Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/pDsCkvKha1RGbSQ6cGudync2tK0.roa
File: pDsCkvKha1RGbSQ6cGudync2tK0.roa (raw, json)
Hash identifier: MJ9w+w6Y+RNB73XQ8mZjPbEAuay9XCL6Z4vpE2EAOr8=
Subject key identifier: A4:3B:02:92:F2:A1:6B:54:46:6D:24:3A:70:6B:9D:CA:77:36:B4:AD
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 0183D7ED4C7F778AA01387F35A6F273EB5F9
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/pDsCkvKha1RGbSQ6cGudync2tK0.roa
Signing time: Fri 14 Oct 2022 19:16:36 +0000
ROA not before: Fri 14 Oct 2022 19:16:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 88.218.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d7:ed:4c:7f:77:8a:a0:13:87:f3:5a:6f:27:3e:b5:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Oct 14 19:16:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a43b0292f2a16b54466d243a706b9dca7736b4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c8:2e:50:8d:44:0e:be:93:af:7c:e8:2b:8a:
93:bd:2c:5c:58:58:85:bb:35:78:2d:d0:7c:7c:48:
8e:d4:a9:8d:64:71:2e:16:26:18:e0:40:54:c0:29:
a1:0f:0e:ee:39:c5:79:7f:f1:72:a3:00:41:1a:ff:
4b:7a:83:00:09:de:08:0f:cb:cc:e2:40:2a:99:24:
e1:fb:da:01:a9:df:4c:f4:ce:c9:d9:c5:35:57:f4:
15:48:da:50:04:b2:2a:13:31:5d:9e:6c:04:54:2f:
aa:01:6f:09:71:99:e9:00:7b:2d:cb:88:aa:77:7f:
01:4e:70:ae:1b:72:01:01:58:37:bb:df:31:98:77:
43:e0:e3:72:40:e9:bd:ba:3a:8d:7c:73:86:33:14:
9e:ba:91:db:c0:cc:62:b2:8d:cd:cc:46:ca:90:c4:
8c:5a:71:02:51:1b:b8:40:3b:e3:58:7f:2f:ce:c6:
69:b0:79:99:a0:25:2d:2f:01:3b:05:0e:13:5b:a5:
99:6c:53:de:17:46:55:24:80:c0:39:82:b3:10:23:
b8:84:39:40:0b:6b:81:7e:42:cf:b4:bc:09:6f:7c:
4e:4e:e5:e8:43:67:37:31:6e:3c:d7:a8:c9:ac:fd:
60:ba:2c:e5:fd:2e:91:94:8e:f0:4a:22:0c:56:7f:
9c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3B:02:92:F2:A1:6B:54:46:6D:24:3A:70:6B:9D:CA:77:36:B4:AD
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/pDsCkvKha1RGbSQ6cGudync2tK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.19.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:84:ff:ea:88:62:b4:2c:4f:20:58:03:55:7f:14:f7:a8:1e:
d6:f2:a5:13:1c:61:67:6b:4b:4f:db:be:8e:3e:06:80:81:6f:
47:b8:87:df:1c:f5:14:2d:45:02:ba:47:ce:91:c1:3a:5a:27:
c8:c4:a8:a3:92:df:71:f9:60:b7:63:36:00:21:83:24:81:a3:
7c:f8:68:db:ea:5c:4c:86:d4:4e:43:77:e6:21:80:77:e1:68:
c2:bf:5e:fd:1c:b0:b2:4c:fd:be:15:c9:dd:8b:ab:39:7a:b1:
3f:d3:ed:08:6e:38:63:a5:9e:10:09:8a:b3:ff:0a:43:be:12:
3b:54:34:2b:a4:dd:26:67:37:31:43:21:f5:19:be:5a:69:6a:
7c:18:85:8c:51:54:48:34:05:8f:25:bd:f0:c7:eb:c7:18:f2:
56:32:4e:16:3e:4c:df:6d:a1:0c:26:89:22:43:4d:24:35:c1:
9d:8a:22:26:63:cd:c2:d2:26:01:fd:2d:ac:6b:24:94:d7:df:
70:d5:43:f2:29:d6:5c:67:39:e8:44:d8:e3:2d:e3:6a:55:9e:
ec:46:1e:0f:d6:6f:1b:99:a3:37:02:78:55:98:6a:0d:64:b8:
4c:59:06:52:98:1d:92:52:49:3e:5a:be:9d:6a:42:95:9b:c8:
b1:5a:a2:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:02 2024 by rpki-client on console-ams.rpki-client.org