Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/trpdWSkerAlPG26vbMwjLzqpF4Q.roa
File: trpdWSkerAlPG26vbMwjLzqpF4Q.roa (raw, json)
Hash identifier: 7lN8ck9JriShovgAT/fzo4uunrgY+6v7IjkRlUGD/Q0=
Subject key identifier: B6:BA:5D:59:29:1E:AC:09:4F:1B:6E:AF:6C:CC:23:2F:3A:A9:17:84
Certificate issuer: /CN=6283b6d1d86102e9edf2abddaa7c9347aac717c7
Certificate serial: 06BD809D
Authority key identifier: 62:83:B6:D1:D8:61:02:E9:ED:F2:AB:DD:AA:7C:93:47:AA:C7:17:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoO20dhhAunt8qvdqnyTR6rHF8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/trpdWSkerAlPG26vbMwjLzqpF4Q.roa
Signing time: Mon 24 Jan 2022 16:41:24 +0000
ROA not before: Mon 24 Jan 2022 16:41:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209555
IP address blocks: 188.116.58.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113082525 (0x6bd809d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6283b6d1d86102e9edf2abddaa7c9347aac717c7
Validity
Not Before: Jan 24 16:41:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6ba5d59291eac094f1b6eaf6ccc232f3aa91784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:be:5e:66:ad:4b:30:0e:c2:f9:c8:57:d0:
65:99:ca:9c:a1:a7:cc:44:24:e0:08:7d:7b:7c:3b:
98:6a:77:20:11:d3:2a:b0:10:e6:50:57:38:e1:1b:
77:60:9f:7a:5b:e1:d9:81:49:da:4a:1b:a9:83:88:
82:f0:6b:75:9e:88:aa:91:39:1d:0e:ea:34:56:85:
4d:5c:9e:c6:2c:1a:b9:63:b5:d1:25:74:7f:ba:07:
1a:65:af:c2:96:3c:1c:fc:7b:ec:5c:47:34:9e:a3:
9b:be:50:7a:a1:50:e7:30:77:6e:b8:37:66:23:b8:
da:98:84:0c:43:40:6b:da:a4:17:8f:d3:bb:5a:ed:
43:e1:63:04:e1:ce:fb:8d:60:c3:32:93:f1:ec:3f:
e1:85:db:f5:e4:53:4d:66:6f:84:f5:52:a0:3f:90:
d2:88:0a:20:42:44:b6:5e:01:03:a4:44:9d:6f:d3:
74:80:d3:08:f8:d1:06:3d:ef:19:3a:39:c9:d6:83:
74:d4:d0:6a:f9:10:f0:71:8f:d1:6d:e2:ed:f1:11:
75:39:30:12:0d:02:7a:1d:04:ac:07:8c:0b:16:e4:
0a:f3:06:53:ac:e6:1b:d6:aa:9b:b5:63:bb:b0:27:
9f:11:23:02:e4:4a:ff:90:33:b0:e6:e4:bf:74:9e:
dc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BA:5D:59:29:1E:AC:09:4F:1B:6E:AF:6C:CC:23:2F:3A:A9:17:84
X509v3 Authority Key Identifier:
keyid:62:83:B6:D1:D8:61:02:E9:ED:F2:AB:DD:AA:7C:93:47:AA:C7:17:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoO20dhhAunt8qvdqnyTR6rHF8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/trpdWSkerAlPG26vbMwjLzqpF4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/YoO20dhhAunt8qvdqnyTR6rHF8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.58.0/23
Signature Algorithm: sha256WithRSAEncryption
13:e8:65:aa:54:16:ca:a3:ba:cc:a2:e0:06:56:e5:bf:52:a8:
af:dd:05:2d:7c:2e:17:6c:71:0c:f1:de:d8:b1:ab:9c:77:f6:
29:11:d3:18:9d:ad:0d:3e:02:4a:7e:0d:c7:97:76:d3:96:3a:
85:b0:62:66:d1:f9:5e:73:50:df:71:e6:fc:8f:c5:59:ac:bc:
c0:d6:31:d2:00:8c:e1:e0:dc:c8:0e:e5:b7:db:25:10:60:19:
01:bb:d7:cb:f5:4f:09:b0:58:71:2b:58:a6:f3:bd:d2:19:f5:
9f:75:26:ad:d9:d5:ca:b5:29:51:6a:f8:3e:fb:dc:6a:26:e9:
54:7f:a8:50:76:ac:d9:56:b9:d3:04:30:2f:b1:cd:ef:15:a3:
70:c6:38:d2:7d:b5:3b:3f:f7:75:fd:4a:df:f2:23:be:17:73:
a5:04:84:4e:a5:29:e3:99:74:5a:e2:dc:f2:5a:26:7a:27:3d:
44:e9:ab:16:82:e0:1e:34:64:d3:7d:54:4e:4d:09:78:65:2f:
7f:83:63:cf:95:b2:08:da:71:95:33:20:2d:96:c9:f2:1f:18:
23:c2:d0:11:eb:27:18:f8:b6:2d:c4:36:57:93:10:04:86:47:
cd:17:4d:ca:fa:76:8e:f3:2b:40:d6:a6:55:20:8f:80:9b:0e:
4f:86:47:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:43 2024 by rpki-client on console-ams.rpki-client.org