Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/n6tc5m4VMX-JSxRX0KonXQK7ZvQ.roa
File: n6tc5m4VMX-JSxRX0KonXQK7ZvQ.roa (raw, json)
Hash identifier: euEzCyAsoBkBedieN6cj6C1rl+lIOwZjhEKXeMricgQ=
Subject key identifier: 9F:AB:5C:E6:6E:15:31:7F:89:4B:14:57:D0:AA:27:5D:02:BB:66:F4
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C043AD
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/n6tc5m4VMX-JSxRX0KonXQK7ZvQ.roa
Signing time: Sun 01 May 2022 07:14:34 +0000
ROA not before: Sun 01 May 2022 07:14:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25097
IP address blocks: 188.210.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119896493 (0x42c043ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 1 07:14:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fab5ce66e15317f894b1457d0aa275d02bb66f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:71:e2:fe:f0:25:01:31:92:95:43:ed:a2:13:
77:bd:60:78:e9:4e:17:2a:35:84:09:e7:91:cf:43:
06:7b:d6:ca:f9:fc:8b:9b:29:7b:ae:f0:17:16:ba:
1d:f9:72:3c:5f:28:79:10:1f:3d:ff:7c:4e:30:13:
9e:51:c4:de:06:d1:b9:89:ab:80:9c:a8:9b:de:51:
e3:56:7a:30:ef:8f:52:32:9c:7f:d3:1c:4c:41:b8:
49:46:6b:e9:3a:49:e7:94:15:dc:e0:50:e9:bb:d6:
9e:aa:c0:27:bc:b6:a9:8b:02:55:9d:fd:c8:58:8a:
f1:85:39:ad:87:35:5f:65:aa:53:86:ea:21:50:cf:
f9:3e:16:55:1d:be:e9:0b:48:aa:d9:c9:da:a8:eb:
d6:90:05:39:43:6d:60:19:48:1c:97:e3:29:d3:a5:
a7:99:68:f8:cd:6c:ce:fd:16:87:ff:6d:50:1d:a0:
6c:b4:71:69:9d:1d:10:c7:c4:4e:1d:90:28:59:50:
8d:d4:04:e4:75:05:47:13:fb:c4:27:a2:f2:5c:56:
77:41:17:6c:34:53:37:11:c8:a8:6c:99:32:01:66:
33:5f:44:65:9b:25:ea:ad:b6:f9:af:18:ba:2c:02:
44:44:8a:59:35:14:b5:62:bd:c0:e7:d1:97:75:ae:
f9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AB:5C:E6:6E:15:31:7F:89:4B:14:57:D0:AA:27:5D:02:BB:66:F4
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/n6tc5m4VMX-JSxRX0KonXQK7ZvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.238.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:2b:f4:d3:f3:54:21:cb:7c:e2:0a:94:73:0a:f2:30:51:55:
7c:ba:c5:87:0c:3d:d0:c6:37:99:ef:b0:56:bf:98:e4:d8:a8:
2b:1b:80:58:76:06:eb:f2:5c:5a:88:e8:ae:f6:2e:3f:39:60:
f7:54:91:9a:58:cc:5c:89:fc:5d:7d:49:02:db:81:2c:05:77:
a0:15:a0:0f:1e:73:c7:b9:e9:c2:8a:16:c6:25:a4:d6:6b:ed:
c0:cd:ae:50:e0:24:85:d9:2f:eb:7b:2e:9b:b5:a4:62:21:4e:
4e:6b:c8:2e:4e:4e:81:60:19:bf:6c:80:36:dd:a4:eb:c2:c7:
2f:a6:70:b3:3d:6e:38:d9:9c:14:58:f2:27:81:5f:a1:96:bc:
88:03:cf:6f:05:77:f1:b6:9f:66:88:a3:b0:61:49:ed:53:7f:
e2:5c:b6:b7:8f:64:dc:7c:bf:0a:ec:d1:f1:fb:9e:2b:a5:c4:
61:15:c2:c4:dc:87:98:d1:c3:3b:54:67:b5:f1:7f:03:06:2c:
a4:cd:4d:72:b8:58:9e:4c:a8:a7:40:5d:f3:e5:96:4a:50:d9:
22:5f:80:d8:94:a8:31:e0:7e:ba:20:11:85:cb:62:82:ad:dc:
99:e0:fc:cf:ec:04:8b:ee:7e:4c:58:9e:55:54:82:63:2d:d4:
ac:aa:c9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org