01 Jan 2022 14:05:04 +0000
ROA not before: Sat 01 Jan 2022 14:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47540
IP address blocks: 188.247.128.0/24 maxlen: 24
188.247.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62545538 (0x3ba5e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4b850311da206341a495a8f195f7fc124dc1dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dc:c9:c8:f7:4f:10:da:10:7a:52:fb:18:eb:
0f:fa:96:11:9c:ad:27:c2:ae:56:3a:66:66:17:ca:
7d:4d:a0:20:46:99:1c:28:8f:3b:73:6c:71:3f:ef:
b3:53:4a:09:4d:92:23:28:33:33:3d:0d:1f:9c:13:
5b:21:e3:df:5f:61:1d:7b:40:81:81:69:fc:3e:32:
e5:99:ba:23:8d:c5:84:26:fc:48:7b:a2:2a:35:f4:
a1:47:45:b5:a5:ea:43:cf:ec:52:a8:6e:4d:95:20:
9c:8f:94:26:42:fc:c8:10:02:58:b9:b9:e8:0a:57:
5d:a7:0c:71:e9:5c:01:c8:6d:2c:84:e8:65:c9:6b:
79:ae:53:ff:ee:66:3b:fc:b0:29:c7:27:3f:ad:12:
0a:05:e1:fc:0c:0a:63:65:6e:19:b2:64:02:25:8a:
09:2e:99:af:f0:46:f9:02:32:94:40:41:6e:a5:03:
d2:35:a0:bb:d5:aa:86:06:e3:d0:48:da:5a:1c:3d:
15:83:d7:c8:57:5f:b6:30:ea:1b:b9:57:fd:26:83:
d1:cf:47:7f:fd:54:26:4d:b0:aa:54:5c:4a:d6:b6:
4c:4b:0c:6e:d1:1a:02:1b:75:ab:00:58:78:fa:bf:
f0:4c:30:f4:df:b4:7f:83:45:3b:35:5f:ec:6e:6b:
b4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B8:50:31:1D:A2:06:34:1A:49:5A:8F:19:5F:7F:C1:24:DC:1D:C8
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/9LhQMR2iBjQaSVqPGV9_wSTcHcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.247.128.0/24
188.247.135.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:f4:86:5c:f3:e6:cd:d9:de:2b:b7:97:26:d2:ec:96:6f:59:
27:f7:fa:0c:be:a2:f0:b3:d1:d7:99:fc:cb:e2:25:28:0b:25:
4a:88:56:59:ff:6f:53:a7:d9:2b:84:3b:11:59:7c:34:a5:cb:
d7:fc:7b:cb:b2:ed:60:59:0b:3e:29:82:38:b2:19:7c:f6:34:
06:ab:c3:e3:ac:18:75:42:4e:ed:e0:0e:23:91:c6:76:96:04:
8b:37:8c:4a:1c:58:3c:a3:80:b8:52:ee:2d:24:c0:5b:5a:48:
d2:eb:2b:d6:26:2c:7d:59:20:34:23:01:e2:8d:95:1a:42:f8:
9d:a6:99:74:65:d0:6c:ac:9a:38:9d:54:5a:51:ef:5e:52:18:
a3:b1:2b:d7:c7:ac:e1:13:6f:4a:98:f6:8e:a3:ad:46:82:29:
06:2b:f3:1a:e2:df:db:e2:8c:c5:38:02:86:40:59:43:c5:f3:
45:5e:84:fc:ac:b5:1a:3f:6f:e5:17:ca:fe:5f:36:71:13:7b:
6e:35:8d:b5:13:f5:9a:28:73:e3:af:5a:5c:eb:15:ae:aa:21:
44:20:dc:b2:17:42:b1:a1:1f:1d:29:37:3a:d6:cc:df:b9:a8:
7c:e7:c1:e1:fe:00:19:25:ea:dd:ef:10:9c:ac:5d:a3:95:7b:
50:2c:0f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org