Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CG4xETgXlL7lkq4DmLSoAW3ST48.roa
File: CG4xETgXlL7lkq4DmLSoAW3ST48.roa (raw, json)
Hash identifier: 5FZ+8xL7B9o9bndsIN1EAh8ZjLaXT7JE8cYWrPshOwQ=
Subject key identifier: 08:6E:31:11:38:17:94:BE:E5:92:AE:03:98:B4:A8:01:6D:D2:4F:8F
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42FE6F11
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CG4xETgXlL7lkq4DmLSoAW3ST48.roa
Signing time: Mon 16 May 2022 08:18:15 +0000
ROA not before: Mon 16 May 2022 08:18:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39016
IP address blocks: 188.241.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1123970833 (0x42fe6f11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 16 08:18:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=086e3111381794bee592ae0398b4a8016dd24f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:74:b9:47:a7:85:dd:db:4f:9f:b6:41:a6:9b:
60:fd:55:af:fc:b4:46:13:f6:21:e1:95:97:e2:75:
51:95:41:b3:10:8c:02:41:1a:3c:54:15:d3:25:66:
e4:c3:b7:b0:60:71:3a:2a:3b:36:9f:fa:70:13:ed:
71:68:cf:6b:7a:6e:e4:27:ac:7b:e5:00:e3:91:a7:
7f:c7:28:d7:5f:f5:73:d5:8c:f9:c2:43:01:ce:46:
9e:58:3f:29:36:4a:32:99:3e:1a:92:e8:ff:09:19:
1a:64:34:fe:a8:f4:7b:0f:bc:94:ea:bd:db:27:9a:
e0:e9:1d:d6:ea:be:67:0c:aa:5a:fa:52:91:64:eb:
1d:ed:48:a5:f1:18:a2:20:d4:e4:c7:43:f1:d2:c9:
93:2b:76:99:e6:79:5d:1f:e1:2e:70:f4:fb:97:54:
e7:6d:b7:71:bd:cf:f1:f5:9a:ad:8b:98:a9:f7:2e:
fe:e2:c9:2f:69:c5:cf:6c:f3:f2:ba:3d:41:b4:24:
c3:50:27:ca:76:e0:6c:5b:c8:5d:6e:f8:f7:58:ce:
d1:ba:a6:74:95:d4:2e:64:69:59:7d:5f:40:38:7a:
db:a0:97:59:b8:2b:49:9c:b6:95:85:e4:11:76:aa:
6b:64:3d:52:2f:f0:c9:a1:45:d8:e5:17:4a:6d:25:
54:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6E:31:11:38:17:94:BE:E5:92:AE:03:98:B4:A8:01:6D:D2:4F:8F
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/CG4xETgXlL7lkq4DmLSoAW3ST48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.127.0/24
Signature Algorithm: sha256WithRSAEncryption
01:1a:fc:fd:c8:4a:20:e3:7c:f7:5e:2f:ca:7b:99:9c:d1:1c:
da:4f:d2:5e:35:b9:c5:1f:1b:e2:0a:dd:97:2b:47:81:15:12:
42:5e:e5:c6:ef:39:f4:89:00:a7:78:d6:c1:52:6a:2b:90:83:
65:3c:6e:a8:2f:03:50:64:20:2e:25:48:0d:d6:b4:3b:24:f1:
2d:6d:66:9f:92:1b:37:2e:22:ac:1e:1d:b9:34:2f:c7:ee:a9:
4f:68:2d:64:f6:b7:6a:8a:09:2f:33:f6:21:d6:e9:9c:d6:42:
6b:03:18:f9:2b:6e:0a:0e:23:d8:02:f7:1d:fd:bd:82:b4:d9:
2c:01:00:7f:58:43:24:4f:44:16:ab:62:bf:33:8b:75:c2:07:
03:6d:fd:9d:7b:33:9c:68:45:41:57:7c:5e:6c:2a:ea:72:26:
00:57:55:c8:64:77:3a:d6:0b:32:95:0a:e3:c9:46:fe:e7:df:
3a:9b:98:a6:d3:c3:26:6d:0d:c1:43:49:3b:db:02:d6:1a:c2:
68:94:48:bc:7f:d0:87:27:3d:3c:7d:84:8d:9e:db:d8:f4:c1:
37:ad:32:08:57:5f:52:0e:03:14:5e:74:62:9a:f0:93:2e:a5:
e8:6e:f0:db:e7:c8:cc:8c:e2:e9:4a:91:77:e6:cc:fa:5b:fa:
20:e3:0d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org