Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/CvinsXOlfyckHQXy_7V8DoYNi7k.roa
File: CvinsXOlfyckHQXy_7V8DoYNi7k.roa (raw, json)
Hash identifier: IJFqbkfRxoL8Wim+Q9pvaeHhBIrFRLM8qq/YKJQ+eSw=
Subject key identifier: 0A:F8:A7:B1:73:A5:7F:27:24:1D:05:F2:FF:B5:7C:0E:86:0D:8B:B9
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F407D8
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/CvinsXOlfyckHQXy_7V8DoYNi7k.roa
Signing time: Thu 28 Apr 2022 12:11:09 +0000
ROA not before: Thu 28 Apr 2022 12:11:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208318
IP address blocks: 88.203.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938739672 (0x37f407d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:11:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0af8a7b173a57f27241d05f2ffb57c0e860d8bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8f:9e:e1:cb:33:bf:43:c6:34:fb:c8:e7:eb:
fd:af:ff:fc:cc:16:13:44:e7:89:f4:93:f6:49:a1:
44:ec:5c:eb:37:85:18:b8:f1:f6:a2:26:28:6d:ed:
78:2e:3b:69:8b:bd:f2:46:1c:57:21:01:62:8f:19:
88:b0:2a:9b:76:43:45:53:38:17:9a:ee:2a:82:48:
7c:0c:a4:35:3f:eb:a2:72:de:40:d6:74:cd:22:df:
8d:ec:14:e4:ab:d1:75:fd:54:f0:79:7b:7f:1a:22:
9d:ac:53:cd:38:ad:1d:1b:5a:4c:ac:86:04:0a:62:
40:c3:0a:86:88:ed:7f:4e:a6:d7:80:bf:cc:02:d5:
f0:50:1a:a9:9d:c4:aa:66:5e:a3:69:c4:da:39:2b:
18:28:cc:70:97:49:cc:e2:cb:bf:66:86:5f:de:3f:
56:84:87:df:c9:b8:7c:73:31:eb:46:e9:e7:3c:d2:
d3:d3:97:69:a8:3d:28:49:c5:16:83:8f:50:0a:8d:
91:e3:03:02:b8:f8:d4:b8:04:a4:67:9c:f5:fd:f6:
73:5c:06:8d:0c:8a:6f:19:3c:3d:bf:8d:f3:9d:ba:
c1:70:03:8b:77:5e:85:3d:d5:b8:70:ec:b0:17:99:
1a:24:68:ce:e3:c0:05:73:b9:7c:fe:67:12:dd:10:
e2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F8:A7:B1:73:A5:7F:27:24:1D:05:F2:FF:B5:7C:0E:86:0D:8B:B9
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/CvinsXOlfyckHQXy_7V8DoYNi7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.205.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a7:9d:1a:9a:0b:73:f4:f7:bb:5b:2c:84:16:94:b5:a3:cd:
f9:ae:42:fe:db:fb:c6:98:7c:02:53:71:5c:e0:4a:1b:01:76:
ba:a9:fd:2d:46:5c:fc:92:ac:5f:e3:34:db:06:ee:f0:e1:e9:
fc:f6:2d:ad:3c:8c:43:1c:5b:24:4a:2a:da:80:ea:6a:82:87:
f6:30:a3:ff:0a:47:9c:30:85:22:37:e7:b2:52:4d:b5:62:66:
1d:af:9c:46:97:16:d4:07:95:94:6d:f0:b8:e9:00:fc:08:0c:
e3:d6:6d:dd:8f:de:6a:e6:06:93:ee:9d:0f:fe:1a:f0:2d:d1:
37:35:fe:f1:07:89:83:e8:ff:1f:68:06:a4:01:5d:3c:48:10:
ce:a3:98:19:5b:d5:c7:e2:b8:ff:16:c6:ff:99:83:1b:98:98:
4c:45:b3:1d:9a:32:ed:c0:cd:fb:ae:8b:91:67:40:0d:cf:81:
3b:cc:56:52:e8:fc:84:d4:ac:ed:5f:f0:70:ec:f9:2d:94:d4:
6c:3d:ba:6a:6c:89:b5:48:0a:b1:9d:44:49:50:87:f1:b0:a7:
57:dd:4b:48:0d:95:95:82:0a:7b:b3:86:a7:c6:a7:56:07:2c:
e3:5d:1d:62:b9:0b:6f:ea:19:8c:64:29:b2:b3:81:f1:a3:5b:
00:63:fb:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:18 2023 by rpki-client on console-fra.rpki-client.org