Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/ifQMCE4w8P353gs6nihwEZLq8xA.roa
File: ifQMCE4w8P353gs6nihwEZLq8xA.roa (raw, json)
Hash identifier: uvTyT2JRmLwYXFlx+CYWjeQI2DOakebp/3IfxyPL2ho=
Subject key identifier: 89:F4:0C:08:4E:30:F0:FD:F9:DE:0B:3A:9E:28:70:11:92:EA:F3:10
Certificate issuer: /CN=43fad79548afc5c83e59bbfe388c64492cb55013
Certificate serial: 109E745C
Authority key identifier: 43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/ifQMCE4w8P353gs6nihwEZLq8xA.roa
Signing time: Sat 01 Jan 2022 05:05:39 +0000
ROA not before: Sat 01 Jan 2022 05:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44407
IP address blocks: 188.231.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278819932 (0x109e745c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fad79548afc5c83e59bbfe388c64492cb55013
Validity
Not Before: Jan 1 05:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89f40c084e30f0fdf9de0b3a9e28701192eaf310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:57:a3:5d:3c:67:c7:35:b6:0c:64:74:9f:86:
b3:27:42:60:ba:30:fa:50:98:e9:b0:57:4a:75:18:
91:77:ad:9c:2b:d8:4c:0d:0b:52:32:fe:c0:ac:1f:
c2:9d:16:6a:ec:39:c7:74:22:44:50:e6:0a:50:63:
19:79:6d:48:88:3d:86:ef:bb:81:5d:a6:a4:f0:0e:
96:4d:eb:24:d7:b0:d6:de:1b:b1:1f:26:00:92:36:
81:70:fe:77:e8:b8:df:bf:72:69:be:79:86:68:66:
59:39:57:fe:e0:dc:cb:b4:ac:f1:52:4b:aa:98:31:
03:37:a8:58:09:e7:a1:f2:b6:6b:e9:0f:5e:17:c0:
23:8a:51:4f:64:37:c0:d7:7a:03:1d:e6:c3:a7:a9:
51:86:4d:b7:7e:d9:71:75:0d:ff:0f:85:8f:50:ec:
35:8f:a3:e7:bd:ff:a9:b7:6c:f9:3e:f4:3b:61:1b:
25:6c:32:73:03:40:02:1d:2b:a9:1c:47:c0:02:06:
73:13:83:e2:a7:75:56:26:24:cf:10:c8:e0:35:95:
bb:8f:7c:e0:ce:a3:3f:95:17:60:86:5e:26:fc:a7:
15:86:32:71:90:ee:77:87:71:68:fb:07:54:ee:ba:
16:8a:a5:06:46:c2:ef:da:7e:5b:e1:e7:4f:20:7a:
69:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F4:0C:08:4E:30:F0:FD:F9:DE:0B:3A:9E:28:70:11:92:EA:F3:10
X509v3 Authority Key Identifier:
keyid:43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/ifQMCE4w8P353gs6nihwEZLq8xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.231.0.0/17
Signature Algorithm: sha256WithRSAEncryption
c9:cb:cd:9c:40:ab:33:15:e4:a2:b6:f7:07:19:8e:68:14:48:
c6:e5:f6:2d:57:f4:9d:73:c8:42:6a:dd:1d:45:23:c2:df:dd:
ea:e2:44:74:aa:9e:47:a0:51:46:df:eb:bc:91:be:dd:ce:0c:
66:5c:46:7f:99:c7:ef:09:e5:41:d6:5b:96:93:f2:1e:f7:2d:
4c:22:94:cf:5b:93:ce:37:7c:40:2f:4c:8b:fd:25:2c:1b:46:
b6:35:00:ec:8c:59:18:83:c6:43:f6:d5:49:cb:19:6d:f1:14:
80:3f:a0:4d:17:f6:a5:b9:8b:7f:8e:12:17:b8:b2:f9:9c:ea:
ff:8c:d2:dd:a1:5f:96:e4:3a:5c:43:b8:20:32:64:96:7f:82:
37:c6:86:b3:fd:c2:99:54:c4:8c:80:e4:62:01:02:f7:cc:e2:
e7:54:f5:98:08:0b:06:42:13:21:15:5d:5f:a0:87:45:8a:ef:
ee:7c:3e:88:27:85:97:d4:82:f7:e3:92:25:04:35:18:33:cf:
31:f4:27:0a:da:f5:8a:c1:10:39:ac:92:b0:5a:c5:fc:75:da:
bf:60:3a:14:b5:0f:df:35:ef:96:8f:74:67:78:51:65:03:c3:
26:20:ef:54:a2:ae:1b:de:5a:10:d2:4b:e1:c1:87:9e:bf:7e:
0e:81:5d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org