Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/58AoZDmG-n9FiHqPP7a67Oq2P9Q.roa
File: 58AoZDmG-n9FiHqPP7a67Oq2P9Q.roa (raw, json)
Hash identifier: V4N60wZlKdBTHC3/rPzk/h2oX8KocaQK0YLEivMqXWM=
Subject key identifier: E7:C0:28:64:39:86:FA:7F:45:88:7A:8F:3F:B6:BA:EC:EA:B6:3F:D4
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01830388D5B4204B267A99E5D2AB2AD73BE1
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/58AoZDmG-n9FiHqPP7a67Oq2P9Q.roa
Signing time: Sat 03 Sep 2022 13:27:22 +0000
ROA not before: Sat 03 Sep 2022 13:27:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 88.216.94.0/23 maxlen: 24
88.216.92.0/23 maxlen: 24
88.216.16.0/23 maxlen: 24
88.216.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:03:88:d5:b4:20:4b:26:7a:99:e5:d2:ab:2a:d7:3b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 3 13:27:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c028643986fa7f45887a8f3fb6baeceab63fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:1e:e2:84:31:e2:48:c1:66:08:c5:72:0c:
31:13:e0:8c:55:45:f5:ca:48:61:f1:f2:04:56:16:
9b:4a:44:21:b6:cd:68:14:7d:c3:a4:aa:67:90:93:
46:34:1e:d1:59:a7:f1:a9:20:8d:42:d6:74:cd:10:
b1:2a:49:11:2b:83:15:fb:83:31:b8:a3:3c:dc:bd:
02:3a:10:f7:b3:1b:7e:a3:73:fa:19:d6:46:a2:96:
42:ba:4d:24:87:b7:d4:39:ca:72:6e:67:92:cb:df:
dd:da:04:56:65:3c:61:16:05:75:06:89:05:c7:fe:
59:2b:b8:05:63:4b:2d:f8:a6:50:02:1c:4c:22:4d:
db:51:49:fd:82:84:45:f7:cd:d0:de:f9:96:d6:d1:
14:fc:e3:8d:46:08:dd:81:a1:63:38:2e:45:c1:32:
0b:cd:4d:66:e6:90:e9:87:7f:c0:09:e8:57:c7:6c:
a4:a5:c8:eb:a7:0a:32:17:a0:68:c9:f7:5a:59:74:
fa:d2:b8:08:90:cc:ce:27:99:d4:31:77:81:6d:fd:
7d:f5:f8:e4:44:84:60:02:25:b9:e1:19:5f:ae:6c:
c7:fa:95:96:91:fb:c4:f2:82:46:ca:f5:b0:1f:56:
f0:26:5f:38:b0:c9:7c:35:a8:14:62:18:fc:fb:23:
9e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C0:28:64:39:86:FA:7F:45:88:7A:8F:3F:B6:BA:EC:EA:B6:3F:D4
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/58AoZDmG-n9FiHqPP7a67Oq2P9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.16.0/23
88.216.92.0/22
88.216.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:02:c5:f9:b8:06:31:83:07:01:06:a7:50:ff:23:5d:37:7e:
d2:91:44:29:75:1d:a9:38:e6:d1:10:33:eb:1c:bf:72:43:ed:
42:78:1b:6c:4b:f3:82:41:b9:d7:a2:92:bd:e8:50:53:09:21:
33:d5:25:8b:ce:69:5e:fe:4a:d0:71:c4:58:2d:43:de:31:17:
df:4c:74:4b:a7:78:8c:3b:5e:24:da:f1:bb:2c:e7:08:7d:2c:
d8:cb:13:0b:05:5d:78:3b:08:66:81:59:f8:fa:19:02:1b:45:
1e:d2:ce:b3:29:a8:4f:e4:05:70:7c:34:4c:13:92:a4:4e:e0:
bc:98:a3:82:53:55:bc:39:57:bb:d5:9e:9b:a3:34:f1:9c:ad:
76:a4:47:01:42:a8:1d:55:1e:04:a6:9d:4e:0b:3a:36:93:52:
34:9f:5d:4d:15:99:81:4f:2c:1d:45:8b:62:21:2e:77:b6:e2:
0c:20:c7:09:2f:e9:07:ba:df:4c:1d:f0:cc:ec:63:78:53:61:
04:81:e4:fa:54:3c:68:e3:25:20:18:41:e5:2a:dc:17:36:c9:
18:07:a3:b7:b6:cf:b6:a6:0f:05:4e:d2:22:76:3e:b9:f9:87:
8c:05:62:5a:77:48:57:68:49:ea:7e:97:91:f9:48:50:3e:90:
bc:02:eb:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:44 2023 by rpki-client on console-fra.rpki-client.org