Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/E4EgfXcxMOHFX5nLoT901Ti43sk.roa
File: E4EgfXcxMOHFX5nLoT901Ti43sk.roa (raw, json)
Hash identifier: KBkmPpuBQKft4MLzxnzl3tGbuyncxUhRJjSng1BePrU=
Subject key identifier: 13:81:20:7D:77:31:30:E1:C5:5F:99:CB:A1:3F:74:D5:38:B8:DE:C9
Certificate issuer: /CN=da01323efafee332064e278b97cb8d1f9d8fef79
Certificate serial: 0181F666A20228B6104B59981E32665D08D4
Authority key identifier: DA:01:32:3E:FA:FE:E3:32:06:4E:27:8B:97:CB:8D:1F:9D:8F:EF:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gEyPvr-4zIGTieLl8uNH52P73k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/E4EgfXcxMOHFX5nLoT901Ti43sk.roa
Signing time: Wed 13 Jul 2022 07:12:10 +0000
ROA not before: Wed 13 Jul 2022 07:12:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 188.244.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f6:66:a2:02:28:b6:10:4b:59:98:1e:32:66:5d:08:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da01323efafee332064e278b97cb8d1f9d8fef79
Validity
Not Before: Jul 13 07:12:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1381207d773130e1c55f99cba13f74d538b8dec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ae:57:e4:59:aa:36:d2:ed:fe:26:6d:85:27:
dd:40:8c:a3:b7:07:3e:ae:91:3c:62:95:7c:12:a6:
c7:3d:96:69:3d:d5:02:52:11:08:bf:58:b9:c7:33:
eb:14:84:83:86:12:9e:43:71:a9:ea:52:aa:0d:8c:
fc:3d:16:f3:e5:6b:2f:97:44:53:af:50:04:00:5d:
04:f2:7f:8d:cf:60:62:f8:87:7c:ef:56:a0:98:38:
23:d1:3a:b1:b9:55:eb:0a:bd:2b:20:d3:fa:a8:15:
bc:c5:67:21:85:52:17:e2:e0:92:7d:c3:00:e5:e8:
d6:35:cd:3d:fe:5a:f8:9e:6d:8a:06:7a:ab:67:b6:
0b:b9:27:68:62:46:c6:9f:9e:64:e5:72:8f:86:c2:
80:be:da:3b:b5:b9:6f:96:14:1a:0c:9e:d4:7d:4c:
13:72:47:c4:32:8b:29:d0:6f:13:3e:e2:35:57:68:
6f:ed:c4:ab:58:ce:6b:43:7e:a8:1f:5a:98:35:1b:
2e:f6:08:9c:3a:96:64:45:99:fa:c4:dd:24:0d:eb:
5e:48:d4:72:40:66:49:95:73:ea:37:be:2d:2f:98:
78:b9:cd:18:f1:9b:d0:35:53:8f:3e:41:b7:c7:8c:
f3:bc:55:9b:64:47:d9:fa:d9:00:d7:22:35:b9:54:
ea:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:81:20:7D:77:31:30:E1:C5:5F:99:CB:A1:3F:74:D5:38:B8:DE:C9
X509v3 Authority Key Identifier:
keyid:DA:01:32:3E:FA:FE:E3:32:06:4E:27:8B:97:CB:8D:1F:9D:8F:EF:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gEyPvr-4zIGTieLl8uNH52P73k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/E4EgfXcxMOHFX5nLoT901Ti43sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/78859a-f43c-4c21-96e2-9a7ae32c625b/1/2gEyPvr-4zIGTieLl8uNH52P73k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.112.0/24
Signature Algorithm: sha256WithRSAEncryption
59:f1:08:03:29:d8:7d:6d:d3:2c:fd:6f:ac:9e:4b:4a:ac:eb:
cd:77:02:52:ee:96:b6:ce:15:7e:88:f8:55:04:1c:e8:dd:e1:
08:29:a6:bf:1b:42:d3:e0:7f:f0:ba:23:7a:af:5e:d2:5b:94:
64:c6:9e:5a:3e:bc:cf:e2:bf:21:d5:51:4e:b7:f5:1a:4c:a3:
7a:e1:0d:9f:9b:52:07:2c:54:6d:fc:cf:1f:eb:c6:90:87:46:
8f:53:cb:db:b9:9c:26:0a:6b:9c:d8:3a:eb:15:c8:9f:13:53:
05:39:f4:33:4e:c1:3f:a3:eb:70:3a:51:fa:2f:0a:b6:24:8b:
09:49:09:99:08:e4:98:7d:b9:c6:79:ef:59:94:b1:91:9f:04:
ec:9f:0b:ff:ab:15:f0:50:e2:9a:8a:80:14:5f:d0:53:e3:57:
03:24:24:a7:f7:d8:e3:42:f8:4d:45:a9:4f:26:a4:c9:5d:4b:
79:45:df:cf:80:a0:bf:95:b5:d1:57:3b:aa:7a:31:cb:46:16:
6a:34:9b:99:83:8a:bd:60:68:59:82:41:c1:42:4b:9b:bc:bb:
01:d2:fa:75:ac:26:ba:59:06:31:7b:a9:5b:16:bd:78:55:fa:
28:60:ba:f3:62:df:59:12:90:5e:26:b4:28:19:3d:fa:f0:a6:
e9:c3:41:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org