Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/m59Z66kWL6E1GDONhADZSBs3WsE.roa
File: m59Z66kWL6E1GDONhADZSBs3WsE.roa (raw, json)
Hash identifier: OoVeTi6U3Wo2gxMMIRBLxdNL/zlLWn4SwBWG93VB7hU=
Subject key identifier: 9B:9F:59:EB:A9:16:2F:A1:35:18:33:8D:84:00:D9:48:1B:37:5A:C1
Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Certificate serial: 0CA70C26
Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/m59Z66kWL6E1GDONhADZSBs3WsE.roa
Signing time: Fri 04 Feb 2022 08:15:58 +0000
ROA not before: Fri 04 Feb 2022 08:15:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 188.214.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212274214 (0xca70c26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Validity
Not Before: Feb 4 08:15:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b9f59eba9162fa13518338d8400d9481b375ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a2:91:c0:76:9c:ad:8e:ac:79:8c:a9:b4:49:
80:a9:c4:b4:75:72:d7:81:8a:8f:45:fe:9f:ae:c4:
87:da:68:44:f8:f2:c7:f9:e4:d5:d9:0e:f8:f4:98:
b3:22:5f:ad:25:ea:a2:37:e8:42:2d:94:39:65:0f:
2a:51:7b:b4:b0:e2:e0:32:d8:ff:64:15:94:1f:9d:
3e:b3:d8:c6:ec:fc:d8:05:68:f2:5d:b5:fa:ba:0d:
c6:ef:d0:67:1c:1e:ef:e9:3a:8b:f4:5f:fc:3d:46:
21:d3:43:39:0b:29:34:4f:6b:86:05:32:31:c9:47:
a7:c0:d0:48:45:df:25:a4:b5:45:9e:47:48:27:97:
23:01:30:46:ff:c0:72:c8:35:bc:dc:cf:ab:04:02:
37:38:7b:03:6d:d3:ad:94:35:e3:87:c5:ea:e2:10:
79:4a:fb:bf:56:32:34:5e:25:52:8e:72:e6:fc:a8:
6b:6c:e5:0b:0e:bf:eb:5d:8e:7c:98:35:0b:f9:dd:
44:fc:80:85:5f:fd:7a:f6:25:7d:16:29:89:31:7b:
38:36:3b:28:44:26:d8:28:f0:2a:d4:8a:99:b5:b7:
af:a3:76:76:66:5e:3d:08:92:c7:2c:77:84:47:18:
a5:a2:12:b4:21:26:76:7d:02:d1:d8:e8:0e:93:cc:
0b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9F:59:EB:A9:16:2F:A1:35:18:33:8D:84:00:D9:48:1B:37:5A:C1
X509v3 Authority Key Identifier:
keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/m59Z66kWL6E1GDONhADZSBs3WsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.144.0/24
Signature Algorithm: sha256WithRSAEncryption
45:33:17:ca:a5:5f:bf:77:37:44:81:f7:cb:69:ce:97:3f:8a:
f4:ac:28:92:72:31:3d:ad:d2:d4:02:5e:9b:f3:8d:05:d4:52:
5a:1b:b9:aa:8a:b4:10:74:7b:87:40:13:24:e2:df:ab:e7:fe:
e9:4b:3f:30:d0:49:a5:d9:a5:c1:a3:dd:21:11:80:1a:61:67:
00:d5:6d:78:b4:7c:1e:41:ec:4c:1a:77:92:2a:9a:9e:56:e4:
34:c7:09:ca:b1:8a:b4:90:3f:b3:43:9f:6d:03:d4:3e:e8:0c:
cc:d9:3f:b2:94:da:47:6a:72:f4:8b:ef:db:aa:ea:af:cc:c8:
0a:d7:e2:e6:cb:a7:d8:87:f9:7e:cf:01:c1:d4:f4:4f:15:88:
76:a7:4b:8b:50:1c:62:92:c6:ad:dc:42:17:03:de:e7:ea:00:
f8:a0:34:5d:db:f9:9d:0d:d3:97:9f:51:7b:40:af:d0:d6:b2:
20:3f:83:ec:19:61:57:43:6a:05:30:8a:0b:da:e3:87:c7:56:
d7:4a:43:92:92:da:ab:a9:e0:21:56:d8:b1:b0:ba:c9:f3:d5:
4c:51:91:69:30:fd:64:62:a0:7d:0f:ed:8f:e2:53:cd:4f:d9:
0c:73:9b:2c:ef:e1:84:c4:fb:69:17:1c:bf:56:c2:a3:65:08:
69:41:0e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:02 2025 by rpki-client