Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/TJdxYJIaJpGADeng9Vd4NiRR5JM.roa
File: TJdxYJIaJpGADeng9Vd4NiRR5JM.roa (raw, json)
Hash identifier: 3EiqdH3Fp7NDuYSuIUD2uhWsFj5VKcQSGTArAd4W7Sk=
Subject key identifier: 4C:97:71:60:92:1A:26:91:80:0D:E9:E0:F5:57:78:36:24:51:E4:93
Certificate issuer: /CN=2f1ac9f094d8318f3088dca68301865f4605e9da
Certificate serial: 01425DA0
Authority key identifier: 2F:1A:C9:F0:94:D8:31:8F:30:88:DC:A6:83:01:86:5F:46:05:E9:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxrJ8JTYMY8wiNymgwGGX0YF6do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/TJdxYJIaJpGADeng9Vd4NiRR5JM.roa
Signing time: Sat 01 Jan 2022 12:56:06 +0000
ROA not before: Sat 01 Jan 2022 12:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 88.151.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21126560 (0x1425da0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f1ac9f094d8318f3088dca68301865f4605e9da
Validity
Not Before: Jan 1 12:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c977160921a2691800de9e0f55778362451e493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:2d:71:6b:28:1e:2a:b7:cb:a5:a0:83:03:
f1:1a:7b:66:f3:df:e3:56:48:aa:31:04:58:a2:d5:
a0:f6:c0:28:df:e1:86:81:25:7d:5a:7f:3f:66:69:
93:13:da:2c:09:2f:42:ce:a7:6f:d4:f8:e4:bb:09:
07:b6:72:0e:5f:93:d1:e1:5f:0a:61:1c:bd:0e:66:
cd:7a:fb:02:77:3b:e4:af:d3:cd:40:ac:57:19:fc:
98:81:0d:01:2f:4d:91:81:e8:3c:3a:7a:e4:99:02:
08:23:23:78:16:66:0c:1a:c8:bc:ce:22:e3:3d:9d:
cf:ef:9d:56:62:53:44:71:99:b1:66:db:c0:28:02:
5e:7f:97:82:2e:29:32:ab:1c:fa:8f:f0:c0:fb:be:
48:f7:50:20:e1:63:6f:9d:cb:b3:d7:d9:da:05:9f:
e8:53:21:8b:70:4d:e3:9f:36:aa:b1:b5:c9:0a:63:
15:6f:12:b2:9d:27:7c:09:66:70:a7:c0:23:3c:16:
8c:d3:3d:3e:da:a0:40:32:35:86:8b:53:9b:70:8f:
8d:3d:56:58:be:49:d6:c7:dc:cb:e1:48:d0:0b:20:
75:fd:2e:52:ab:9d:a2:e5:04:e6:e1:ae:78:f0:79:
94:19:37:16:ff:cd:dd:2a:65:34:c2:fc:f8:e5:1d:
a0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:97:71:60:92:1A:26:91:80:0D:E9:E0:F5:57:78:36:24:51:E4:93
X509v3 Authority Key Identifier:
keyid:2F:1A:C9:F0:94:D8:31:8F:30:88:DC:A6:83:01:86:5F:46:05:E9:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxrJ8JTYMY8wiNymgwGGX0YF6do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/TJdxYJIaJpGADeng9Vd4NiRR5JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/041968-15eb-4388-985a-c23c829db937/1/LxrJ8JTYMY8wiNymgwGGX0YF6do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.14.0/24
Signature Algorithm: sha256WithRSAEncryption
96:8d:cd:67:b7:24:50:23:03:96:2b:25:f9:67:66:37:70:a8:
9a:45:58:af:7e:56:61:f5:39:25:a2:b7:f0:ce:0d:36:87:01:
2c:14:a2:eb:43:95:86:a4:58:58:23:b1:9a:a0:21:a4:65:8d:
da:6b:27:67:4c:2e:2b:93:41:39:38:e5:9f:f3:84:da:5f:72:
7d:f3:b5:0b:d0:f2:df:90:d3:6a:2f:15:49:10:7c:1f:29:5f:
a5:22:69:3a:6b:eb:cb:35:cc:f6:46:c2:85:52:a7:3d:29:1e:
37:75:5d:06:cf:02:52:22:f4:67:63:4d:96:85:c0:79:1e:49:
9b:12:ad:25:6b:f3:24:c8:98:73:1b:de:87:7d:ad:d2:49:ca:
4f:8a:b9:ca:e1:5b:48:4b:e0:a2:11:a4:f6:e8:0b:0e:c2:3d:
1a:c0:e8:14:97:60:2f:03:93:59:84:16:82:ce:e5:32:53:cb:
cc:81:d6:5d:ef:be:37:b2:e9:54:b8:75:e4:7c:80:ba:3c:09:
c2:84:04:ec:1c:38:67:b9:f4:5e:6d:bb:a0:e7:fb:fa:cb:d0:
62:e5:0a:18:7a:b9:bd:20:b8:45:fe:92:5b:b8:42:f6:4c:e2:
22:5c:6f:03:f7:03:9b:23:47:89:7d:69:4b:da:76:29:b6:48:
b9:46:5f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org