Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/vowXg9fifqMN5YqoDNypABYYFog.roa
File: vowXg9fifqMN5YqoDNypABYYFog.roa (raw, json)
Hash identifier: HuDCRiRtb1g5GwWKqI3bNCEPt5qxKWtAhDsJFUH4pN8=
Subject key identifier: BE:8C:17:83:D7:E2:7E:A3:0D:E5:8A:A8:0C:DC:A9:00:16:18:16:88
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07623038
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/vowXg9fifqMN5YqoDNypABYYFog.roa
Signing time: Tue 01 Feb 2022 12:24:20 +0000
ROA not before: Tue 01 Feb 2022 12:24:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.88.138.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123875384 (0x7623038)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Feb 1 12:24:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be8c1783d7e27ea30de58aa80cdca90016181688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:20:36:8d:01:ed:d1:64:8b:ce:f9:5e:e3:e8:
f5:4d:5d:f0:90:c0:8a:d5:fd:6b:53:c9:53:8b:bf:
33:d4:79:d8:a6:06:16:bc:04:fc:7b:be:a4:0b:f2:
4c:0f:2b:97:b2:fb:3c:c5:1b:44:8d:cf:88:d9:4c:
d0:9a:da:a4:2c:67:a0:3e:15:aa:67:27:66:da:60:
24:ef:70:8e:e7:18:3d:03:b8:4f:b3:18:7f:57:e4:
df:d5:44:61:ac:ba:0b:d7:1d:41:42:40:fa:54:f6:
6b:ac:3f:f8:d1:c2:68:86:69:b0:0c:15:05:5e:4d:
98:ca:c0:8f:6d:f9:09:e7:ed:0d:1a:f0:02:b9:4c:
9c:8d:1e:9e:77:6d:9b:38:9b:5a:9d:7e:2c:72:1c:
4a:59:5e:76:48:69:2e:ee:f8:1f:60:6f:88:ce:14:
28:ce:38:51:30:23:fc:76:46:b4:0c:d5:9a:1e:31:
1b:4a:f2:30:44:c6:fe:12:0c:e6:dd:e5:d8:cf:cc:
f0:ce:50:34:d7:0e:d1:20:d8:9b:43:f9:4c:52:ae:
c6:67:81:64:59:46:98:8e:a1:fd:48:d7:ce:a3:9e:
7b:38:3b:5e:87:2d:d3:93:de:60:99:70:fb:c7:43:
6e:dd:97:d3:6d:37:f8:33:80:3d:9d:76:7c:2f:c2:
ee:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8C:17:83:D7:E2:7E:A3:0D:E5:8A:A8:0C:DC:A9:00:16:18:16:88
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/vowXg9fifqMN5YqoDNypABYYFog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.138.0/24
77.83.37.0-77.83.38.255
Signature Algorithm: sha256WithRSAEncryption
3f:8c:99:80:d9:6e:13:87:e8:9d:89:1a:dd:38:7f:78:4e:fe:
fb:34:0c:3d:9b:15:16:64:6a:25:0f:16:ff:bc:93:49:4e:b4:
53:0d:0d:99:41:19:63:35:9f:8e:19:40:38:68:d2:dc:0a:c2:
cb:6d:c6:ff:ff:cc:91:f5:55:d2:d3:e6:7a:65:af:29:2a:a0:
df:31:2d:4a:75:b5:49:d7:4b:14:2e:1a:35:19:0b:0b:ab:56:
c6:18:60:59:39:07:85:90:70:b3:4a:f0:cb:c8:1c:a7:99:ca:
62:52:ca:16:f5:e0:2c:0a:96:14:25:55:a4:98:60:c8:25:c8:
ae:3f:13:ec:7d:8a:55:ed:d7:bf:5c:7a:0b:54:8a:0c:83:b5:
98:ef:0f:78:1f:68:a2:6e:2e:33:33:3a:88:d6:9d:f5:be:e7:
22:86:25:bd:fe:2a:9b:c8:f4:85:bd:29:52:27:6f:52:58:42:
08:af:35:d1:1a:88:15:28:7d:2d:4c:b4:2b:34:8c:09:8a:0b:
49:5e:ec:cb:2a:48:cc:4d:7a:9a:90:c3:ce:39:9e:e2:51:52:
d5:38:05:cb:1d:a0:bf:78:12:29:ff:c9:cc:77:62:c4:10:fd:
25:96:10:1d:d9:4a:52:7c:2f:39:fa:c7:ea:89:84:90:72:09:
6f:80:81:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org