Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/0d79a4-88ae-42e4-928c-cc3e78f62dc2/1/8Dkr5wyCTDVw62bmk4398ChHvhM.roa
File: 8Dkr5wyCTDVw62bmk4398ChHvhM.roa (raw, json)
Hash identifier: 7Zc89LwJV6P+07O/mkdyptlcdRD2DJxL4TOTX4mC57k=
Subject key identifier: F0:39:2B:E7:0C:82:4C:35:70:EB:66:E6:93:8D:FD:F0:28:47:BE:13
Certificate issuer: /CN=77ca53a8a5a03b055cb3f340fcbeb85d7ad487a8
Certificate serial: 01853494946D2A66C6E98BCC480730767924
Authority key identifier: 77:CA:53:A8:A5:A0:3B:05:5C:B3:F3:40:FC:BE:B8:5D:7A:D4:87:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8pTqKWgOwVcs_NA_L64XXrUh6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/0d79a4-88ae-42e4-928c-cc3e78f62dc2/1/8Dkr5wyCTDVw62bmk4398ChHvhM.roa
Signing time: Wed 21 Dec 2022 12:07:10 +0000
ROA not before: Wed 21 Dec 2022 12:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16019
IP address blocks: 188.94.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:94:94:6d:2a:66:c6:e9:8b:cc:48:07:30:76:79:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77ca53a8a5a03b055cb3f340fcbeb85d7ad487a8
Validity
Not Before: Dec 21 12:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0392be70c824c3570eb66e6938dfdf02847be13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0e:14:d6:dc:b7:c2:3b:2d:4e:16:70:b1:20:
49:1a:69:3a:d6:f6:c5:24:ee:4b:fe:44:ad:4a:aa:
a9:fc:d0:c6:f6:38:ba:d1:b9:50:c3:51:a7:eb:97:
4a:fc:d3:1e:3a:e0:88:01:4d:a6:63:62:a2:50:45:
5c:25:ac:8e:c2:20:e4:91:31:19:52:14:76:15:05:
33:ad:85:43:0f:ba:e4:9b:ad:11:76:d5:a0:b5:dd:
ac:9b:54:f2:f8:31:79:23:19:43:70:3b:02:43:40:
fc:ad:ae:9e:c0:11:88:21:d9:e5:3b:67:5b:c5:b9:
f3:cd:01:92:78:f5:9e:d9:02:bb:ea:db:72:bd:69:
db:5a:3d:1c:c4:a7:d0:83:c2:c1:e2:47:36:8a:1e:
a7:f5:cf:8f:2a:5a:15:ab:be:aa:f1:35:7e:8b:bb:
72:ac:ea:db:38:9d:06:ed:da:49:ed:22:8b:4e:82:
1c:29:cb:4c:5d:21:fd:04:7e:19:3a:a5:33:81:10:
e8:ec:79:ea:7c:88:c6:b9:b1:53:fa:4b:32:7e:2e:
d6:52:25:50:1c:77:7e:b3:a6:5c:f3:5f:ff:75:74:
4f:e4:18:24:3b:4c:22:5f:0a:6b:05:86:0d:32:a9:
93:5c:68:7c:0e:82:aa:e5:22:77:83:8c:ca:74:63:
4e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:39:2B:E7:0C:82:4C:35:70:EB:66:E6:93:8D:FD:F0:28:47:BE:13
X509v3 Authority Key Identifier:
keyid:77:CA:53:A8:A5:A0:3B:05:5C:B3:F3:40:FC:BE:B8:5D:7A:D4:87:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8pTqKWgOwVcs_NA_L64XXrUh6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/0d79a4-88ae-42e4-928c-cc3e78f62dc2/1/8Dkr5wyCTDVw62bmk4398ChHvhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/0d79a4-88ae-42e4-928c-cc3e78f62dc2/1/d8pTqKWgOwVcs_NA_L64XXrUh6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.94.232.0/21
Signature Algorithm: sha256WithRSAEncryption
88:54:89:b8:5a:ae:fb:c8:33:59:53:a1:85:e7:9e:83:ef:fc:
37:26:b2:8e:d2:dd:2d:99:09:f9:2d:8b:4f:ed:5e:b2:56:32:
44:23:43:64:76:e0:a2:3b:f8:67:ad:d0:68:ec:4f:c8:6a:c5:
82:a7:ff:09:26:f3:d0:35:08:f7:92:37:a8:88:7f:ef:23:48:
20:e5:00:5b:2a:04:36:3d:e8:12:f8:2d:25:6c:28:5d:08:d8:
f9:74:56:85:58:ab:d6:17:91:95:fc:72:a3:5e:a2:19:0e:57:
e0:0a:61:5d:be:32:23:cb:ef:74:46:8e:e9:33:08:9a:f8:d1:
24:47:0c:45:37:6f:6e:35:e0:df:33:8c:56:57:92:3d:1f:78:
24:ec:0e:10:4d:96:22:8c:16:c8:ea:25:03:2b:c2:1b:ba:31:
c7:22:d7:64:0c:d2:99:94:3c:d1:ba:38:9a:a8:ce:a6:9e:c4:
c2:9b:4a:86:f6:ff:ff:c0:de:62:4c:fd:31:aa:30:5b:0a:01:
b7:86:9a:88:52:fc:c3:2f:64:a0:0c:56:af:7b:ba:4c:7b:be:
7b:5a:e0:35:eb:d9:0b:ff:cb:fd:e0:ce:5c:91:1a:47:a4:df:
0d:94:6a:99:07:e6:6f:f3:8e:ec:bd:4d:aa:dd:b3:5f:5f:66:
2f:6c:e8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-fra.rpki-client.org