Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/IninJaRM3pUFJG1DEuI9mF6L7Io.roa
File: IninJaRM3pUFJG1DEuI9mF6L7Io.roa (raw, json)
Hash identifier: qg1h+he5UysW9b6r2wtCOXmf5edLHhHzCyP01SlMPWY=
Subject key identifier: 22:78:A7:25:A4:4C:DE:95:05:24:6D:43:12:E2:3D:98:5E:8B:EC:8A
Certificate issuer: /CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Certificate serial: 01835D8217D4D4ADA958F1CFB9ACEC2814B4
Authority key identifier: 1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/IninJaRM3pUFJG1DEuI9mF6L7Io.roa
Signing time: Wed 21 Sep 2022 00:45:50 +0000
ROA not before: Wed 21 Sep 2022 00:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 188.244.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5d:82:17:d4:d4:ad:a9:58:f1:cf:b9:ac:ec:28:14:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Validity
Not Before: Sep 21 00:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2278a725a44cde9505246d4312e23d985e8bec8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:62:11:d3:94:6e:3b:02:c5:e9:44:02:44:e9:
2a:78:ab:56:01:ae:9f:44:5f:96:eb:eb:5f:8a:ed:
58:9e:ef:06:d1:94:41:92:11:78:a4:80:e2:9b:68:
27:60:c9:36:90:52:c9:ba:d7:b2:0c:80:80:bf:4d:
5a:90:d7:fd:7a:8f:3e:ae:01:ee:7d:94:6f:1b:08:
25:e8:c7:44:2d:e2:8c:b6:41:96:ee:16:d0:ab:17:
00:20:da:25:b6:40:6c:d9:61:13:39:92:f3:51:ba:
cd:08:43:4f:10:55:75:7d:11:a0:93:ad:99:7a:d9:
a7:22:ec:f2:a4:0f:32:60:ef:62:22:f6:b2:fb:e3:
bc:9e:0b:9a:4b:0b:9a:77:fe:c9:2b:8b:21:0c:35:
38:cb:11:c6:ec:6d:af:65:96:c2:27:82:9f:1d:b3:
ea:4e:fc:71:ba:f7:33:c3:86:e2:f9:67:2e:f5:b8:
fe:1a:59:24:75:fb:ee:a4:47:1b:f4:7f:f1:b8:cd:
61:62:39:e7:1c:5b:08:7a:a3:d9:25:48:87:0d:25:
10:03:90:b8:bb:1e:08:70:85:29:69:c4:92:11:e5:
b3:0e:d3:66:fb:cd:ab:77:d7:e1:bd:5a:09:0c:79:
50:1f:4e:25:80:8f:f7:89:29:48:54:c7:24:c9:0f:
03:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:78:A7:25:A4:4C:DE:95:05:24:6D:43:12:E2:3D:98:5E:8B:EC:8A
X509v3 Authority Key Identifier:
keyid:1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/IninJaRM3pUFJG1DEuI9mF6L7Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.113.0/24
Signature Algorithm: sha256WithRSAEncryption
99:d4:20:81:dc:ff:66:87:f5:39:ca:15:8f:f5:12:15:8f:26:
54:b6:c6:59:e5:5a:70:f2:d9:d5:1b:c5:b7:1b:9d:84:7f:27:
4b:d6:54:d4:ae:64:c8:e1:a7:d1:e7:ab:ae:6a:46:d5:21:20:
77:1e:e2:a8:57:aa:7e:fa:8f:bf:49:95:96:00:eb:42:10:25:
87:01:61:11:bd:4f:ab:d8:9c:f6:c7:14:86:51:76:84:52:56:
a3:eb:f6:26:b4:54:17:8a:19:00:07:5b:21:5c:55:00:cd:ee:
b1:c4:fb:4c:ac:ab:27:03:50:7a:51:38:f3:5f:1d:82:8b:48:
fa:01:a1:bf:77:08:03:5b:8c:5f:86:1c:44:85:cf:3a:ed:e7:
7c:5d:8c:f1:8a:33:8e:38:bd:ed:18:56:6a:a7:e3:13:47:64:
ee:56:92:dd:7a:26:46:31:f1:d3:a0:4e:45:c5:d6:c9:28:e0:
ca:a7:f3:af:72:b2:9e:e8:4a:f5:4b:9d:1f:fd:10:a5:1f:b3:
0c:e4:1c:83:19:8b:6b:b9:62:8c:0e:8e:f1:1d:41:d5:27:13:
d0:5c:79:e2:d6:20:e8:bd:ae:20:4d:61:5f:91:7a:b5:31:53:
fb:b7:04:44:e1:17:f7:44:d0:ac:3b:d3:13:e4:74:75:7b:5e:
c7:90:48:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-fra.rpki-client.org