Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AXMWkq1Ek_-TtGqu6XoancpNYYk.roa
File: AXMWkq1Ek_-TtGqu6XoancpNYYk.roa (raw, json)
Hash identifier: pN/96WjqjuOrOIbBQ7JuJ4/I6pHmWdUCN6HV5Gc+SIQ=
Subject key identifier: 01:73:16:92:AD:44:93:FF:93:B4:6A:AE:E9:7A:1A:9D:CA:4D:61:89
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F4309E
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AXMWkq1Ek_-TtGqu6XoancpNYYk.roa
Signing time: Thu 28 Apr 2022 12:11:49 +0000
ROA not before: Thu 28 Apr 2022 12:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33825
IP address blocks: 88.203.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938750110 (0x37f4309e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01731692ad4493ff93b46aaee97a1a9dca4d6189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:6e:8b:bd:d4:3b:1d:ee:55:98:41:c8:54:
5c:f4:36:bc:af:53:e4:f0:5d:a9:53:a1:9d:ac:c0:
2a:b9:88:0d:ef:58:e4:40:cb:0f:42:4b:a2:e9:ff:
6a:d7:03:df:4e:c2:d7:8e:c0:ca:70:c4:2b:53:ff:
f1:ba:24:45:8b:ad:ce:2f:27:f3:c0:c2:08:4a:79:
cf:ca:12:b2:83:bd:f8:67:8e:6e:b5:23:27:1d:d3:
7b:b7:ce:39:31:88:1e:60:ee:c1:b8:0a:c6:45:ee:
22:fc:69:29:66:56:93:41:8d:2a:13:cf:d6:7d:52:
d6:08:92:e2:92:a9:ad:c3:d0:36:8e:2a:19:c6:c2:
36:f7:bd:5e:6d:d5:f1:05:69:e4:da:52:da:d4:9d:
b6:73:50:77:49:a0:7d:85:62:03:cb:9e:89:24:4d:
2b:0e:fe:ed:eb:46:cd:8a:b6:1f:42:2b:28:64:ff:
e9:6a:f6:93:8a:85:e9:41:9b:0c:e1:eb:78:f4:f4:
b5:be:a7:bb:e2:12:8c:00:d8:fe:24:45:f8:19:26:
20:8e:51:c3:ab:c3:2f:fb:cc:2c:93:5c:8e:8e:5b:
11:83:fb:b7:33:d6:06:c8:cb:d1:a0:b4:67:3c:77:
f7:49:ee:e8:39:94:75:bc:68:ff:5b:6a:07:8a:9c:
49:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:73:16:92:AD:44:93:FF:93:B4:6A:AE:E9:7A:1A:9D:CA:4D:61:89
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AXMWkq1Ek_-TtGqu6XoancpNYYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:24:68:2e:49:89:07:9f:1f:e9:cc:ae:a7:eb:71:62:fd:79:
5c:af:d7:08:50:94:1f:c5:df:7e:9b:01:32:24:0f:e5:3f:7c:
ad:22:8f:09:b0:a0:75:7b:14:e2:64:2c:b7:10:9f:99:11:ca:
4f:3e:01:ec:69:08:5d:8e:3b:ca:24:85:bc:97:0b:dc:fb:49:
7b:64:53:34:4a:08:c2:f1:96:92:99:b8:3f:3c:8e:d8:48:af:
d1:7d:1f:6b:3b:ef:03:07:2c:7f:a5:1a:93:9b:b7:82:a4:23:
92:b3:6d:92:01:aa:77:c5:cd:13:e6:93:04:ad:43:9b:9e:7f:
c4:10:eb:3a:9d:2a:a6:33:56:d5:89:08:e4:79:b0:f5:85:09:
94:b5:c0:aa:b0:c9:35:6c:ee:c6:8a:74:2c:99:d9:29:97:75:
4e:0a:e7:83:a7:6e:d1:d3:5f:6a:c2:7e:22:7b:93:b0:90:20:
03:0a:af:fb:59:70:81:ff:74:28:6f:48:ae:5e:01:53:66:b0:
ee:1f:51:a1:64:27:94:7e:82:02:aa:3b:e8:6c:26:9e:14:93:
72:c7:1c:76:80:e6:c9:99:6d:15:31:79:1d:84:e8:82:27:c1:
2a:a2:bd:0a:ff:97:73:91:bd:b8:cf:52:ca:ee:96:24:73:6f:
57:96:9a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:11 2023 by rpki-client on console-ams.rpki-client.org