Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/vD5d9JWmuK_X063OkUpq7mXlnks.roa
File: vD5d9JWmuK_X063OkUpq7mXlnks.roa (raw, json)
Hash identifier: yitI1aMRfEzJzGiS3cH2gYiJJruvtg5o+NC6LK7t4Kw=
Subject key identifier: BC:3E:5D:F4:95:A6:B8:AF:D7:D3:AD:CE:91:4A:6A:EE:65:E5:9E:4B
Certificate issuer: /CN=bfabf5a474afe7212331670e831e119da38f284f
Certificate serial: 0AC5F85E
Authority key identifier: BF:AB:F5:A4:74:AF:E7:21:23:31:67:0E:83:1E:11:9D:A3:8F:28:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6v1pHSv5yEjMWcOgx4RnaOPKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/vD5d9JWmuK_X063OkUpq7mXlnks.roa
Signing time: Mon 04 Apr 2022 13:15:24 +0000
ROA not before: Mon 04 Apr 2022 13:15:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16242
IP address blocks: 213.188.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180746334 (0xac5f85e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfabf5a474afe7212331670e831e119da38f284f
Validity
Not Before: Apr 4 13:15:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc3e5df495a6b8afd7d3adce914a6aee65e59e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fb:2b:e3:5d:fc:4c:3e:86:b5:72:d7:ce:be:
3a:8e:1a:1f:bf:5c:75:5d:d1:7a:44:03:f3:13:81:
dc:9c:91:82:65:9d:4a:55:6c:73:63:3d:f4:b6:94:
65:42:64:c3:37:a3:86:96:e3:36:2f:7d:59:dd:38:
11:8d:b5:3e:37:f5:d1:f2:62:2e:cb:0f:46:39:d9:
be:6c:da:2f:e4:03:1c:fa:36:93:b3:45:39:47:02:
c5:de:78:93:fc:40:92:d1:7f:99:17:3d:2a:77:e0:
e1:59:47:02:f9:72:02:a6:22:f7:c2:a8:61:7a:91:
b5:14:ed:17:21:40:e2:53:60:19:37:87:af:b3:8c:
a4:e1:c3:6d:1a:36:77:2d:a2:c3:08:93:a0:7d:68:
54:d2:b7:6c:f2:35:08:cc:09:b7:3e:72:dd:ac:15:
8e:13:09:85:d1:5f:12:12:93:45:88:f6:88:b5:74:
a1:78:d6:d0:4d:ba:f6:1e:93:58:27:10:bf:57:ec:
e7:3f:66:e3:2e:dd:e7:8d:20:5b:a6:2d:7c:9c:b4:
0c:07:30:85:ac:f0:f7:97:72:dc:ca:d5:a6:74:68:
59:6d:4c:3c:c8:51:6b:2f:38:45:1b:79:37:4e:88:
b2:7e:16:20:41:bc:a5:91:8f:93:37:8c:da:6c:f2:
2e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3E:5D:F4:95:A6:B8:AF:D7:D3:AD:CE:91:4A:6A:EE:65:E5:9E:4B
X509v3 Authority Key Identifier:
keyid:BF:AB:F5:A4:74:AF:E7:21:23:31:67:0E:83:1E:11:9D:A3:8F:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6v1pHSv5yEjMWcOgx4RnaOPKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/vD5d9JWmuK_X063OkUpq7mXlnks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/v6v1pHSv5yEjMWcOgx4RnaOPKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.188.32.0/19
Signature Algorithm: sha256WithRSAEncryption
31:40:7a:52:83:e5:eb:f9:d0:05:f3:99:10:3c:26:ff:63:cf:
40:41:d0:d1:b4:58:02:50:67:25:4b:e5:19:59:ff:7d:9f:57:
2a:44:3e:54:82:9c:12:02:5e:2b:b9:a9:af:8f:b1:86:ff:98:
36:fb:c0:24:0f:c3:7e:2d:65:a3:99:38:2d:a2:a0:d1:47:5f:
de:19:7d:f7:9c:62:26:56:99:7b:6b:7e:9f:fb:fb:12:83:b9:
f1:b7:c2:12:09:8b:99:1c:db:d5:05:8f:06:81:53:68:0a:e1:
b1:e2:44:31:3d:26:fd:71:23:a3:56:7f:5c:5d:45:d4:d6:4f:
ff:3a:fb:2c:05:9d:46:b3:b8:98:90:27:f3:dc:ec:a4:f4:13:
f7:aa:7e:eb:73:7f:b0:d9:2f:27:6d:81:74:ff:01:ed:90:63:
57:09:26:28:14:bb:34:b9:81:bf:01:e4:a0:a3:46:0c:58:dd:
97:3e:41:84:d4:55:b8:60:22:1c:3f:23:80:4e:bc:58:df:0b:
f0:06:b1:8b:98:dc:ae:5d:94:57:97:27:fc:06:7f:69:39:8c:
bf:ba:87:d1:fc:1a:e8:8f:4a:7c:2f:b1:fe:9e:7d:d3:e5:8f:
a0:c9:a8:29:5f:a8:a7:b9:82:8f:b1:90:9d:54:10:6f:e0:d6:
e1:57:92:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:03 2024 by rpki-client on console-ams.rpki-client.org