Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/_LJv72MSo50-tDnb_36Q2rW27zo.roa
File: _LJv72MSo50-tDnb_36Q2rW27zo.roa (raw, json)
Hash identifier: TcsfwYSl+vAgAjpyk16cPgh+je8q30Tk8u7uU3LULF4=
Subject key identifier: FC:B2:6F:EF:63:12:A3:9D:3E:B4:39:DB:FF:7E:90:DA:B5:B6:EF:3A
Certificate issuer: /CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Certificate serial: 0800146E
Authority key identifier: 63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/_LJv72MSo50-tDnb_36Q2rW27zo.roa
Signing time: Sat 01 Jan 2022 02:01:25 +0000
ROA not before: Sat 01 Jan 2022 02:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209716
IP address blocks: 88.218.235.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134222958 (0x800146e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Validity
Not Before: Jan 1 02:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb26fef6312a39d3eb439dbff7e90dab5b6ef3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:06:1f:8e:73:31:b0:2b:cb:0b:2e:ed:5e:
7b:74:62:5c:6c:c2:3e:0f:e0:0e:6e:22:c5:e5:8d:
89:70:6a:87:26:ec:b1:9b:aa:5c:ca:d0:a1:10:77:
71:6b:d8:2f:18:7f:99:1b:6d:c9:eb:b5:d8:ab:b7:
c3:2d:6c:ab:c1:8a:60:9b:92:ba:69:82:a1:45:38:
9a:72:b1:0b:88:7f:ea:67:86:a6:d4:e5:b1:a6:d7:
ef:0a:92:77:47:6e:2a:2b:1f:e4:15:9a:c7:52:6f:
12:f3:3f:11:a5:2f:c3:49:cf:e1:9f:e9:dd:52:ff:
f9:65:75:b6:a5:d2:a2:ee:0d:74:7b:9c:cb:eb:5c:
1a:7f:e3:ce:77:2c:71:d7:06:e6:25:0c:a2:c4:86:
6e:c1:cf:d2:33:75:a7:ae:ff:95:39:e3:2b:c7:c0:
54:a5:14:33:ff:88:62:d9:2e:f2:d4:7f:05:77:c0:
b4:6d:37:1e:2e:b2:ee:24:ba:3a:77:e5:c1:fa:8a:
f3:6f:05:5f:2f:8b:e4:9a:45:fc:3f:d0:cf:55:f7:
34:e3:5a:95:f4:be:1d:9f:a3:f7:a2:7a:80:28:25:
fb:dc:7d:7e:c8:cc:b6:39:a8:8a:98:e9:e8:49:0c:
cb:cb:da:f2:7f:56:60:64:ad:9c:11:54:e4:15:08:
e0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B2:6F:EF:63:12:A3:9D:3E:B4:39:DB:FF:7E:90:DA:B5:B6:EF:3A
X509v3 Authority Key Identifier:
keyid:63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/_LJv72MSo50-tDnb_36Q2rW27zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.235.0/25
Signature Algorithm: sha256WithRSAEncryption
36:36:08:17:4f:34:ad:de:f4:44:81:13:a3:b0:df:2b:79:d4:
74:cc:17:06:b9:9d:96:7d:cb:1e:bb:e6:36:26:d4:37:1d:97:
fe:8e:e7:eb:21:07:4b:3a:4c:49:e5:ec:59:63:1d:07:c1:b8:
e1:8e:88:ef:0f:45:b9:62:c5:51:b2:e7:93:48:a9:76:6f:e1:
4c:bc:3c:36:ce:68:4e:5b:71:2d:a0:1d:89:3b:7f:ec:ad:8a:
fc:25:b0:16:ea:c1:fe:d7:e6:c7:6e:cb:2e:0f:18:d9:a9:2d:
4c:11:ac:05:cc:e7:e4:ce:48:ab:f2:cf:36:58:63:1e:15:a0:
dc:03:a3:58:4b:23:2a:3f:d0:0b:cd:09:1a:08:e6:48:8b:5e:
07:a0:c1:a2:5a:26:b5:21:40:7e:89:3a:0f:16:f6:ff:96:01:
01:b1:0f:c7:f7:40:53:a6:1a:38:6e:50:61:3b:5c:9a:11:7d:
da:48:6e:fc:4d:4f:01:33:09:c8:07:49:f7:fb:a6:fc:c4:31:
fb:ee:b0:22:d4:4c:c3:33:ec:b1:2d:19:47:75:5f:61:01:3f:
07:cc:91:93:41:c1:54:dc:22:42:ab:12:be:d1:23:15:ab:46:
49:8b:e9:f2:75:2e:d1:9d:ac:6a:11:30:7d:fd:13:b1:b1:73:
9f:cb:66:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:23 2023 by rpki-client on console-fra.rpki-client.org