Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/k-sA3N1xUb-AxR2j3PhNzvme_S4.roa
File: k-sA3N1xUb-AxR2j3PhNzvme_S4.roa (raw, json)
Hash identifier: ggdh5r4+7ZmkL10JmFmfm22AX8vgT360zwGldRjAA0g=
Subject key identifier: 93:EB:00:DC:DD:71:51:BF:80:C5:1D:A3:DC:F8:4D:CE:F9:9E:FD:2E
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38A01988
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/k-sA3N1xUb-AxR2j3PhNzvme_S4.roa
Signing time: Tue 17 May 2022 05:23:29 +0000
ROA not before: Tue 17 May 2022 05:23:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41889
IP address blocks: 88.203.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 950016392 (0x38a01988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:23:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93eb00dcdd7151bf80c51da3dcf84dcef99efd2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d2:d0:fb:a8:10:bf:f5:64:64:ed:44:5e:79:
a7:04:ff:18:fc:7c:d7:5d:de:22:ef:b7:5c:ba:4d:
2b:79:58:dd:b3:1f:eb:cb:25:a7:15:5a:66:df:ce:
1a:28:c8:42:ac:0b:54:5b:97:d8:75:cc:ce:2f:ec:
7c:ac:ea:6d:12:7e:cd:06:eb:4d:69:eb:1d:2c:5f:
02:a7:04:65:86:67:54:fe:65:93:80:1c:26:45:2c:
7e:3a:a6:06:e9:f9:88:dc:9f:aa:50:65:68:f3:fe:
3b:d6:7d:0f:68:25:79:09:0c:61:8a:ad:83:9e:10:
e3:b7:9a:2d:8f:68:b7:fa:58:00:49:a8:36:10:88:
d5:da:33:66:fc:5f:13:58:29:c9:5a:eb:26:64:c5:
f3:28:4b:ca:d8:e7:8a:75:c1:16:5e:ea:9f:e4:8f:
9a:dd:d8:b1:b1:6d:b9:44:81:84:11:71:5b:0f:1a:
ea:6f:67:41:32:9c:ad:25:a5:5a:c9:8a:73:81:2f:
18:5c:e4:3e:f9:b2:3f:f0:27:7b:a7:ac:22:30:4e:
bf:14:6c:75:12:1e:2d:90:a5:1b:d5:2c:aa:a0:56:
ed:94:af:cc:7c:bc:29:23:3e:55:0b:43:66:86:e0:
94:85:2e:d9:0b:78:3f:0b:3e:0b:ae:81:35:ed:22:
38:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EB:00:DC:DD:71:51:BF:80:C5:1D:A3:DC:F8:4D:CE:F9:9E:FD:2E
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/k-sA3N1xUb-AxR2j3PhNzvme_S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:37:e8:66:11:71:57:97:c8:b6:1e:c2:56:c1:3d:a5:58:6b:
94:7c:74:6d:2f:b9:70:41:25:6d:e8:8c:d8:b9:5a:83:95:9b:
8d:e6:53:ef:09:c7:4d:52:4a:a8:72:72:59:82:cf:4c:8a:22:
63:aa:e1:a6:56:7d:24:31:74:b8:86:f7:f5:fe:07:f9:40:e7:
c8:aa:bd:56:da:ed:16:97:c2:28:0b:15:72:5b:aa:c8:fe:ec:
35:dd:1f:be:2a:18:f7:4b:9c:b4:0f:f7:32:9c:14:2b:76:95:
54:f8:94:0d:7b:c9:f9:c6:a2:86:8d:bb:c1:15:7d:b4:86:07:
6b:5c:95:8b:35:f4:c3:3c:00:f2:cf:0c:93:51:a3:b7:39:5c:
bf:b5:b9:94:b1:5b:e9:79:25:8c:98:14:67:1a:12:47:15:cf:
7d:a8:b3:6a:0e:c9:76:5f:b7:1a:02:9c:47:fc:59:12:56:71:
6a:64:50:12:73:31:2d:44:c0:f4:de:55:1b:4a:7a:84:96:70:
55:c3:5f:cb:52:28:af:29:5b:7b:27:cb:cb:67:13:05:ae:ba:
ca:7b:b0:f5:7c:26:62:23:75:3b:04:d5:b0:96:3e:80:0a:d5:
0b:8d:43:97:0f:91:6e:d9:06:b6:d2:40:2e:95:a7:c5:df:c3:
2c:76:f4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org