Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/2tbCxnA-7Xw0XZei1mwrorhfgds.roa
File: 2tbCxnA-7Xw0XZei1mwrorhfgds.roa (raw, json)
Hash identifier: mAVk7tVcwod/lUkNF3pKVlpTleZhU2KFw4va5qSV+ho=
Subject key identifier: DA:D6:C2:C6:70:3E:ED:7C:34:5D:97:A2:D6:6C:2B:A2:B8:5F:81:DB
Certificate issuer: /CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Certificate serial: 012E40F3
Authority key identifier: 60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/2tbCxnA-7Xw0XZei1mwrorhfgds.roa
Signing time: Wed 25 May 2022 04:47:14 +0000
ROA not before: Wed 25 May 2022 04:47:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50289
IP address blocks: 88.84.193.0/24 maxlen: 24
88.84.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19808499 (0x12e40f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Validity
Not Before: May 25 04:47:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dad6c2c6703eed7c345d97a2d66c2ba2b85f81db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:db:f7:12:38:a5:91:43:3b:39:8a:0f:c8:cf:
33:af:7b:55:86:a6:d4:ea:30:77:06:92:bf:c2:cf:
3d:10:2d:da:ff:02:9e:0d:5d:56:12:2c:43:f4:cf:
c0:38:2c:5b:1a:79:f4:57:bb:75:8c:a8:41:89:70:
31:a5:a6:61:c4:a4:86:c2:f1:2b:5a:1b:1b:da:ab:
8c:62:a3:ce:76:b1:f2:70:fb:9e:1c:a4:d8:4b:2e:
bf:46:4f:f6:a9:e5:c9:22:d5:17:63:e7:93:d9:d4:
ee:78:e2:a3:a7:a3:4c:91:e7:ad:7f:4f:db:fb:fe:
7e:9a:53:f4:26:27:0b:a5:bd:61:c6:db:6a:e5:44:
35:66:0d:20:f5:72:d9:d6:b6:3f:d0:a9:51:71:8c:
a0:a3:c9:91:8f:90:08:ab:d3:ca:04:c6:80:a3:91:
d2:a3:46:2c:87:30:dc:18:aa:6a:d9:60:a6:6f:c9:
15:78:0d:0d:31:a0:d6:25:3e:b2:60:5d:f4:21:ac:
43:98:33:22:e0:dc:20:5f:60:b2:9a:ae:52:c6:dd:
2d:82:c7:40:b7:69:15:32:e0:d5:94:08:32:8b:b0:
37:80:d6:1d:14:47:58:de:c3:7f:43:a1:60:6a:31:
4c:9a:33:52:61:dc:e8:b7:1e:8a:bc:e0:ca:d0:90:
c1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D6:C2:C6:70:3E:ED:7C:34:5D:97:A2:D6:6C:2B:A2:B8:5F:81:DB
X509v3 Authority Key Identifier:
keyid:60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/2tbCxnA-7Xw0XZei1mwrorhfgds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.84.193.0/24
88.84.208.0/24
Signature Algorithm: sha256WithRSAEncryption
67:3f:21:54:4d:64:ba:64:35:23:ee:c4:d5:9a:97:f2:aa:6c:
23:17:18:40:62:61:78:3f:91:db:49:ba:39:05:8b:03:21:49:
c8:6f:b3:a7:c0:61:b2:c5:3d:06:dd:bf:ea:c3:3c:d4:d9:5b:
27:8a:e6:6a:1a:74:1a:af:b1:6f:98:83:0c:89:b9:0b:63:02:
bd:be:24:a3:6c:ea:b4:26:94:0a:75:61:8f:5e:76:eb:f4:85:
1f:da:a1:60:c7:55:9e:58:64:ba:cb:0a:63:80:79:24:1e:65:
e3:71:b6:88:1e:9c:e5:64:ec:14:6e:7d:1f:d5:f2:74:0a:17:
9c:7b:56:47:3d:ac:e6:f2:93:d3:ac:81:52:b1:9e:30:00:d8:
0f:07:73:b0:82:f4:23:f8:78:f9:0b:22:7f:0a:81:5d:48:b2:
61:02:a5:52:a6:49:44:37:4b:29:e8:b5:4f:02:0f:94:d8:bc:
6c:c6:f0:31:59:5a:62:85:24:d8:db:72:81:eb:03:a6:43:ba:
d3:43:1e:37:fa:f8:4d:f8:a4:b8:9b:d6:1a:83:d8:09:c1:59:
42:d7:61:19:c1:6a:24:0a:cc:d5:99:0e:17:0a:33:67:a7:19:
4c:3d:e0:0f:56:1e:e7:7a:b8:f1:c7:65:ed:d6:a9:1f:b1:d8:
fa:9b:d2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:11 2024 by rpki-client on console-fra.rpki-client.org