Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/sEvrOp3AoMqpDYTrzo4zNoHpkl0.roa
File: sEvrOp3AoMqpDYTrzo4zNoHpkl0.roa (raw, json)
Hash identifier: hDQGNOjtY6jIZzlGNEEOEhERuEQ6VLn6jezFmsjM7LU=
Subject key identifier: B0:4B:EB:3A:9D:C0:A0:CA:A9:0D:84:EB:CE:8E:33:36:81:E9:92:5D
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 37ADCD52
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/sEvrOp3AoMqpDYTrzo4zNoHpkl0.roa
Signing time: Wed 18 May 2022 15:14:13 +0000
ROA not before: Wed 18 May 2022 15:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39383
IP address blocks: 188.241.240.0/24 maxlen: 24
188.241.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934137170 (0x37adcd52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 18 15:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b04beb3a9dc0a0caa90d84ebce8e333681e9925d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:67:06:9e:4e:b0:50:51:8f:b3:7d:fc:38:
0b:f1:d6:f1:4b:1b:cd:51:e7:02:c3:59:f8:7b:d7:
c4:16:0b:0e:a1:d0:c6:dc:71:44:73:98:d4:83:43:
d9:1c:dc:a7:60:e6:48:87:f3:79:92:8e:92:e0:00:
eb:c9:aa:42:a7:f6:69:d1:bd:8f:9b:98:0d:bd:6c:
8f:04:b2:ba:04:29:c3:ea:a1:13:8c:4a:f0:96:f1:
63:f3:34:3a:75:4a:4f:51:62:3b:69:de:f6:05:8f:
0c:15:5a:6b:ac:65:50:78:9e:cc:99:d9:88:22:8e:
ab:87:c7:a7:2e:f4:3a:d3:61:96:49:de:53:86:59:
a1:99:56:f3:fc:81:f1:e8:e0:c9:93:e3:bf:19:41:
3e:7e:b2:84:1e:bf:82:6b:c8:9f:ad:a2:7c:42:63:
5d:7e:e0:c5:7a:d7:fc:62:0f:a2:72:82:bc:cf:5c:
83:64:73:1c:28:b9:7b:bd:56:ab:aa:d1:5c:33:d0:
92:aa:62:3b:5b:43:c2:88:f8:c2:b6:25:20:ed:b2:
b8:03:ec:ff:4c:17:4d:d3:1c:d6:e8:69:4b:e2:07:
df:fa:2f:44:82:e6:57:a9:2b:59:0c:09:1a:e5:b0:
b7:31:22:70:cb:60:83:47:dc:35:29:a8:f8:16:20:
4b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4B:EB:3A:9D:C0:A0:CA:A9:0D:84:EB:CE:8E:33:36:81:E9:92:5D
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/sEvrOp3AoMqpDYTrzo4zNoHpkl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.240.0/23
Signature Algorithm: sha256WithRSAEncryption
63:6b:5a:59:80:3f:54:3f:47:8c:7b:6e:5c:ee:d5:1c:41:54:
5d:53:67:98:ff:b4:27:41:03:6f:65:16:e3:ce:b7:fc:97:2e:
a1:74:0b:a4:9e:12:fb:b5:fe:c8:29:25:9a:8f:0e:cf:e0:87:
a8:bb:10:76:8c:2c:3e:ba:87:c0:d0:31:04:1f:4c:b4:bb:70:
d0:e2:de:9b:6a:d0:84:fc:ee:80:5c:99:91:7e:c4:30:ce:78:
85:fb:4b:30:8c:f3:13:d9:aa:07:79:78:62:45:a8:b6:22:15:
9d:99:82:c3:e8:44:73:f1:99:4e:14:e5:d0:c8:29:dc:cd:e6:
37:a4:ec:17:d8:ea:16:3a:12:0a:7c:1d:18:87:c4:ff:f2:b5:
2b:62:5e:de:b6:a2:74:b9:c2:81:a5:fe:46:99:05:35:42:87:
2e:50:cd:ec:20:77:c6:8c:fe:b3:68:94:9a:9b:46:06:b3:2e:
04:16:0d:6c:76:7f:38:c8:8a:0b:3f:81:3c:db:1a:d5:2a:69:
c8:6c:1b:14:0d:f3:c2:09:dd:1f:ea:a4:ff:32:5d:a0:04:57:
95:a5:f6:d7:3e:e9:95:d7:a3:15:98:6b:26:c0:11:42:e4:c5:
ab:e2:57:94:c0:8a:53:a3:43:3a:67:1a:db:7a:c6:c1:dc:75:
5b:bf:4b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org