Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/lRZ8vaEtYiut5CVPM73hdwTPmjI.roa
File: lRZ8vaEtYiut5CVPM73hdwTPmjI.roa (raw, json)
Hash identifier: MGqq3qQcQF4yAiueEiLu2di3HkPkGmmdLDSqtmi/D+A=
Subject key identifier: 95:16:7C:BD:A1:2D:62:2B:AD:E4:25:4F:33:BD:E1:77:04:CF:9A:32
Certificate issuer: /CN=9944f812a0e002c38e84e47628bdba038598090b
Certificate serial: 0182CA3D113AEC24ACF3151EED19AEE3A094
Authority key identifier: 99:44:F8:12:A0:E0:02:C3:8E:84:E4:76:28:BD:BA:03:85:98:09:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mUT4EqDgAsOOhOR2KL26A4WYCQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/lRZ8vaEtYiut5CVPM73hdwTPmjI.roa
Signing time: Tue 23 Aug 2022 10:26:15 +0000
ROA not before: Tue 23 Aug 2022 10:26:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212652
IP address blocks: 88.213.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:3d:11:3a:ec:24:ac:f3:15:1e:ed:19:ae:e3:a0:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9944f812a0e002c38e84e47628bdba038598090b
Validity
Not Before: Aug 23 10:26:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95167cbda12d622bade4254f33bde17704cf9a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:d3:30:f1:25:a3:be:01:3b:e8:ca:b6:02:
8b:a3:d8:a1:4e:72:3d:70:ac:ec:49:8b:be:0a:a7:
1c:2d:a6:b4:66:83:3c:68:08:78:04:f1:ff:e4:ad:
66:95:14:ac:97:91:14:2e:76:3a:46:de:65:e4:8a:
ab:38:ed:1f:c6:ad:71:26:96:ef:ce:0d:41:60:14:
61:02:e7:aa:5e:53:07:95:82:0d:97:70:cf:b8:0d:
d8:5d:8d:93:18:1c:c6:b6:f9:39:d7:51:e9:c5:de:
ca:3f:ee:04:50:fc:0f:75:fe:67:93:8b:56:e1:1c:
09:36:d6:09:fc:9d:ee:f5:13:b7:f8:7c:84:46:6a:
93:e8:9f:03:0e:64:5a:0c:90:fb:aa:d5:be:36:40:
87:c0:43:5f:03:4b:b3:3b:bd:78:af:ad:2e:33:63:
0f:98:52:77:ae:c9:36:ca:89:b7:3f:5d:c1:f7:df:
94:f7:52:b1:f8:98:aa:16:6d:ac:94:06:6d:f9:bb:
2c:80:cf:8a:f9:2a:a0:21:e4:24:65:18:34:e8:6f:
cf:65:a1:5a:1b:51:05:b0:3c:17:2a:f1:fe:1a:f2:
bc:74:9f:f9:38:60:4f:62:8d:b0:f6:56:46:fd:bc:
3b:6e:44:94:75:be:cb:13:54:a8:a3:38:b1:a3:9c:
6b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:16:7C:BD:A1:2D:62:2B:AD:E4:25:4F:33:BD:E1:77:04:CF:9A:32
X509v3 Authority Key Identifier:
keyid:99:44:F8:12:A0:E0:02:C3:8E:84:E4:76:28:BD:BA:03:85:98:09:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mUT4EqDgAsOOhOR2KL26A4WYCQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/lRZ8vaEtYiut5CVPM73hdwTPmjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3c6cb5-a72c-4701-ae6c-306c5651343e/1/mUT4EqDgAsOOhOR2KL26A4WYCQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.213.208.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:8a:42:bc:22:a9:fc:5e:f3:1b:dc:c6:f0:23:ff:7f:f0:19:
4a:e4:3b:97:d4:6d:48:70:94:4f:b0:c5:2f:67:f3:8e:9c:96:
59:ad:4a:c0:b2:50:5e:62:dc:28:b8:6b:3f:7d:5e:95:0a:73:
d3:fe:f3:82:ba:f7:f8:9c:c1:8c:a3:41:74:a4:d6:97:b9:97:
e7:3d:97:6d:25:7c:59:dc:a2:d9:59:02:6b:97:08:ef:68:a0:
52:df:52:c6:29:f9:b1:3d:12:ec:91:5a:ba:f9:4b:d1:bd:46:
df:de:12:8f:24:58:99:0a:22:ff:11:81:01:09:93:56:cb:74:
ab:f4:85:8f:6f:13:79:4b:c8:19:f1:be:7e:0a:17:6d:57:34:
a6:1d:bf:0b:e4:67:12:50:c4:26:b7:da:8c:e4:47:eb:6e:53:
da:09:cf:d4:35:b0:68:6c:f6:0e:d7:02:f5:0f:35:59:8d:74:
7b:e4:4c:ec:69:53:e1:e5:f9:4a:89:41:ac:69:f5:dd:70:63:
14:39:c4:f5:95:5d:20:73:ea:ad:15:f5:a4:2d:44:83:0c:c5:
d5:31:78:18:b4:c2:6e:4f:f1:b4:ed:30:a9:59:be:a1:31:64:
32:c0:10:51:39:af:4d:b5:e8:ac:97:76:b5:ed:b8:fa:af:ee:
0d:2c:3c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:59 2024 by rpki-client on console-fra.rpki-client.org