Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/57f512-a29f-44ed-a7a1-0e7cbbcc62d0/1/dXkSkq0dqiOwnZ0vatVd67E9MBo.roa
File: dXkSkq0dqiOwnZ0vatVd67E9MBo.roa (raw, json)
Hash identifier: oiVieJkp282hObkpQTAG4D/ss1lpHmUzVqIQqVjja1U=
Subject key identifier: 75:79:12:92:AD:1D:AA:23:B0:9D:9D:2F:6A:D5:5D:EB:B1:3D:30:1A
Certificate issuer: /CN=647530b4fa8899a30bb2e65b93f0119fda9bc05d
Certificate serial: 051F4ACB
Authority key identifier: 64:75:30:B4:FA:88:99:A3:0B:B2:E6:5B:93:F0:11:9F:DA:9B:C0:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHUwtPqImaMLsuZbk_ARn9qbwF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/57f512-a29f-44ed-a7a1-0e7cbbcc62d0/1/dXkSkq0dqiOwnZ0vatVd67E9MBo.roa
Signing time: Sat 01 Jan 2022 06:03:06 +0000
ROA not before: Sat 01 Jan 2022 06:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207294
IP address blocks: 188.190.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85936843 (0x51f4acb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=647530b4fa8899a30bb2e65b93f0119fda9bc05d
Validity
Not Before: Jan 1 06:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75791292ad1daa23b09d9d2f6ad55debb13d301a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:c5:5e:90:35:be:5c:d1:fa:da:e7:ef:95:
12:cc:6b:73:d5:6a:54:4a:c6:0f:2d:44:d6:f3:0a:
c1:eb:09:6d:c5:e9:6b:9c:27:79:a9:c4:2d:58:dc:
c3:35:c7:cb:53:e5:53:13:e4:a9:ce:2e:57:4a:cd:
21:26:bf:9b:91:54:83:92:50:e1:05:ac:17:38:6f:
ba:e8:f4:fe:bf:db:a1:c6:b2:95:b7:47:05:ec:bb:
9a:0e:aa:a1:7e:67:8c:a2:ae:e2:1d:00:83:31:ea:
3a:a9:8e:d4:4c:0b:ee:80:60:21:a1:ff:74:cc:93:
3a:62:e0:eb:cb:66:99:04:a9:e9:f7:54:82:01:8b:
e6:5e:7c:0f:db:7e:89:cd:21:bf:8b:eb:2c:ae:99:
f3:5e:cc:3c:41:36:ee:e3:d2:98:1c:49:a6:1b:e4:
bd:fa:eb:f1:96:7b:2c:19:a7:59:26:a9:7f:23:dc:
7a:06:b0:56:f5:7a:d2:27:d0:1f:9d:0c:6d:d2:9c:
a9:5d:5b:a6:bd:3a:d9:d4:d5:dd:c5:8a:8f:02:3d:
35:83:f7:d1:5a:a3:f7:a8:8e:46:38:7a:f1:65:c5:
03:64:26:68:2a:9f:6d:7f:c7:ee:7f:32:8a:ca:b1:
e5:9c:bd:d3:b9:7b:1f:e4:03:2f:72:fa:25:a7:16:
16:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:79:12:92:AD:1D:AA:23:B0:9D:9D:2F:6A:D5:5D:EB:B1:3D:30:1A
X509v3 Authority Key Identifier:
keyid:64:75:30:B4:FA:88:99:A3:0B:B2:E6:5B:93:F0:11:9F:DA:9B:C0:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHUwtPqImaMLsuZbk_ARn9qbwF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/57f512-a29f-44ed-a7a1-0e7cbbcc62d0/1/dXkSkq0dqiOwnZ0vatVd67E9MBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/57f512-a29f-44ed-a7a1-0e7cbbcc62d0/1/ZHUwtPqImaMLsuZbk_ARn9qbwF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.124.0/22
Signature Algorithm: sha256WithRSAEncryption
44:25:54:1f:af:44:94:9b:3b:fc:7e:1a:98:5f:eb:f2:96:b9:
7c:9f:62:98:59:a4:83:c6:1e:0c:a4:96:2e:b8:52:88:d3:59:
db:97:e4:e1:be:b0:20:af:61:fd:bd:6e:fd:8d:6e:14:45:bc:
c2:bc:2f:28:f0:44:b9:71:a9:82:ad:d3:e4:b3:5f:18:6d:25:
07:7c:86:02:fa:6c:41:90:56:e0:7e:b9:c6:2b:b6:1f:1e:2a:
b7:d7:ad:04:e5:f9:95:5e:fe:cb:56:9b:5f:43:40:be:71:d3:
26:c6:2b:48:4e:a5:d8:57:62:83:61:d7:bb:20:f7:2a:20:ae:
3a:41:64:47:85:79:08:f0:b7:6c:f1:9f:6e:c1:34:7c:3d:6c:
0d:e3:ab:f1:3b:ad:ec:be:a0:a6:5f:75:f1:b7:9a:79:77:dc:
5d:bb:8d:d5:b4:b1:2a:d8:3a:c4:6c:b2:19:bb:12:d3:3e:b5:
02:1b:4e:8b:09:57:72:c1:ff:f0:01:56:2d:08:cb:5f:f1:22:
fa:ff:b7:0c:4d:cb:39:d9:00:32:e5:5e:09:9e:bd:c3:4d:62:
21:23:67:bc:76:cb:ad:54:b0:90:cc:38:43:43:ca:7c:c6:a8:
61:ce:f1:29:b2:19:22:97:6a:6c:e9:ec:54:4b:c5:2f:d0:60:
9f:65:c1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:05 2025 by rpki-client