Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/14y43339jWeHdOikODVLRLvMyD0.roa
File: 14y43339jWeHdOikODVLRLvMyD0.roa (raw, json)
Hash identifier: YHh5MGch2pY3XGUnZuTPZKZsClRosltI851ahRemVOg=
Subject key identifier: D7:8C:B8:DF:7D:FD:8D:67:87:74:E8:A4:38:35:4B:44:BB:CC:C8:3D
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184905628B0E27095AD7C88BC5DF480DAB9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/14y43339jWeHdOikODVLRLvMyD0.roa
Signing time: Sat 19 Nov 2022 14:41:16 +0000
ROA not before: Sat 19 Nov 2022 14:41:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204843
IP address blocks: 88.216.1.0/24 maxlen: 24
84.32.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:90:56:28:b0:e2:70:95:ad:7c:88:bc:5d:f4:80:da:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 19 14:41:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d78cb8df7dfd8d678774e8a438354b44bbccc83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b0:1a:6d:d8:1d:07:e8:88:8d:b4:85:f9:58:
1b:4a:bd:d7:01:53:e2:a2:37:95:47:fe:73:2f:71:
d1:87:03:1c:9a:2c:01:03:16:6f:4e:0a:10:d1:f8:
57:6b:a3:d3:87:84:19:23:7f:63:fc:77:54:7b:f5:
e8:36:92:c8:45:a1:72:e6:38:46:e7:b2:8d:70:0f:
50:5d:cb:6f:a9:0c:d2:c9:72:b9:f8:60:cc:83:45:
0c:29:2b:53:b3:d4:46:47:46:0f:c6:58:74:68:47:
e8:9a:5f:b6:77:b2:ad:05:8f:76:f3:fc:b9:a3:5d:
13:ba:c3:82:22:bd:e6:a9:4a:95:62:f7:9d:2b:fe:
e3:9c:d2:b1:64:c5:8d:d4:d1:71:ba:02:96:f2:34:
4b:74:f8:b0:17:f8:a9:e6:93:ab:d8:16:93:46:f9:
26:a9:23:cc:14:25:1b:ae:bd:ba:cb:a9:48:f4:10:
4a:ad:f1:22:83:3f:eb:b0:40:f3:68:a3:60:d3:3d:
f6:48:6e:56:12:8c:72:6f:97:7d:16:c7:a0:23:35:
aa:10:f3:23:f2:5a:1b:5b:41:2e:f4:ab:c6:85:15:
b8:e6:dd:6e:b7:32:1f:54:95:97:5a:a9:10:b6:c4:
fb:59:08:3c:b1:9c:7f:6b:4a:8c:75:30:b5:e2:49:
88:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8C:B8:DF:7D:FD:8D:67:87:74:E8:A4:38:35:4B:44:BB:CC:C8:3D
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/14y43339jWeHdOikODVLRLvMyD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.229.0/24
88.216.1.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:f1:d1:07:da:18:76:bb:46:9a:d0:e9:9f:ed:96:06:aa:66:
2e:4f:34:ab:b2:37:38:a3:45:ad:2d:bc:f4:8c:96:a9:97:fd:
bd:fc:33:2d:34:6c:b6:ce:07:31:17:eb:43:b0:03:c0:57:ca:
60:25:b2:d7:f1:9f:e4:da:9a:80:7c:d8:6b:99:8f:28:03:b0:
05:3f:bb:58:ad:2b:96:ec:02:7b:6f:8d:f0:6b:7f:a4:5f:8a:
e8:83:57:b5:dd:40:2c:c8:e4:59:e3:10:0d:c1:bc:42:d7:e9:
4e:b3:3e:86:4d:31:e6:26:d2:57:75:94:02:6b:88:21:21:9b:
cc:7d:26:67:ff:1a:17:31:ae:3b:2d:8b:fc:03:57:2c:0f:ee:
30:b0:bb:a4:64:42:9d:78:04:40:58:3e:f8:12:05:1e:9a:70:
77:1c:68:35:e5:af:d7:2e:02:2b:10:8f:68:18:15:03:0c:18:
df:9c:07:fa:b8:41:81:96:4c:d7:bd:e7:da:ea:86:81:2b:25:
51:ad:e3:30:1e:64:9e:74:a0:34:7b:c7:7a:8c:5b:a5:2b:66:
95:ed:80:6e:2f:09:8f:4f:9c:1d:4d:64:3a:6c:97:22:f6:47:
52:7f:8f:84:39:6c:85:09:95:a1:0b:6e:d0:0a:aa:17:f8:e9:
0e:92:4f:ff
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYSQViiw4nCVrXyIvF30gNq5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjIxMTE5MTQ0MTE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzhjYjhkZjdkZmQ4ZDY3ODc3NGU4YTQzODM1NGI0NGJiY2NjODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorAabdgdB+iIjbSF+VgbSr3XAVPi
ojeVR/5zL3HRhwMcmiwBAxZvTgoQ0fhXa6PTh4QZI39j/HdUe/XoNpLIRaFy5jhG
57KNcA9QXctvqQzSyXK5+GDMg0UMKStTs9RGR0YPxlh0aEfoml+2d7KtBY928/y5
o10TusOCIr3mqUqVYvedK/7jnNKxZMWN1NFxugKW8jRLdPiwF/ip5pOr2BaTRvkm
qSPMFCUbrr26y6lI9BBKrfEigz/rsEDzaKNg0z32SG5WEoxyb5d9FsegIzWqEPMj
8lobW0Eu9KvGhRW45t1utzIfVJWXWqkQtsT7WQg8sZx/a0qMdTC14kmITwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNeMuN99/Y1nh3TopDg1S0S7zMg9MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvMTR5NDMzMzlqV2VIZE9pa09EVkxSTHZNeUQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVCDlAwQA
WNgBMA0GCSqGSIb3DQEBCwUAA4IBAQCM8dEH2hh2u0aa0Omf7ZYGqmYuTzSrsjc4
o0WtLbz0jJapl/29/DMtNGy2zgcxF+tDsAPAV8pgJbLX8Z/k2pqAfNhrmY8oA7AF
P7tYrSuW7AJ7b43wa3+kX4rog1e13UAsyORZ4xANwbxC1+lOsz6GTTHmJtJXdZQC
a4ghIZvMfSZn/xoXMa47LYv8A1csD+4wsLukZEKdeARAWD74EgUemnB3HGg15a/X
LgIrEI9oGBUDDBjfnAf6uEGBlkzXvefa6oaBKyVRreMwHmSedKA0e8d6jFulK2aV
7YBuLwmPT5wdTWQ6bJci9kdSf4+EOWyFCZWhC27QCqoX+OkOkk//
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:26 2023 by rpki-client on console-ams.rpki-client.org