Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kIVfoNt0FvcEhq1bgOfxNrQGFWQ.roa
File: kIVfoNt0FvcEhq1bgOfxNrQGFWQ.roa (raw, json)
Hash identifier: dDywxqxNAtl4GYTeA6DvIJi1xmQV1CGSuwqU8DmNTAI=
Subject key identifier: 90:85:5F:A0:DB:74:16:F7:04:86:AD:5B:80:E7:F1:36:B4:06:15:64
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 0879967D
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kIVfoNt0FvcEhq1bgOfxNrQGFWQ.roa
Signing time: Sat 01 Jan 2022 00:53:34 +0000
ROA not before: Sat 01 Jan 2022 00:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206224
IP address blocks: 88.119.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142186109 (0x879967d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90855fa0db7416f70486ad5b80e7f136b4061564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6a:76:01:16:2f:1a:21:e3:0f:a2:35:bb:89:
78:80:8d:af:19:58:d9:50:77:0f:b4:65:c7:24:ed:
03:2b:c8:1b:c4:2e:14:8f:a8:2b:15:02:5a:12:44:
26:83:25:ae:3b:9a:fe:4d:ea:f4:8b:45:b4:3a:c6:
e4:4c:1d:c2:53:e9:28:86:99:47:99:c6:af:16:ab:
fb:0c:6e:69:aa:a9:e6:67:31:2d:20:30:62:53:c0:
5c:84:08:1f:5a:3f:2e:67:b1:15:f4:93:b5:f1:fa:
83:08:30:ed:01:ca:95:f3:66:e0:b7:f9:9c:ef:96:
1d:ec:40:39:07:27:6c:e9:4d:25:e0:16:f1:43:bd:
e8:1f:e6:8c:c3:66:8f:05:80:81:ee:75:62:fc:95:
e6:0d:ba:9c:eb:e4:5b:a0:e3:ad:85:2e:c8:4f:df:
ed:4c:85:08:24:d0:3d:76:35:4f:90:8e:81:42:73:
93:76:ee:5b:88:d0:51:8f:50:bc:00:50:3c:75:d8:
01:ed:d6:b3:55:8b:15:08:e8:d2:04:bd:0d:55:95:
93:48:e6:a7:5e:61:7a:b0:f4:a0:ab:da:10:88:3d:
79:1e:fa:ae:09:61:10:9f:a7:7a:4f:d2:af:31:e2:
97:a0:55:53:6f:74:3c:14:ef:87:86:60:92:75:b7:
d4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:85:5F:A0:DB:74:16:F7:04:86:AD:5B:80:E7:F1:36:B4:06:15:64
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kIVfoNt0FvcEhq1bgOfxNrQGFWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ba:8b:f2:f4:e0:9e:22:8f:03:ec:4d:97:74:9e:aa:76:6e:
69:48:d2:7f:00:ac:bb:79:c2:81:b1:fe:d2:7f:cb:41:3d:7a:
b5:0e:0b:50:57:1c:f9:b8:15:11:d8:08:a4:51:2d:f8:89:99:
7a:cd:d5:d6:0a:fd:73:e0:6a:ae:b7:0b:82:98:f0:40:28:54:
c6:61:76:98:4e:25:91:7d:95:46:66:49:33:41:1f:d3:6f:4d:
15:50:d5:9e:fe:ed:1d:f1:20:17:f5:9d:6d:2c:37:ea:b0:27:
09:25:0f:4c:14:47:42:e6:0d:94:59:2d:0d:27:59:47:00:7b:
23:40:24:d6:1c:42:79:3b:a7:b5:6a:05:61:28:2d:fa:1d:09:
b6:a2:d1:fc:99:fe:d2:d8:0e:4f:5b:02:7f:e3:00:03:80:cb:
91:16:8c:91:ef:f8:8e:cb:8f:1c:c8:19:b8:37:bb:e1:46:43:
93:af:95:77:61:4d:a1:27:70:74:81:14:94:fc:4a:79:00:aa:
f3:86:fb:20:b7:3d:45:e4:2d:4e:4a:2a:ff:8c:a0:f3:bf:55:
f0:fb:87:6d:f5:bb:57:c3:89:6d:e6:ee:e4:47:0b:07:bc:0a:
ee:1b:44:51:ae:4f:00:db:93:10:e0:25:f1:cb:2d:37:e7:e6:
70:ad:e7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org