Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/f19c9e-c541-4363-b25b-a806163ec294/1/sFJM2UVNBtk3s6vxWZXmNhYtOhY.roa
File: sFJM2UVNBtk3s6vxWZXmNhYtOhY.roa (raw, json)
Hash identifier: KY30n5c8oH2RKUBbGWxxJ8h9WAS0s+86l0l2p8LrN2A=
Subject key identifier: B0:52:4C:D9:45:4D:06:D9:37:B3:AB:F1:59:95:E6:36:16:2D:3A:16
Certificate issuer: /CN=d95413eb29a43d2e45fecdd88ee5396c96bf1cb5
Certificate serial: EB4D
Authority key identifier: D9:54:13:EB:29:A4:3D:2E:45:FE:CD:D8:8E:E5:39:6C:96:BF:1C:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VQT6ymkPS5F_s3YjuU5bJa_HLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/f19c9e-c541-4363-b25b-a806163ec294/1/sFJM2UVNBtk3s6vxWZXmNhYtOhY.roa
Signing time: Wed 30 Mar 2022 07:48:52 +0000
ROA not before: Wed 30 Mar 2022 07:48:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42184
IP address blocks: 88.218.84.0/22 maxlen: 22
185.72.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60237 (0xeb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d95413eb29a43d2e45fecdd88ee5396c96bf1cb5
Validity
Not Before: Mar 30 07:48:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0524cd9454d06d937b3abf15995e636162d3a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:63:7b:c3:e5:2e:01:4c:5f:ee:af:5f:de:1e:
38:06:72:43:1f:7e:13:56:da:09:fd:75:31:d2:29:
e5:f2:c8:72:74:bf:37:b0:f0:30:c3:d6:09:42:b8:
4e:46:b5:34:a6:7d:c0:c5:20:20:5c:c1:ce:82:e0:
ad:c6:fe:82:29:1c:0f:2e:60:b4:29:d1:d9:5d:0e:
a2:eb:d6:ca:e1:6c:b3:63:d7:09:2d:20:85:25:91:
38:fa:77:23:af:d5:af:11:53:f8:1a:7c:79:61:a8:
38:2f:27:4c:6e:32:7b:4c:7b:a4:30:b6:a3:47:21:
da:43:bd:62:de:9a:6a:2d:1f:8a:4a:15:6b:1e:ab:
8d:d5:35:5e:9d:be:a1:41:33:f4:c0:ad:cd:31:0d:
15:e5:42:e5:71:86:82:40:df:e6:05:30:bd:4a:37:
db:0a:27:f2:23:dc:02:0a:e3:eb:5f:7d:51:e3:ba:
b7:c6:af:b6:70:2b:3c:00:ff:8b:33:ac:28:d7:72:
54:2d:73:4d:78:e9:6b:4a:b7:6e:99:6c:98:1b:18:
e8:e6:82:31:ab:ef:8e:b8:ab:0f:f9:69:2e:e0:b1:
a4:27:8b:5a:00:2f:f5:34:16:a2:14:06:ed:9d:57:
f3:cd:14:98:c7:fe:2f:fb:68:5e:2a:a1:14:3f:ed:
76:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:52:4C:D9:45:4D:06:D9:37:B3:AB:F1:59:95:E6:36:16:2D:3A:16
X509v3 Authority Key Identifier:
keyid:D9:54:13:EB:29:A4:3D:2E:45:FE:CD:D8:8E:E5:39:6C:96:BF:1C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VQT6ymkPS5F_s3YjuU5bJa_HLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f19c9e-c541-4363-b25b-a806163ec294/1/sFJM2UVNBtk3s6vxWZXmNhYtOhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f19c9e-c541-4363-b25b-a806163ec294/1/2VQT6ymkPS5F_s3YjuU5bJa_HLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.84.0/22
185.72.200.0/22
Signature Algorithm: sha256WithRSAEncryption
23:fc:26:55:6e:c0:ad:bb:13:24:e6:89:fe:a4:91:0d:04:29:
4d:89:50:fb:6b:3c:60:c0:8e:8b:70:e2:53:1c:29:75:26:e2:
44:11:3f:13:4d:95:e3:fe:9b:08:f1:c1:f6:15:bf:43:88:3b:
60:ad:8b:24:cd:90:cb:99:91:c0:1b:4d:cd:e6:13:a9:dd:25:
65:97:f7:da:82:ae:fc:45:d8:e7:93:41:60:c5:bb:4f:5b:02:
54:9c:04:62:2d:46:df:a7:70:fd:aa:d0:50:dc:27:d4:22:b3:
cd:44:bd:fd:33:e2:03:b4:85:34:1a:19:1f:5b:a5:90:6a:94:
e8:90:e1:b2:aa:46:f3:68:22:be:78:d0:ec:67:ce:37:e2:b5:
cc:55:ba:fa:c3:69:08:45:cf:59:d1:35:2c:41:2d:88:a2:d5:
b6:cd:7f:99:58:a4:ae:7b:d7:5b:df:bd:f1:6c:ec:c2:fe:81:
33:39:15:15:1e:65:53:9c:bc:23:39:e6:87:12:3d:f6:1d:4a:
ab:86:01:d7:6f:a1:ee:04:0d:a0:43:3b:5b:64:1e:db:a7:30:
88:79:0a:64:c7:02:8a:3c:60:04:3d:bd:e0:f3:05:c6:04:04:
a1:10:83:5e:4a:3c:ac:34:93:4f:bd:6f:3c:71:87:15:7c:37:
29:59:72:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-fra.rpki-client.org