Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/mrDkvn6s4jqupV5aIx9b5AyS9pA.roa
File: mrDkvn6s4jqupV5aIx9b5AyS9pA.roa (raw, json)
Hash identifier: kor6BRkKGy+sIKdVH3NUKKE12S1t5lfVaWOqUaZl5Hw=
Subject key identifier: 9A:B0:E4:BE:7E:AC:E2:3A:AE:A5:5E:5A:23:1F:5B:E4:0C:92:F6:90
Certificate issuer: /CN=11d9d7975b8cda9232a4247cc9de9a6dfdbc6069
Certificate serial: 072A26B4
Authority key identifier: 11:D9:D7:97:5B:8C:DA:92:32:A4:24:7C:C9:DE:9A:6D:FD:BC:60:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdnXl1uM2pIypCR8yd6abf28YGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/mrDkvn6s4jqupV5aIx9b5AyS9pA.roa
Signing time: Sat 01 Jan 2022 06:06:24 +0000
ROA not before: Sat 01 Jan 2022 06:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34241
IP address blocks: 188.190.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120202932 (0x72a26b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d9d7975b8cda9232a4247cc9de9a6dfdbc6069
Validity
Not Before: Jan 1 06:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ab0e4be7eace23aaea55e5a231f5be40c92f690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bf:c8:dd:c6:97:13:ee:00:f2:fc:e2:50:10:
d6:ae:bf:45:65:0d:97:e7:c7:bf:cd:5a:4d:f9:04:
29:db:4c:8f:1b:b4:c3:e4:9e:13:f6:d1:09:ef:e5:
2c:f4:5e:0b:9a:5d:de:64:e3:41:2c:52:37:df:76:
ac:59:a2:5a:55:85:96:e5:ce:75:5b:fc:1e:ec:28:
fc:f8:e6:1a:2e:31:0d:fd:3a:16:ca:f9:f3:32:d0:
2e:65:9a:95:86:26:a4:6f:af:35:1b:e2:6e:81:b6:
61:b3:a2:4d:68:ec:af:87:96:25:60:4c:ae:da:4e:
6f:4c:c9:fc:62:29:85:6d:46:9f:18:f4:f7:5a:d1:
da:c2:b0:57:d7:9e:9f:a0:b6:e0:01:6b:c1:56:ed:
7e:35:bf:03:f0:fa:5c:85:2d:a5:b7:a2:2e:b0:b3:
94:85:4e:d1:89:85:b2:6f:63:6d:1c:03:25:04:79:
20:13:79:af:06:6e:f8:96:65:db:62:48:28:fc:7e:
bc:44:3e:99:19:2e:39:77:f1:e3:3c:3c:3d:58:16:
41:d9:f1:6c:23:aa:d0:de:c2:b5:97:e4:36:5c:fc:
49:c9:61:53:9e:de:aa:5d:98:96:83:07:83:75:dc:
f6:c0:06:bd:32:2a:a9:fb:0c:0a:d1:ff:d8:a8:09:
db:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B0:E4:BE:7E:AC:E2:3A:AE:A5:5E:5A:23:1F:5B:E4:0C:92:F6:90
X509v3 Authority Key Identifier:
keyid:11:D9:D7:97:5B:8C:DA:92:32:A4:24:7C:C9:DE:9A:6D:FD:BC:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdnXl1uM2pIypCR8yd6abf28YGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/mrDkvn6s4jqupV5aIx9b5AyS9pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0668b-6ec2-4db4-a957-af7382395e00/1/EdnXl1uM2pIypCR8yd6abf28YGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.116.0/22
Signature Algorithm: sha256WithRSAEncryption
88:42:01:6f:c2:c8:1b:5a:de:3c:e9:f1:aa:7e:20:79:ce:57:
a3:04:d5:9f:61:72:ea:83:50:8c:2c:ce:f0:08:86:85:74:35:
bb:64:24:43:00:e2:1f:9e:4f:a8:97:e1:2c:cd:8c:f7:b4:e4:
16:84:50:4c:e4:79:f6:37:40:b0:6a:d7:36:4c:98:95:40:65:
ea:8d:4a:80:b1:3b:af:d1:1d:03:d0:b1:4c:ab:2f:c9:70:15:
9d:72:a6:51:5e:70:81:6e:d1:83:9a:12:ca:f0:bc:39:03:b3:
98:7f:90:2c:60:f9:39:77:d4:94:40:cd:05:43:24:ad:ff:0e:
a7:32:85:a8:cd:33:30:01:c3:18:9e:95:d0:14:6b:d5:4c:48:
9a:3c:2a:7d:9c:2b:f1:ea:ce:fd:70:dd:55:12:99:b7:77:78:
df:74:d7:67:55:f8:e2:f6:36:b5:04:8c:0a:3e:57:d0:5a:88:
c3:13:0d:52:b5:0e:1f:05:66:c6:e4:56:1d:ff:9f:34:71:3c:
83:5c:d5:bd:6a:e7:a6:9b:3e:c8:e2:a6:db:96:64:d9:fc:a4:
0d:9f:59:3b:28:b5:fc:0d:4b:aa:d8:e6:38:42:12:25:9d:de:
d6:91:76:c7:d5:b7:28:59:7a:d1:3a:26:a1:0e:a6:dd:2b:b1:
6d:61:17:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:15 2023 by rpki-client on console-fra.rpki-client.org