Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/u2UU4nK-otjsIuIWfEyR8kO_Un0.roa
File: u2UU4nK-otjsIuIWfEyR8kO_Un0.roa (raw, json)
Hash identifier: t7xMnqrQCDBv+rw3WHfsd8Jt8Qm1T27cuEoWK0OblLU=
Subject key identifier: BB:65:14:E2:72:BE:A2:D8:EC:22:E2:16:7C:4C:91:F2:43:BF:52:7D
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841DB29062F5294EC3069BA671B2725A45
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/u2UU4nK-otjsIuIWfEyR8kO_Un0.roa
Signing time: Fri 28 Oct 2022 08:25:52 +0000
ROA not before: Fri 28 Oct 2022 08:25:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204357
IP address blocks: 188.164.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:b2:90:62:f5:29:4e:c3:06:9b:a6:71:b2:72:5a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 08:25:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb6514e272bea2d8ec22e2167c4c91f243bf527d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d3:61:64:b2:f6:ee:93:33:e6:dc:12:86:71:
40:4f:ae:cf:5d:78:c8:c8:02:7b:15:ec:62:7b:a8:
f1:84:df:ca:7c:b4:28:3c:67:5b:70:c4:fb:77:4e:
1d:ea:41:66:d9:da:cd:83:2d:fb:84:2c:5d:17:a4:
fc:3b:65:76:46:c2:a8:6d:f1:0e:23:a0:05:75:20:
47:c7:41:55:7f:a1:c5:53:3d:cd:0d:79:b9:5e:c4:
10:33:4e:3b:ec:78:f3:6b:f4:f8:9c:76:4a:fa:c4:
6f:d0:ba:0b:77:76:dd:f0:05:cb:5c:1c:2c:7e:a1:
90:0d:30:1d:b4:ad:3b:ca:4b:c4:00:bf:77:b4:18:
56:8c:87:91:e9:ec:88:49:6b:d4:28:59:17:84:9e:
29:bf:0c:b7:7e:06:a2:36:4e:cb:29:b1:af:f6:68:
b1:cf:70:fb:3b:a2:74:56:c6:12:3e:9d:8c:72:89:
09:d6:23:ca:88:67:e5:8c:55:c4:58:64:fe:53:7a:
91:0f:32:2a:f3:1e:ce:9e:6c:e7:b3:d6:ee:8e:10:
cf:b6:26:1f:9a:b5:46:36:0e:ae:e2:35:b4:9b:9a:
e5:6d:ed:6e:4a:56:14:25:e1:70:ea:af:a5:31:52:
6c:0d:d1:92:fe:f6:e2:9a:c4:b8:f7:5f:2b:24:04:
35:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:65:14:E2:72:BE:A2:D8:EC:22:E2:16:7C:4C:91:F2:43:BF:52:7D
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/u2UU4nK-otjsIuIWfEyR8kO_Un0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.211.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e3:d0:d5:70:50:7f:08:c9:a9:0e:ae:f6:84:ef:1d:13:80:
aa:c5:4d:71:27:6b:ea:59:75:28:90:a5:a4:12:f2:5a:d7:10:
38:e0:ce:a5:a1:d3:bf:b1:26:dc:4f:9d:21:0f:2e:7d:c8:71:
64:ee:46:7c:76:9d:17:dc:0f:64:87:36:4d:4b:7d:98:07:b4:
15:58:9d:d0:1a:c4:d2:b2:f0:e1:90:04:c3:13:2d:c7:a1:29:
b3:54:97:c4:4b:10:ff:3e:88:a4:7d:d1:f2:75:77:42:6d:6a:
e0:bf:53:4b:ce:20:68:ee:53:56:6f:5e:c5:c4:b8:38:1e:28:
45:d2:95:76:61:67:65:a8:8e:85:7c:ba:6c:0e:3c:58:5e:13:
6a:43:18:ec:cc:29:28:ef:bc:da:3b:9e:65:94:7b:1f:fe:ed:
ea:f2:be:52:da:da:b4:9b:c4:22:34:25:7a:55:c9:f6:2d:7c:
29:99:f5:bc:e1:ca:c8:6e:e0:67:7c:c0:c1:dd:9b:d4:d8:6b:
d6:35:be:a4:94:bb:9b:7d:d7:b8:b2:be:fd:ab:0e:c7:90:48:
f5:bf:fa:ef:08:7b:2b:13:0b:77:e7:24:a5:51:3b:ac:a9:fe:
87:9f:bf:7d:14:2a:7a:73:6a:da:95:60:92:3d:55:bc:99:e5:
5e:52:47:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:07 2025 by rpki-client