Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/7S5_0yV3VnxlnW2Ef0JD_ZlcUyU.roa
File: 7S5_0yV3VnxlnW2Ef0JD_ZlcUyU.roa (raw, json)
Hash identifier: RoNqgFE/m36Z960NNad2NLHoEt+EUEj49CUaPZa3mMo=
Subject key identifier: ED:2E:7F:D3:25:77:56:7C:65:9D:6D:84:7F:42:43:FD:99:5C:53:25
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 099FF8C4
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/7S5_0yV3VnxlnW2Ef0JD_ZlcUyU.roa
Signing time: Sat 01 Jan 2022 05:04:13 +0000
ROA not before: Sat 01 Jan 2022 05:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203068
IP address blocks: 88.148.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161478852 (0x99ff8c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed2e7fd32577567c659d6d847f4243fd995c5325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:2b:76:f9:7e:d6:48:bb:01:64:22:d7:99:
d3:e7:e3:cc:86:3b:36:8a:55:da:81:bc:3e:32:fc:
d7:b9:2b:86:60:cd:7f:32:80:94:0a:eb:a2:86:93:
d3:b7:cd:5e:68:18:eb:f4:62:bf:ef:65:cd:d2:6f:
41:29:bb:34:7b:de:cd:5e:36:99:cc:36:af:cb:34:
9c:c0:82:0f:38:57:e7:ea:a9:5b:ba:68:a7:ba:69:
c6:e7:29:07:dd:36:61:5d:e8:9a:98:3a:ee:a6:30:
1a:98:95:f5:4e:53:ac:da:f5:11:0f:f2:b4:e3:ec:
7d:32:6c:ec:56:f3:77:05:d8:d8:ce:79:27:6c:12:
f6:1f:30:ac:9a:46:57:b5:b1:67:2d:10:ed:71:82:
a9:24:bb:ed:83:c6:92:98:3d:a1:1e:1e:ad:ce:95:
00:52:f9:b0:99:22:7d:7c:ea:8f:a1:83:e8:3e:dc:
bb:52:c3:f9:ac:7f:dd:33:0f:18:ce:af:02:aa:c5:
72:b8:45:b6:2e:b8:58:57:01:a3:1a:60:8c:d2:16:
53:5c:37:29:a0:c5:11:48:eb:27:6d:38:74:9c:4d:
86:da:12:f1:c2:2c:e9:25:7a:df:31:f9:55:29:03:
ee:54:9a:40:46:d3:e5:ee:8f:41:bf:7a:d7:a8:43:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2E:7F:D3:25:77:56:7C:65:9D:6D:84:7F:42:43:FD:99:5C:53:25
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/7S5_0yV3VnxlnW2Ef0JD_ZlcUyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.148.88.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:21:d7:e9:f8:39:20:2d:97:60:77:ba:be:f2:68:02:ed:ab:
79:20:91:83:1b:8d:44:a0:e0:4d:5f:5a:8c:1d:19:6e:d2:f8:
aa:ab:3a:d0:c2:5f:ab:69:0e:be:ad:92:8d:d7:64:74:68:d4:
38:ed:b3:2d:85:83:72:08:ce:bd:11:59:57:99:bf:d3:e5:c2:
17:b0:a3:7c:87:a3:81:f1:38:3c:6f:3f:95:2a:14:4c:3c:40:
f1:22:a1:20:f6:6b:2d:6e:f1:2b:8f:d7:4e:03:13:64:a4:18:
d1:e1:5e:d9:d1:4f:c6:27:04:6c:8d:9d:30:e1:36:66:43:b4:
14:f2:4a:3b:cb:2f:6a:35:26:74:7e:06:70:7a:b3:0e:87:46:
1b:db:c1:33:94:d1:0c:31:de:0c:75:40:1a:c5:ad:e3:cc:00:
6f:54:6f:45:2c:c6:13:cd:63:3a:f7:67:ac:dc:7a:08:c3:30:
03:67:ab:6b:ad:5b:3f:e4:66:be:e0:7e:4b:96:a9:a6:46:21:
77:6e:a7:e8:40:66:86:15:db:02:62:0c:66:9e:47:fa:e9:52:
a4:54:9a:00:4c:06:c4:f0:7a:b3:58:58:a9:04:66:7d:24:71:
34:06:81:c8:6a:51:d0:cd:9f:26:77:89:9f:07:c6:92:f1:79:
1e:57:a9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org