Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/2M5T9iSW_GxFwhL2ip2FgrUyPkU.roa
File: 2M5T9iSW_GxFwhL2ip2FgrUyPkU.roa (raw, json)
Hash identifier: CF+bC8+xUriEd7DtWLapggiNnAABi1gpQgz9nrLnLso=
Subject key identifier: D8:CE:53:F6:24:96:FC:6C:45:C2:12:F6:8A:9D:85:82:B5:32:3E:45
Certificate issuer: /CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Certificate serial: 09C7E33C
Authority key identifier: 5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/2M5T9iSW_GxFwhL2ip2FgrUyPkU.roa
Signing time: Sat 01 Jan 2022 07:57:51 +0000
ROA not before: Sat 01 Jan 2022 07:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29014
IP address blocks: 88.205.24.0/22 maxlen: 24
88.205.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164094780 (0x9c7e33c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Validity
Not Before: Jan 1 07:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8ce53f62496fc6c45c212f68a9d8582b5323e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a3:47:96:a7:8b:19:d0:e6:dc:13:46:93:88:
f4:e6:f5:0c:99:c5:61:92:63:aa:e4:39:2c:c4:36:
c0:fc:9c:4d:6a:09:c0:b2:e9:14:af:d0:e7:4c:03:
a6:1e:8c:62:c2:63:12:9b:a6:e8:41:90:7b:ba:92:
cb:e7:91:5e:c5:b9:20:ee:27:11:5d:4d:cf:a7:fe:
76:5d:3e:dc:4f:80:29:b0:e1:4f:57:27:2d:16:92:
5c:40:35:e5:c3:44:04:c6:71:c2:6c:3f:94:07:91:
2d:91:b8:9f:8e:ed:03:d0:8d:ad:c3:b3:b8:42:cd:
72:ed:21:16:9b:8b:d1:88:8a:24:60:53:bb:30:4b:
06:d6:34:9b:ef:16:66:30:d4:0b:8b:7e:94:b5:9f:
36:a8:9f:27:0a:fa:3f:33:be:e2:c4:a8:0f:6b:24:
29:1e:1e:5f:b6:f8:b0:ae:03:f1:3f:e3:0f:50:8e:
35:f7:9f:aa:d5:f6:f4:df:fb:a4:81:c5:0a:46:20:
7b:38:88:e4:ab:9b:82:67:30:e7:d5:e8:16:bd:82:
29:25:45:97:68:05:33:89:0f:d4:7a:78:94:f5:21:
68:8c:1b:5a:f3:22:5c:20:96:9d:15:a0:75:f1:13:
37:66:20:d1:66:14:a4:c9:f7:6a:51:4f:bc:d1:b9:
37:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CE:53:F6:24:96:FC:6C:45:C2:12:F6:8A:9D:85:82:B5:32:3E:45
X509v3 Authority Key Identifier:
keyid:5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/2M5T9iSW_GxFwhL2ip2FgrUyPkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.205.24.0/21
Signature Algorithm: sha256WithRSAEncryption
09:1c:18:f2:81:4d:d6:1c:76:d1:1f:a2:1d:22:b7:cb:32:d0:
67:59:42:f6:fd:d5:9d:0e:6f:4d:2d:45:53:eb:69:d3:cb:8f:
34:b4:59:2a:2a:73:5c:4e:b1:c6:c8:44:ad:5f:a7:86:29:ad:
da:0f:81:69:3d:09:53:62:c9:b0:9f:83:a7:ab:bf:46:27:94:
56:d1:17:8f:bd:fd:6a:42:c5:23:32:74:b6:85:a7:a0:6a:23:
99:c7:c5:11:65:bb:91:0a:be:12:51:0a:8f:a0:08:45:05:4f:
41:31:a3:62:2c:1c:2c:12:81:09:b0:a4:de:38:2c:52:fa:c4:
f8:f2:d9:9b:b5:94:61:18:6a:35:58:35:50:38:ea:63:6d:10:
8e:b3:56:26:48:38:ce:75:52:8c:51:d0:d2:ff:96:9e:7b:57:
c6:f6:b1:4d:b3:28:71:fb:fe:f5:f2:26:4c:bf:7f:2c:91:20:
01:22:62:95:00:37:5e:40:c4:cb:60:cf:64:a3:2b:93:4b:c0:
c0:ed:ee:dc:15:59:71:cb:bf:8a:c2:22:23:97:d3:2f:5c:d1:
46:7d:1d:05:46:f4:30:45:40:51:5c:32:f7:f1:4d:e7:fe:48:
df:d0:4b:17:3a:f1:37:eb:5c:5a:1c:69:e7:ee:f1:72:f4:1b:
fa:f6:6c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:30 2023 by rpki-client on console-ams.rpki-client.org