Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/Kd_yB2Sz7hO8tVryl0gL3Fu-XPg.roa
File: Kd_yB2Sz7hO8tVryl0gL3Fu-XPg.roa (raw, json)
Hash identifier: BMnSrdCyHR+slQrkspPICb3dQfZtXypFXRc64wqB3Jc=
Subject key identifier: 29:DF:F2:07:64:B3:EE:13:BC:B5:5A:F2:97:48:0B:DC:5B:BE:5C:F8
Certificate issuer: /CN=f60250dc6621f69764fa7b5f399cba82c3445072
Certificate serial: 10AB23CE
Authority key identifier: F6:02:50:DC:66:21:F6:97:64:FA:7B:5F:39:9C:BA:82:C3:44:50:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/Kd_yB2Sz7hO8tVryl0gL3Fu-XPg.roa
Signing time: Thu 03 Mar 2022 23:12:49 +0000
ROA not before: Thu 03 Mar 2022 23:12:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 88.211.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279651278 (0x10ab23ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60250dc6621f69764fa7b5f399cba82c3445072
Validity
Not Before: Mar 3 23:12:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29dff20764b3ee13bcb55af297480bdc5bbe5cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ef:71:70:16:30:b3:7c:45:f5:1f:47:e4:3b:
a3:bf:32:cb:ca:7d:58:03:73:62:3a:dc:b6:db:c9:
5b:db:2a:4e:44:3a:39:f2:ed:b4:18:67:2c:9c:6c:
ef:7b:ee:b6:36:f6:95:08:d9:d1:b0:00:2b:ce:af:
d0:4b:19:8c:e9:a5:f6:dc:ec:5f:75:18:7f:7d:af:
2b:cf:97:0e:b7:e7:99:25:53:05:d3:a6:e6:aa:f6:
ef:19:db:da:aa:97:df:86:be:f2:fc:28:83:81:60:
17:ca:6a:f4:fe:d0:f0:27:22:65:9c:bf:9a:a5:c8:
81:e3:bd:2f:60:b1:70:b3:84:c9:ee:41:8a:46:e0:
e2:47:41:38:94:bb:da:5b:63:88:0b:f2:4d:a4:98:
12:3b:87:ee:a2:50:73:56:89:08:b0:ce:db:76:4e:
d0:b9:b6:f3:61:1a:4a:2a:48:d4:ff:e9:c6:16:2c:
94:1f:3b:2d:c6:98:e8:61:fe:1c:7c:8e:f5:9a:15:
0b:0a:cb:ec:d3:c8:36:ad:62:df:c6:cd:eb:bd:d7:
22:bc:8e:54:89:1b:4f:d3:2b:03:98:e7:54:b8:c7:
8e:ad:ae:e4:93:6e:20:87:57:10:aa:8b:0b:90:80:
92:6f:11:91:7b:43:53:c8:31:7d:84:52:f8:d3:76:
a1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DF:F2:07:64:B3:EE:13:BC:B5:5A:F2:97:48:0B:DC:5B:BE:5C:F8
X509v3 Authority Key Identifier:
keyid:F6:02:50:DC:66:21:F6:97:64:FA:7B:5F:39:9C:BA:82:C3:44:50:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/Kd_yB2Sz7hO8tVryl0gL3Fu-XPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.211.192.0/18
Signature Algorithm: sha256WithRSAEncryption
5b:57:ae:4f:4d:89:ed:63:2c:a3:87:6d:47:a7:bc:96:b6:ba:
95:9c:01:76:07:53:06:05:4e:b4:63:3f:f8:c2:98:61:d5:34:
03:bc:75:bd:fc:50:9e:40:a4:31:82:bb:b6:04:d0:98:c9:77:
18:06:72:aa:b9:43:df:7c:2a:b4:5a:cb:3b:94:11:ed:27:5c:
91:69:e8:cf:6e:f7:9d:06:97:d6:c3:13:06:cb:2c:a8:e8:24:
42:74:85:4c:7e:2b:f6:52:ae:b5:ed:c3:5f:db:f6:e8:81:98:
b3:28:0c:0e:82:92:db:be:4e:d8:5b:94:76:73:4c:eb:07:e1:
48:22:22:ef:b4:06:0f:c3:20:e2:f4:c7:c9:0f:43:f2:df:33:
c9:bc:e1:91:55:09:3c:3a:59:b4:5c:06:b1:72:1f:3b:1d:d1:
dc:b4:4b:dd:49:e7:7b:e9:65:f4:37:37:2d:38:39:16:95:34:
8a:67:1b:32:2c:19:66:24:65:4f:e1:0a:4e:7f:5f:06:85:b6:
6e:03:81:0c:65:18:11:4f:c2:be:99:c7:6c:a3:9e:c6:54:57:
dc:87:7c:37:ad:1a:62:36:e1:3d:b1:6c:9b:86:ca:3e:d3:13:
ee:c9:d1:43:e3:d9:b0:2b:19:63:2e:a7:bd:05:38:3b:9d:fd:
1f:20:47:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:51 2023 by rpki-client on console-ams.rpki-client.org