Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/k7Dbvol-_RF6zJgrcStp-4rJ66E.roa
File: k7Dbvol-_RF6zJgrcStp-4rJ66E.roa (raw, json)
Hash identifier: Urtb5ZgYtH1xp7+OkPIj8KbxAn1TBbHh+DkTh8yDdNg=
Subject key identifier: 93:B0:DB:BE:89:7E:FD:11:7A:CC:98:2B:71:2B:69:FB:8A:C9:EB:A1
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 061A9303
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/k7Dbvol-_RF6zJgrcStp-4rJ66E.roa
Signing time: Thu 07 Apr 2022 16:20:43 +0000
ROA not before: Thu 07 Apr 2022 16:20:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 188.214.232.0/23 maxlen: 24
188.214.234.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102404867 (0x61a9303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Apr 7 16:20:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93b0dbbe897efd117acc982b712b69fb8ac9eba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:80:cb:8a:00:7a:48:fc:3a:bf:ab:cb:22:b6:
b2:45:72:4d:0e:41:41:65:dc:51:9c:5b:2a:66:e9:
9c:1e:ac:26:a7:c7:8a:f6:e0:82:6b:c6:64:ad:87:
9f:1c:5a:cb:24:28:43:2d:59:84:aa:3f:a8:1c:99:
f5:85:60:80:e4:9f:05:48:c3:5b:89:35:d9:a1:83:
d6:e1:35:da:fe:e1:e4:62:1b:6e:09:64:41:fc:d8:
00:c1:1d:80:20:2e:a7:7a:b8:52:8f:e1:4f:3b:b2:
54:2e:2d:0e:fb:e0:00:f6:65:7d:00:a6:34:4b:7f:
13:fa:3e:f6:0a:7c:0c:3d:2f:de:1d:10:45:bd:09:
08:b3:f2:a8:da:3f:46:bf:ec:e8:87:4a:08:c3:66:
4f:ff:fa:84:07:b4:fc:d5:ac:42:e9:97:a5:df:a6:
62:43:98:cb:a0:65:2a:1e:6f:51:42:f3:c9:ab:e1:
70:4f:db:17:d7:ce:8e:63:b0:71:b3:85:ac:a4:8d:
5e:7a:d3:a5:93:4d:1d:2d:fa:c7:b0:de:d3:e3:97:
0a:dc:5a:9c:18:14:14:4f:b4:40:e0:6e:76:97:f9:
0b:84:ad:3b:9d:80:1d:05:e1:71:e7:0d:84:c2:6d:
3b:a9:33:4f:cc:9d:82:1e:35:9c:f8:49:33:1d:a8:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B0:DB:BE:89:7E:FD:11:7A:CC:98:2B:71:2B:69:FB:8A:C9:EB:A1
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/k7Dbvol-_RF6zJgrcStp-4rJ66E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/22
Signature Algorithm: sha256WithRSAEncryption
02:f5:09:41:4e:69:4e:3f:79:55:09:99:79:68:47:78:77:79:
6a:93:bb:da:4f:de:9e:a7:b2:62:48:c0:30:25:e0:4e:d9:5a:
ba:ae:cb:c8:70:c8:a6:4d:7d:f5:68:ca:0c:33:c3:db:51:5c:
94:0b:f9:d7:a5:34:87:49:43:47:ee:1b:0e:87:b6:be:91:0e:
e9:44:18:3a:18:95:77:cc:53:90:ea:cc:c7:36:5a:19:91:56:
82:00:55:96:84:8a:53:8a:55:35:b7:73:12:9e:c4:6a:9f:cd:
a8:7e:c5:5c:0b:a5:70:50:14:0c:64:af:61:4d:e3:9a:e4:b5:
eb:9f:b0:24:8a:15:5c:73:51:b5:6f:33:50:f6:22:39:1b:62:
38:ec:2d:4f:80:37:79:12:0f:fb:bc:bc:fe:91:c8:f9:2e:9d:
c7:85:38:86:17:8a:d0:6a:17:2e:2c:7f:c9:57:86:43:94:0e:
46:80:ee:cc:30:3f:a5:47:e7:d1:8d:85:73:28:b4:67:cd:66:
90:26:ef:32:e9:16:c2:df:27:3b:1e:fe:7f:98:c0:26:e9:fe:
dc:4a:0a:c4:37:e2:dc:90:ff:3c:ef:4d:cc:4d:97:2b:58:44:
2a:0e:23:74:40:3f:7f:e1:f2:6e:e9:74:4b:c5:43:21:c3:5b:
ea:7b:85:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org