Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/04EnQdSOt-9t3mNv8t-e51I8xUE.roa
File: 04EnQdSOt-9t3mNv8t-e51I8xUE.roa (raw, json)
Hash identifier: CH5N4HkVDAuMa5IhWLl6IQyu/MD/zuB/K7YR2aIIg/g=
Subject key identifier: D3:81:27:41:D4:8E:B7:EF:6D:DE:63:6F:F2:DF:9E:E7:52:3C:C5:41
Certificate issuer: /CN=01127566a5ac41e66b4c7537a60fdcbbfab39a17
Certificate serial: 0780E0C5
Authority key identifier: 01:12:75:66:A5:AC:41:E6:6B:4C:75:37:A6:0F:DC:BB:FA:B3:9A:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/04EnQdSOt-9t3mNv8t-e51I8xUE.roa
Signing time: Fri 01 Apr 2022 09:42:43 +0000
ROA not before: Fri 01 Apr 2022 09:42:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209277
IP address blocks: 88.214.16.0/24 maxlen: 24
88.214.17.0/24 maxlen: 24
88.214.19.0/24 maxlen: 24
88.214.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125886661 (0x780e0c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01127566a5ac41e66b4c7537a60fdcbbfab39a17
Validity
Not Before: Apr 1 09:42:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3812741d48eb7ef6dde636ff2df9ee7523cc541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:43:70:58:ab:f0:34:e7:7f:33:dc:5c:c7:76:
f5:42:a7:b2:35:ea:31:42:8b:2c:6e:49:1c:66:66:
cf:f3:63:24:7b:54:71:bd:f8:c7:3b:56:7e:b2:c4:
ea:d9:28:1f:94:96:d1:2c:f5:6d:9c:3c:1f:8c:a9:
59:6a:d9:c9:47:53:b1:b1:a0:b6:37:c6:7f:3c:2f:
d3:4d:a7:11:c0:95:35:aa:36:fb:70:38:d1:9d:85:
d2:38:6f:5d:78:a1:fa:32:1b:5b:6f:ed:f5:db:bd:
49:ff:3d:3c:16:74:e6:6f:9b:25:ac:24:93:af:1a:
7c:cd:f3:6a:d7:ee:c3:ba:af:2b:38:bf:e0:53:76:
2e:84:02:b0:76:6f:f3:66:da:29:6d:78:57:73:e2:
96:b1:ac:9a:13:7e:9f:3e:95:fb:e4:aa:6e:88:43:
f6:38:11:d4:05:20:5c:94:1e:69:1a:ef:d4:fd:58:
78:d9:58:7f:d0:08:f4:8a:ca:cc:c4:d8:b9:43:cd:
fc:c9:71:17:dd:8f:84:33:7b:73:c2:96:cc:29:86:
d1:41:dd:ab:91:78:16:63:db:e1:38:54:8e:74:58:
51:bb:82:30:d7:c1:39:1f:98:24:1d:a3:12:07:bf:
4f:8a:c2:ff:5e:fa:11:d8:d9:0e:73:c7:e1:8f:0b:
c5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:81:27:41:D4:8E:B7:EF:6D:DE:63:6F:F2:DF:9E:E7:52:3C:C5:41
X509v3 Authority Key Identifier:
keyid:01:12:75:66:A5:AC:41:E6:6B:4C:75:37:A6:0F:DC:BB:FA:B3:9A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/04EnQdSOt-9t3mNv8t-e51I8xUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:b6:c3:65:63:08:2b:62:8f:a3:4e:4a:94:6f:d6:de:fc:3a:
68:af:2c:92:88:5a:a1:c7:d5:6b:36:98:b1:39:96:b6:54:c0:
77:f4:54:2e:3c:b7:e5:c0:64:00:14:b4:8c:14:73:a4:55:a8:
37:ad:83:df:b7:ad:4c:79:c8:11:17:c3:cd:63:dd:45:90:8d:
15:50:98:90:d1:02:04:9e:d9:f6:ae:25:0a:7d:17:c9:d1:ac:
a9:13:10:f5:f8:55:08:f2:54:6d:04:07:89:d4:11:2a:9f:15:
4e:c6:44:d9:47:a0:5f:74:b1:44:72:95:39:18:ea:dc:4c:4a:
0b:20:3e:11:a8:03:29:91:42:40:dc:35:72:f9:93:dc:88:c3:
66:3c:a0:96:39:db:4e:3b:7d:98:ec:95:f1:63:56:5d:bb:05:
e0:ce:df:3c:a0:b9:18:e2:0c:1f:73:f6:13:b6:b2:f0:86:9d:
0b:5b:15:24:79:0a:c8:f5:44:53:ea:e3:ed:ed:b6:0a:b0:65:
bf:ff:a8:c8:44:47:95:98:3e:6a:94:28:3c:26:aa:1f:38:1f:
51:80:95:a4:7b:5a:89:a8:01:a8:a9:2c:1f:48:bc:2d:5d:da:
9b:e5:bb:8c:62:89:74:f9:fa:f2:a1:98:93:c8:6e:49:42:f1:
00:ce:75:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org