Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/oObpigLl8-cF2EcMeh_oqSs-7RA.roa
File: oObpigLl8-cF2EcMeh_oqSs-7RA.roa (raw, json)
Hash identifier: 0lUIUxfum0aya9x9gZTYkYhJ7/V3lOwrUeTiQhp7BbU=
Subject key identifier: A0:E6:E9:8A:02:E5:F3:E7:05:D8:47:0C:7A:1F:E8:A9:2B:3E:ED:10
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 0DD3B0
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/oObpigLl8-cF2EcMeh_oqSs-7RA.roa
Signing time: Mon 02 May 2022 17:57:19 +0000
ROA not before: Mon 02 May 2022 17:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35222
IP address blocks: 188.215.113.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 906160 (0xdd3b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: May 2 17:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0e6e98a02e5f3e705d8470c7a1fe8a92b3eed10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:02:1c:57:dd:c9:53:83:bb:a8:fa:92:07:26:
ec:11:1e:0e:e4:77:49:ae:08:4d:6c:1b:4e:45:46:
59:de:e7:fb:50:d0:fb:38:56:93:94:f2:40:a5:30:
ec:02:4e:fe:d7:fe:ed:e6:5e:43:83:4f:de:48:4c:
f4:cb:1f:ac:4d:65:6f:49:73:28:85:d6:78:aa:c4:
4d:f4:b2:4b:25:f0:62:d4:4b:b4:83:d7:e8:fe:54:
e4:ac:56:d8:1d:86:41:ea:24:e9:52:57:b4:09:f4:
88:42:d4:82:0f:62:27:57:89:85:5b:0a:8b:35:82:
c4:e8:bd:60:12:d9:dc:66:47:3d:81:bc:0f:38:bc:
9e:f1:41:d6:a2:25:2c:78:cd:d0:0c:d2:71:72:e9:
13:9f:5f:15:fd:d0:94:9b:aa:16:d2:1f:06:fb:ed:
57:be:85:e4:b3:f9:dc:6c:9e:80:08:88:71:a6:35:
80:eb:fc:93:57:33:5c:3c:7b:bb:02:dc:ec:ca:f2:
63:7f:6c:16:c7:48:82:a1:ff:8b:55:ae:cf:17:ad:
5e:0c:e4:88:e4:ba:8d:55:b2:d8:56:f3:dc:d9:0a:
8c:74:a2:8e:66:e9:c6:ed:0e:3f:a5:47:71:1d:41:
0b:ac:b9:e4:ac:9f:d2:1e:ae:0a:fc:55:ba:6f:0b:
c6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E6:E9:8A:02:E5:F3:E7:05:D8:47:0C:7A:1F:E8:A9:2B:3E:ED:10
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/oObpigLl8-cF2EcMeh_oqSs-7RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:93:5c:90:d1:40:9c:fa:f7:69:83:b2:c4:4a:93:9f:bb:d5:
4f:1c:67:aa:08:80:47:9d:46:eb:10:36:3a:c2:f5:9a:d3:fa:
95:41:bc:19:83:07:0c:00:78:5e:cd:c0:75:6c:15:fb:6d:c6:
26:85:e6:12:9b:ca:c3:ad:e3:1a:c7:d3:b9:e8:9e:ba:c6:62:
29:31:ea:d7:c1:5b:59:20:c2:af:5e:55:5f:6c:d3:b3:ed:3f:
83:0f:ae:9f:d8:c6:13:e1:9d:a9:8b:36:21:c0:05:14:09:db:
1e:9c:2f:47:3f:32:a7:6b:ed:88:1e:10:ca:f0:a3:77:c6:57:
f3:4e:7b:e0:c0:ac:ee:87:32:ee:a4:5b:1d:49:b9:08:73:ba:
45:1d:67:95:d5:00:a3:8e:e6:95:4f:6d:b6:e0:8f:d8:92:ae:
51:d3:5b:f2:04:e0:18:09:97:b1:36:43:df:e9:0c:77:ed:ea:
2a:34:b2:8e:38:a9:92:f0:99:69:b1:27:a0:22:2c:f2:3d:ec:
0f:a9:4d:9a:30:91:20:1c:9a:ce:c2:44:85:43:21:c5:0c:4e:
cf:4e:ad:38:10:d8:85:25:79:c3:53:5b:a3:81:c5:bc:ee:f0:
d4:9f:27:7f:e3:ca:65:89:e9:25:08:10:d5:00:d3:ed:aa:ca:
79:69:c3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org