Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/C7AfLeupuLqk2MpSaw9py2awUhg.roa
File: C7AfLeupuLqk2MpSaw9py2awUhg.roa (raw, json)
Hash identifier: loZqEGmOVPiAUGtkWP5oxxh+vhj6+cHuAUsu4rzdtcA=
Subject key identifier: 0B:B0:1F:2D:EB:A9:B8:BA:A4:D8:CA:52:6B:0F:69:CB:66:B0:52:18
Certificate issuer: /CN=2f1ac9f094d8318f3088dca68301865f4605e9da
Certificate serial: 0141C783
Authority key identifier: 2F:1A:C9:F0:94:D8:31:8F:30:88:DC:A6:83:01:86:5F:46:05:E9:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxrJ8JTYMY8wiNymgwGGX0YF6do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/C7AfLeupuLqk2MpSaw9py2awUhg.roa
Signing time: Sat 01 Jan 2022 12:56:05 +0000
ROA not before: Sat 01 Jan 2022 12:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 88.151.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21088131 (0x141c783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f1ac9f094d8318f3088dca68301865f4605e9da
Validity
Not Before: Jan 1 12:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bb01f2deba9b8baa4d8ca526b0f69cb66b05218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2f:52:f3:6a:ec:36:48:7b:57:b1:9c:45:97:
cb:8d:7c:47:19:45:0b:03:47:ee:fd:19:3a:d5:8d:
37:f5:b7:91:4f:03:89:39:6e:44:f6:ed:82:9a:79:
81:f9:fe:6e:96:f6:36:fd:81:a0:58:d8:a5:77:5c:
d0:b8:5e:9f:5a:97:47:7b:0f:3b:8c:88:d2:ba:73:
a0:d4:20:6d:5c:41:e6:46:50:66:11:56:61:f2:9e:
40:ba:d5:72:a9:f7:4c:bf:7e:de:16:66:f6:ac:43:
3b:ea:cb:00:ff:06:bb:37:01:cb:26:5c:7c:25:ef:
ff:fe:27:25:73:ac:22:ac:11:1d:4f:12:2f:e1:a9:
ae:f3:68:c2:a7:28:37:aa:75:89:3e:7a:9b:85:f0:
37:07:79:77:13:c2:c2:74:bd:91:ce:40:59:e2:0d:
5a:65:74:ed:9f:cb:30:31:ee:81:1d:0c:81:8b:a4:
a2:a2:69:45:92:18:bc:cb:1d:67:bb:f3:f1:e2:d0:
a8:50:5f:04:f9:dd:b2:bd:4d:e6:af:d2:e9:b3:39:
95:8d:a1:84:6a:e3:2f:75:6f:29:ee:c6:4c:6f:85:
2d:7f:e0:3b:80:7e:68:4d:31:e4:46:2b:a7:64:b3:
79:95:40:d8:0a:9c:2a:a1:dd:57:4b:68:2a:76:32:
2a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B0:1F:2D:EB:A9:B8:BA:A4:D8:CA:52:6B:0F:69:CB:66:B0:52:18
X509v3 Authority Key Identifier:
keyid:2F:1A:C9:F0:94:D8:31:8F:30:88:DC:A6:83:01:86:5F:46:05:E9:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxrJ8JTYMY8wiNymgwGGX0YF6do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/C7AfLeupuLqk2MpSaw9py2awUhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/LxrJ8JTYMY8wiNymgwGGX0YF6do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.14.0/24
Signature Algorithm: sha256WithRSAEncryption
80:c2:ee:9a:19:9d:4b:33:f0:e6:56:10:ad:0a:52:fe:c7:34:
9b:cc:0d:ab:26:96:b4:1e:4f:29:6a:f7:1e:32:ea:ab:c5:a4:
02:ff:2e:06:30:d3:8f:ef:e2:06:88:46:f2:ff:e6:67:aa:f0:
79:1b:dd:f5:bf:10:22:9e:4e:f4:e4:7e:57:95:4f:c5:12:90:
40:65:35:f6:fe:90:79:a4:56:55:43:ea:03:39:9d:cc:31:d7:
9a:d4:99:0a:f3:f2:79:f3:e7:99:d7:1c:22:c5:d3:53:b9:f4:
f1:87:ca:53:48:5f:5b:9b:99:8e:46:84:34:7e:15:20:7d:89:
2c:70:fd:c8:ab:12:07:43:19:9a:69:c9:99:1b:29:22:28:4f:
20:c0:43:75:ef:ff:a2:1c:8b:30:8d:68:cf:d3:2e:43:ff:02:
e0:ce:8a:79:9f:44:61:1e:db:15:aa:8c:84:92:94:40:38:e2:
b8:83:1f:7c:e8:8d:d9:a8:a8:2f:0c:66:f4:ae:54:67:31:ad:
bf:8d:1d:42:50:fe:91:6c:84:67:5c:47:cd:52:5c:ce:ff:2f:
26:bb:2f:d2:17:0a:61:56:33:9b:98:26:99:ed:cc:7c:75:dd:
72:bc:5f:37:43:2a:3b:ef:c5:86:4c:7c:93:9d:0c:0f:ac:a7:
54:50:52:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org