Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/7Wv4RjuK43Du9M-gY3vwbI4uqIM.roa
File: 7Wv4RjuK43Du9M-gY3vwbI4uqIM.roa (raw, json)
Hash identifier: M3zFDnJapzUTujDRIOiIagoIbM6oCS3Dop4m6sG1Mrk=
Subject key identifier: ED:6B:F8:46:3B:8A:E3:70:EE:F4:CF:A0:63:7B:F0:6C:8E:2E:A8:83
Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Certificate serial: 0181EDE1845E1D6E1B069F39E2ECA237927B
Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/7Wv4RjuK43Du9M-gY3vwbI4uqIM.roa
Signing time: Mon 11 Jul 2022 15:29:48 +0000
ROA not before: Mon 11 Jul 2022 15:29:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29551
IP address blocks: 88.214.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:e1:84:5e:1d:6e:1b:06:9f:39:e2:ec:a2:37:92:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Validity
Not Before: Jul 11 15:29:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed6bf8463b8ae370eef4cfa0637bf06c8e2ea883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:fd:58:39:61:fa:ba:0f:5f:8c:03:f1:14:
a5:c0:7b:cc:b1:b8:a5:05:b2:be:be:cf:fd:4e:5b:
e4:0f:3d:01:3f:27:3a:f9:34:2e:cf:a4:77:70:c2:
34:fb:40:e3:a4:c2:1c:cd:33:e7:61:d2:fe:0c:9c:
5d:f0:a5:4f:70:20:1e:cc:db:a2:fc:cb:dc:b8:28:
62:30:8f:9d:2d:6d:cd:48:92:d5:b7:9d:97:95:ee:
57:16:27:2a:7c:06:1b:81:6b:e8:1d:1d:9f:f1:3e:
83:d8:bc:c6:4c:b1:53:a4:4c:3c:59:c8:a3:d8:99:
0f:74:20:1b:cf:42:ea:14:bd:aa:ad:44:a7:e2:e5:
95:f5:4c:30:19:19:bf:87:64:a5:6b:9d:5b:88:c6:
f5:10:32:6e:ed:d4:42:c1:4a:90:e0:90:d6:4d:08:
b8:eb:c9:e6:33:2f:4c:70:f8:9d:a9:de:8c:28:4e:
5c:93:d5:29:66:ea:53:68:c3:77:84:9e:f1:5b:ca:
32:6b:b9:43:62:a3:1d:c9:63:aa:49:98:61:49:68:
6d:c1:87:ce:2c:e7:a1:2e:36:b3:ea:70:5e:2a:01:
05:ac:95:4c:65:a7:52:88:23:c1:23:c2:e3:aa:eb:
6f:89:61:6f:19:f8:1a:9e:6f:cf:71:64:d4:81:ca:
ba:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:6B:F8:46:3B:8A:E3:70:EE:F4:CF:A0:63:7B:F0:6C:8E:2E:A8:83
X509v3 Authority Key Identifier:
keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/7Wv4RjuK43Du9M-gY3vwbI4uqIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:bb:55:99:1f:4d:d9:47:b5:76:50:a9:d0:67:34:e9:20:85:
bd:78:f2:89:09:1c:9a:bc:83:7b:bb:a2:4b:8e:a3:bf:c3:89:
48:6b:14:ff:49:96:13:b6:84:21:ab:d5:05:b8:d8:11:9c:7d:
11:95:aa:f2:e9:44:20:64:07:e1:1f:72:f5:0b:5d:04:fc:ca:
9f:6e:c0:47:c2:fd:f6:8c:a7:f2:25:eb:6c:ef:76:67:3b:76:
33:e6:0e:f9:fb:ae:c6:75:f1:78:2d:ea:57:a7:b1:2b:23:0a:
0a:3a:53:3e:08:fe:11:e7:8c:e0:0f:c2:5e:84:d3:eb:7a:ae:
59:96:c0:8c:45:6f:d9:70:13:f8:a8:84:39:65:dc:d6:8b:6d:
fb:39:65:27:33:37:95:7a:f3:ff:57:33:0c:5d:2a:2c:df:2a:
78:eb:30:11:48:9f:60:e2:14:bd:0f:b9:fd:02:8d:e3:70:83:
4e:85:21:5d:d4:2c:4e:b7:d6:3f:53:68:6a:c4:ff:ca:f3:09:
fe:d6:80:5a:f1:8e:6b:44:8e:80:90:95:1c:ae:e8:17:70:13:
bf:fe:fb:62:bc:3e:cc:fb:80:75:a3:c7:6c:e3:16:e1:35:35:
b9:d7:0f:db:84:c0:bc:ae:63:df:6c:31:53:bd:4b:43:8c:c9:
09:2f:e7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-fra.rpki-client.org