Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/BWOKSB6dKW6eIiID_0axWoldpuA.roa
File: BWOKSB6dKW6eIiID_0axWoldpuA.roa (raw, json)
Hash identifier: abuUmRJv9BzuuInXqMqjZkxfDBFnqoor1TmwGX9Qujw=
Subject key identifier: 05:63:8A:48:1E:9D:29:6E:9E:22:22:03:FF:46:B1:5A:89:5D:A6:E0
Certificate issuer: /CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Certificate serial: 018220204AB5B82F4F654B52E2CFDA088E6E
Authority key identifier: 74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/BWOKSB6dKW6eIiID_0axWoldpuA.roa
Signing time: Thu 21 Jul 2022 09:39:23 +0000
ROA not before: Thu 21 Jul 2022 09:39:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 88.212.158.0/24 maxlen: 24
88.212.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:20:4a:b5:b8:2f:4f:65:4b:52:e2:cf:da:08:8e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Validity
Not Before: Jul 21 09:39:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05638a481e9d296e9e222203ff46b15a895da6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:68:fa:26:07:1e:c1:af:92:36:ce:26:2c:
09:03:43:ef:48:89:d6:9c:85:f7:a8:1f:89:0d:8e:
e2:3d:df:b7:13:57:1b:7d:30:d9:e7:4d:8b:6b:98:
85:f2:31:ef:f0:b5:ba:99:7c:b0:53:78:3e:a8:da:
b0:b8:0f:6c:0a:82:ae:62:e2:e3:5f:21:88:47:80:
a0:3b:e0:2f:29:88:df:45:8d:86:99:78:20:42:36:
65:b7:fc:a4:43:3d:93:a3:a5:2d:37:88:53:44:0f:
68:5a:17:c7:02:bb:f7:75:e7:dc:78:09:bc:d8:89:
e6:15:b8:43:65:a8:48:a9:51:75:b2:1d:ec:8c:72:
16:65:01:87:4d:dc:f5:86:08:9a:e4:7c:fd:96:87:
87:1d:14:0a:a7:5c:14:c6:d2:67:ea:55:b7:4d:bb:
0e:17:0c:40:02:e1:59:c7:6e:3a:81:b9:9a:2c:b6:
2a:f8:0e:99:fd:8e:cd:96:aa:d4:ec:dc:c3:47:7f:
55:92:1b:5e:d5:49:d6:9b:1d:87:78:6a:fa:5d:05:
0e:d9:88:a3:39:7e:a3:8a:af:e9:26:41:c6:f8:90:
eb:92:42:02:f3:5f:e5:d4:00:69:b2:72:21:69:30:
ae:d9:13:ec:ad:41:82:df:0a:de:74:19:a1:b9:5b:
19:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:63:8A:48:1E:9D:29:6E:9E:22:22:03:FF:46:B1:5A:89:5D:A6:E0
X509v3 Authority Key Identifier:
keyid:74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/BWOKSB6dKW6eIiID_0axWoldpuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.212.158.0/23
Signature Algorithm: sha256WithRSAEncryption
12:ed:07:6c:86:b7:bf:c0:8a:16:33:29:5b:e5:8b:1f:13:ab:
d1:a6:31:b3:90:42:97:a0:1f:4c:83:6b:c4:65:01:7a:ec:48:
0f:0c:9d:bf:24:f1:9e:e6:ff:0e:3b:a1:0a:62:88:d3:43:76:
80:e4:de:91:28:d8:40:c1:20:0e:da:05:e2:51:03:f1:2d:bc:
9c:89:8d:01:71:c9:c0:d3:ea:18:42:a9:2c:96:b8:25:a5:2d:
e7:07:b6:1d:14:2d:c6:b2:e9:ef:fc:e6:7c:4c:15:0b:71:fd:
7c:39:1a:6f:49:1b:ee:e9:ff:f4:79:ab:6c:36:16:5a:75:cd:
44:ae:ed:a2:58:36:e0:f8:86:d7:06:6b:5e:e7:44:2e:31:85:
15:82:2e:2e:b3:58:9a:90:64:9a:1e:53:19:95:21:89:58:e5:
0a:e3:29:6a:38:f4:9d:35:62:84:66:67:08:0f:5c:83:d8:1c:
61:0e:09:e4:42:e2:b1:96:49:e9:16:2e:ff:dd:8b:20:4a:be:
c1:b6:43:24:61:6b:36:48:a3:5b:fc:6c:85:2b:d6:5f:71:47:
dc:a1:bf:b4:16:0d:60:f3:17:75:83:e7:a6:dd:43:f9:f7:0c:
cf:17:78:0a:ed:bc:1c:c8:3f:f4:48:86:fa:4a:3d:55:6a:8e:
52:be:72:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:39 2024 by rpki-client on console-fra.rpki-client.org