Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/IJR15QAGUK7dfNnK0LZGQg3zGes.roa
File: IJR15QAGUK7dfNnK0LZGQg3zGes.roa (raw, json)
Hash identifier: ra9rXLqb/xt9pPN9vcng8B14CtCbRkkCqcSpdPvxfwU=
Subject key identifier: 20:94:75:E5:00:06:50:AE:DD:7C:D9:CA:D0:B6:46:42:0D:F3:19:EB
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 177F029C
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/IJR15QAGUK7dfNnK0LZGQg3zGes.roa
Signing time: Tue 01 Mar 2022 22:25:26 +0000
ROA not before: Tue 01 Mar 2022 22:25:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208295
IP address blocks: 188.72.100.0/24 maxlen: 24
188.72.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394199708 (0x177f029c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Mar 1 22:25:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=209475e5000650aedd7cd9cad0b646420df319eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:22:49:90:98:6e:83:f2:dd:9f:ce:53:e5:4f:
ce:48:cc:fb:88:1e:30:88:52:d5:e5:97:91:a1:0d:
76:aa:1c:95:c4:34:7b:3f:2a:bf:72:fe:a6:ed:5f:
8a:e5:59:20:0f:3f:a9:38:14:13:85:df:39:f9:b0:
58:8a:09:46:1a:1d:e8:b1:70:8a:4d:26:ac:a3:d2:
73:91:a8:c9:4f:fd:f7:32:f6:53:d4:ce:3c:21:fc:
23:8b:11:13:0d:79:5c:1e:cd:b6:cf:2e:d8:5c:49:
01:36:5e:a9:3a:29:ce:76:61:b1:16:7f:34:05:56:
61:bf:20:2e:93:5e:9b:f6:04:f4:73:7d:6d:a0:ea:
41:3a:0a:12:df:23:84:1e:cb:ce:ba:41:83:5a:2a:
b0:d2:45:a9:cb:b6:a3:15:04:f8:13:84:90:df:25:
07:c7:2b:76:c1:ea:8a:16:ba:e4:68:79:88:f3:e9:
0b:1a:ec:bc:44:ac:15:36:ff:de:bb:1c:07:a3:c8:
01:4e:ba:d4:b4:d3:5c:a4:d2:37:4e:b2:f6:88:bb:
21:75:1a:63:fe:a9:3a:ce:3d:9b:02:e4:0f:47:33:
38:21:b8:73:ae:f7:49:0e:1e:fb:69:b9:59:7a:f8:
f5:e7:63:25:6a:d1:c7:05:53:ae:a1:36:3e:ee:8e:
d2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:94:75:E5:00:06:50:AE:DD:7C:D9:CA:D0:B6:46:42:0D:F3:19:EB
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/IJR15QAGUK7dfNnK0LZGQg3zGes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.99.0-188.72.100.255
Signature Algorithm: sha256WithRSAEncryption
0a:d1:a7:a8:6c:e0:d5:36:4b:21:a2:b8:3f:aa:2f:62:a5:d3:
7b:e9:8e:ea:32:d2:c8:07:8f:49:59:52:9f:cb:cd:6c:7f:2e:
93:65:f2:c6:6c:7f:6a:61:9b:ab:7b:01:33:14:38:ad:c5:0d:
1b:e9:10:c4:39:65:77:0b:b9:cf:73:87:c6:59:63:f5:85:e3:
f5:f3:35:6d:2e:47:3f:97:d6:f3:27:cc:0a:93:c3:df:52:63:
5e:db:6d:de:39:4f:03:5a:ee:1e:f1:66:20:91:1f:27:91:96:
9e:a9:85:71:5b:11:37:9b:ac:ba:2e:e3:ce:ed:be:93:d5:7d:
04:f0:af:29:f3:56:9d:95:b4:65:07:b4:73:18:df:94:ac:8f:
6b:b4:70:2b:59:ff:a5:8f:e1:97:7f:60:a7:04:8a:9f:20:07:
7f:00:53:29:3e:5f:37:b1:8b:37:a3:cd:5e:8b:07:2e:02:db:
3f:4d:d0:1e:80:24:a8:0d:2a:3d:99:aa:3c:b4:e3:0e:73:72:
ca:7a:6e:ac:5e:af:14:f7:4e:47:5a:5c:99:64:9b:d0:10:80:
34:ae:47:a5:e8:4e:05:b6:97:07:a5:92:48:3b:c7:2e:37:49:
a5:35:e8:dc:1a:9a:28:dd:13:b2:87:95:79:fa:3c:f2:b8:8f:
95:2e:fd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org