Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/LDprwBhUD8K0uQSs5z3Cl1GEdyg.roa
File: LDprwBhUD8K0uQSs5z3Cl1GEdyg.roa (raw, json)
Hash identifier: oxXtiW09NKA+9K8maUSX+/lXX7qYNceR/vmOWUbeDLo=
Subject key identifier: 2C:3A:6B:C0:18:54:0F:C2:B4:B9:04:AC:E7:3D:C2:97:51:84:77:28
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 0185720C897C486549D6E7553781641483F9
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/LDprwBhUD8K0uQSs5z3Cl1GEdyg.roa
Signing time: Mon 02 Jan 2023 10:35:02 +0000
ROA not before: Mon 02 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35222
IP address blocks: 188.215.113.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:89:7c:48:65:49:d6:e7:55:37:81:64:14:83:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: Jan 2 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c3a6bc018540fc2b4b904ace73dc29751847728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f3:93:d8:09:27:da:7b:fa:18:7c:4b:e2:e0:
13:1f:fe:8f:4c:90:8c:86:5f:e6:00:55:5b:c8:db:
e5:a9:d7:38:35:f6:84:0b:b0:50:e9:1f:60:e7:97:
61:d2:90:da:77:30:46:63:47:00:41:e2:77:58:4e:
26:c2:5b:83:22:76:43:a1:ed:cb:11:e7:ba:6d:d7:
c7:03:ae:d7:95:c9:65:df:61:7b:51:26:29:f0:20:
5b:53:f4:90:22:b9:1f:d2:51:82:42:97:94:df:2c:
1b:e1:89:99:be:5b:f0:71:28:53:9a:3e:07:1c:57:
e7:17:41:c7:cc:f5:c7:5c:0e:7a:ea:cc:40:08:dc:
89:bd:6c:d5:76:ec:19:10:99:4a:67:64:37:08:79:
30:1f:b2:1e:a2:c8:4e:c7:bd:80:9f:57:b2:ea:b7:
38:35:e6:5e:7f:eb:a3:31:3d:80:87:a2:9d:c3:42:
c6:de:60:28:0f:2b:bd:8a:6a:ee:4d:26:7a:f5:6b:
23:6a:21:d4:50:67:3d:bf:d5:b8:2e:f3:48:a3:5f:
af:46:bc:87:2b:6c:a1:f6:f4:61:81:e3:ca:04:7c:
10:9b:a7:66:ef:a4:9d:14:9e:21:ec:c5:e1:43:7f:
16:b7:06:f5:50:3c:20:5b:88:3a:f7:4d:e8:5a:67:
0f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3A:6B:C0:18:54:0F:C2:B4:B9:04:AC:E7:3D:C2:97:51:84:77:28
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/LDprwBhUD8K0uQSs5z3Cl1GEdyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.113.0/24
Signature Algorithm: sha256WithRSAEncryption
52:66:53:08:61:f6:a7:ff:4c:4b:f5:77:76:0a:86:76:d2:0a:
0a:c6:aa:9c:27:05:58:3d:30:d5:c3:1e:97:8e:f1:f5:f2:53:
60:ca:df:5c:c0:7c:89:59:b0:4b:00:5f:0a:7a:95:09:ef:9e:
53:c3:15:32:e1:3f:42:d8:80:3c:7d:66:2c:86:50:df:f0:42:
0a:0b:a3:e5:01:13:f6:ea:c3:7a:50:aa:06:4a:92:51:87:74:
a5:cb:4c:a3:97:70:4e:8a:5e:4e:08:f2:37:07:6c:3f:8b:d4:
8d:6a:10:43:b1:fa:ec:5b:1e:47:05:42:58:4f:79:c9:4f:ef:
5e:8d:7e:25:b8:76:3a:a6:9d:b5:55:01:e1:9c:d3:00:e4:67:
9a:78:8e:18:64:f3:e9:9f:6b:18:ce:a5:2a:5b:7c:be:ec:9d:
6e:0b:92:2d:4f:4c:cd:bf:56:78:b7:7e:a2:0d:96:b3:ef:b4:
15:19:65:b1:27:53:95:21:10:70:a8:db:6e:02:fb:cc:83:bb:
81:ba:05:fa:b6:f3:9e:80:6e:7c:a8:0d:32:8b:4c:1e:99:86:
9a:99:bc:0b:c0:7b:a3:0f:1a:fc:3f:29:f2:8f:1e:5d:9b:e2:
33:f1:9d:fd:09:bc:95:45:6c:94:9e:01:b7:66:87:03:a8:0a:
c1:5b:6a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:06 2025 by rpki-client