Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8bdyKCuzQUCcuCyc5gcf8A0tsRE.roa
File: 8bdyKCuzQUCcuCyc5gcf8A0tsRE.roa (raw, json)
Hash identifier: phkcfvIkqgPIY5CIhwrtvmmzuWxPUcuRyk5rqov7fX8=
Subject key identifier: F1:B7:72:28:2B:B3:41:40:9C:B8:2C:9C:E6:07:1F:F0:0D:2D:B1:11
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018259AA378865D39F4C20CF9224756E5658
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8bdyKCuzQUCcuCyc5gcf8A0tsRE.roa
Signing time: Mon 01 Aug 2022 13:48:23 +0000
ROA not before: Mon 01 Aug 2022 13:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49100
IP address blocks: 188.253.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:aa:37:88:65:d3:9f:4c:20:cf:92:24:75:6e:56:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Aug 1 13:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1b772282bb341409cb82c9ce6071ff00d2db111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:d0:13:a6:d0:9d:2e:16:c9:d4:87:77:c3:
4c:20:bf:99:14:93:41:80:ff:62:56:3c:b1:93:a2:
e8:c4:d9:50:a4:cc:d3:77:48:24:b7:24:ba:6f:9c:
a0:57:74:78:7e:c0:cf:dd:b5:dd:3f:35:76:22:7a:
31:5a:36:77:44:9e:7a:b8:a7:0d:9c:8a:21:d2:db:
33:26:c6:ff:56:01:43:61:fd:b3:12:02:37:91:04:
a7:5c:f8:bd:aa:0f:79:fd:c6:8d:f6:7e:98:6a:ce:
1a:e3:9b:74:b8:fd:23:ae:1d:0f:2a:cf:96:73:1d:
49:fc:27:51:19:76:e3:7e:09:2a:f9:65:95:52:84:
7c:b1:3a:c4:29:00:e8:75:d5:03:85:8a:22:70:e5:
a5:c9:c6:f5:e6:b8:91:5b:75:10:f7:c2:bd:11:a3:
b9:70:28:d6:f3:5b:82:3b:35:10:a4:50:ea:55:e0:
70:99:46:d7:c0:de:85:87:fc:2f:c7:c7:c8:90:53:
43:95:bc:26:3b:4c:2d:da:df:d1:b3:b2:e9:4b:db:
e1:a6:ac:04:8b:0c:74:ba:7c:a8:0d:32:76:b0:5b:
77:60:ea:56:41:18:4e:eb:4a:7c:56:fe:1b:a9:09:
e5:b7:f7:d8:58:3b:77:42:05:ba:2b:77:67:fa:12:
87:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B7:72:28:2B:B3:41:40:9C:B8:2C:9C:E6:07:1F:F0:0D:2D:B1:11
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8bdyKCuzQUCcuCyc5gcf8A0tsRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.253.96.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:5a:24:e0:96:f4:3f:11:e1:6e:ad:9b:78:7e:37:14:04:9a:
fa:86:dd:98:25:8f:44:4b:e4:d9:5e:10:04:ca:d7:b6:2c:91:
4f:85:7f:2a:79:8e:d6:93:2e:15:55:2a:bc:de:35:6a:dd:d5:
e4:9b:ec:0f:d1:8a:b7:f8:41:49:e1:9e:38:20:27:3c:12:7c:
fe:f3:26:e6:b0:59:3c:2d:4d:5d:81:44:cd:7f:60:91:42:1e:
47:8f:0b:e1:50:d0:63:6e:a7:8c:30:c0:a3:cb:62:8b:a2:5b:
98:7a:4c:ee:2e:a4:0b:76:98:d4:da:d4:bd:62:f3:57:42:b5:
39:d6:15:91:73:67:d6:3a:a8:fc:57:76:62:a2:b2:57:8d:ba:
82:c3:6e:e5:22:6f:78:4f:50:f0:59:1e:f4:9a:9f:d0:6a:a2:
c1:f5:98:9c:24:01:d4:7b:a4:08:df:2c:92:92:46:fd:f1:59:
6c:d2:0f:33:45:51:f2:e4:a1:e3:46:3b:9d:27:2e:67:5d:4f:
04:18:c4:39:81:d8:94:6c:fa:2b:4d:fb:3d:af:eb:b8:6c:4a:
ef:f1:6f:48:77:bb:1f:db:ef:13:16:f6:5f:bd:32:9a:b2:53:
e2:53:b5:3d:bd:12:18:27:50:03:b0:1a:c6:ec:46:a5:13:de:
0e:7e:b1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org