Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/g1oAPtGZftraJjSmpuv4DNO72k8.roa
File: g1oAPtGZftraJjSmpuv4DNO72k8.roa (raw, json)
Hash identifier: miovSOU/nJSARJE8A4xkX4ukHW//ay/UvfsqMCXPXgU=
Subject key identifier: 83:5A:00:3E:D1:99:7E:DA:DA:26:34:A6:A6:EB:F8:0C:D3:BB:DA:4F
Certificate issuer: /CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Certificate serial: CF2FD0
Authority key identifier: CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/g1oAPtGZftraJjSmpuv4DNO72k8.roa
Signing time: Fri 13 May 2022 09:01:01 +0000
ROA not before: Fri 13 May 2022 09:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205784
IP address blocks: 88.210.29.0/24 maxlen: 24
88.210.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13578192 (0xcf2fd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Validity
Not Before: May 13 09:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835a003ed1997edada2634a6a6ebf80cd3bbda4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:74:9c:49:ae:5e:d4:fc:c9:64:d2:cc:57:8e:
0c:ba:97:5b:99:e1:3c:12:3b:85:2a:1b:e4:43:ff:
8e:b5:b5:28:9f:c9:94:2e:7e:d8:c4:6e:a7:ce:90:
5f:bb:09:7b:ac:54:ef:50:03:2e:d9:bf:4b:94:ef:
0b:91:d3:de:2e:5c:b4:11:a5:85:2b:da:c5:82:eb:
31:59:37:86:b1:60:34:03:78:2f:52:fc:5e:e6:6c:
91:9b:2f:2e:0b:57:6d:4f:81:08:c0:49:36:f6:28:
23:9b:d7:d4:31:38:fd:d2:7f:c8:16:d6:47:b8:f8:
ad:1c:98:fa:4c:a9:2e:c6:25:16:ce:f8:4c:8e:b0:
d1:87:00:31:3c:a9:90:18:f5:f0:5c:36:a4:fd:0b:
ed:af:73:3e:28:80:83:5f:15:0c:88:a9:22:17:c5:
27:4b:f6:d5:10:ab:91:17:40:b7:4e:a0:8f:d0:63:
23:5f:23:01:50:e8:02:7a:1e:85:31:3c:c3:8e:c4:
ba:1a:8e:d7:07:0e:d8:d6:81:20:b5:ce:1b:0e:48:
f8:f4:fa:fc:7f:17:45:5a:17:34:b3:4f:1e:3a:50:
52:be:ab:f7:6f:6c:ec:16:57:a2:be:5f:6d:3e:70:
0f:0c:73:dd:e6:3d:f1:0e:af:33:9b:2c:8d:cd:16:
f8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5A:00:3E:D1:99:7E:DA:DA:26:34:A6:A6:EB:F8:0C:D3:BB:DA:4F
X509v3 Authority Key Identifier:
keyid:CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/g1oAPtGZftraJjSmpuv4DNO72k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.210.29.0/24
88.210.49.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3b:dc:a8:b6:77:80:d6:2b:99:2b:e6:3e:62:14:22:07:34:
28:f1:d5:ad:46:d2:cf:cd:fa:99:b5:ac:b0:62:92:09:00:5c:
8f:9f:f6:00:72:ca:54:03:38:61:bf:ca:2b:25:48:c7:b2:5b:
94:5c:07:3a:52:b6:bc:fa:c1:d0:62:bc:bb:5f:46:dc:fa:ce:
e0:93:92:39:c1:56:9b:84:4d:b1:29:51:6e:8c:17:7a:f4:e5:
f5:90:1c:19:e0:11:29:a2:80:c1:67:fb:b8:1e:cf:e7:12:64:
a6:bc:58:93:d5:7b:5f:1b:29:76:f3:63:47:78:e8:47:20:c5:
46:52:95:e9:c0:1c:37:25:a3:23:f1:b7:ff:a5:99:70:cd:b4:
a2:ce:2b:98:5d:9c:30:a8:9f:e8:a9:d0:80:08:e1:b5:ae:00:
f7:82:54:2f:e2:2e:9b:30:69:f7:55:a6:b8:f8:b1:74:2f:1d:
2a:db:7a:14:60:32:21:21:15:fc:db:97:75:4d:a7:0c:a3:18:
83:e6:7b:e4:93:5a:de:32:7a:16:ee:fe:1f:34:fe:d0:db:a3:
39:2a:df:52:b5:0d:da:1e:1f:f1:90:7a:79:27:d0:36:37:e7:
88:23:df:3d:c7:2a:04:37:ae:2f:fc:8f:01:c3:ba:ec:c9:6c:
37:f8:e2:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:20 2024 by rpki-client on console-ams.rpki-client.org