Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/86nYUtbIxv2864eF0xE-J7XM9oU.roa
File: 86nYUtbIxv2864eF0xE-J7XM9oU.roa (raw, json)
Hash identifier: ycW+m+0K3w+Mnem4ak5YIdmZZrNIWJG8+cRiphkhNag=
Subject key identifier: F3:A9:D8:52:D6:C8:C6:FD:BC:EB:87:85:D3:11:3E:27:B5:CC:F6:85
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01843D6D4BFA04580161E7E00BCE3D96236F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/86nYUtbIxv2864eF0xE-J7XM9oU.roa
Signing time: Thu 03 Nov 2022 12:18:03 +0000
ROA not before: Thu 03 Nov 2022 12:18:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:6d:4b:fa:04:58:01:61:e7:e0:0b:ce:3d:96:23:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 3 12:18:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3a9d852d6c8c6fdbceb8785d3113e27b5ccf685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2d:25:f5:f2:6c:21:0b:5c:a2:25:da:0d:aa:
19:e2:6f:c9:5a:1b:45:33:ef:e7:67:e8:c1:d0:9f:
06:d0:ec:ce:01:ed:dc:ed:bb:34:a3:da:39:ac:e7:
dc:ad:35:ef:8c:e7:94:03:4a:da:4b:c3:c5:e0:db:
bc:c3:9e:15:6c:80:57:1b:9d:1b:7d:8d:25:83:1d:
8f:fc:1d:a7:d4:cc:30:1a:97:3e:4c:d4:a6:e0:4d:
13:0d:32:64:13:08:bd:6c:17:4a:2d:d3:45:e3:97:
b4:67:ec:86:76:43:50:95:80:4a:7c:de:bc:28:c1:
f5:0c:eb:0f:be:cd:19:2e:32:4a:b5:70:69:09:97:
d4:33:90:23:91:d4:7a:4c:ac:36:51:71:08:e6:ff:
27:92:e9:0f:25:d0:7a:2d:71:35:13:b5:5d:09:90:
06:45:23:38:16:14:13:78:3d:26:26:cd:91:f1:28:
92:ea:c1:20:90:33:ff:33:7a:f9:2e:8e:bb:4d:de:
d2:5f:c7:a5:00:90:3b:ca:6a:df:1b:49:23:5e:56:
2a:b2:88:34:0c:ca:81:ed:be:cd:12:f0:d5:78:fc:
01:34:94:c4:01:65:0f:6a:95:c9:57:fe:11:5f:f2:
aa:69:f6:40:91:48:13:58:4e:25:e0:72:46:ec:47:
ae:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A9:D8:52:D6:C8:C6:FD:BC:EB:87:85:D3:11:3E:27:B5:CC:F6:85
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/86nYUtbIxv2864eF0xE-J7XM9oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:91:f9:9e:4a:15:d3:be:ab:f7:03:b6:ae:7e:b2:80:83:80:
eb:6a:79:e3:30:86:24:0c:46:3a:4d:82:d5:e7:8b:88:63:e8:
de:40:fa:41:37:bf:01:04:f9:09:70:9f:24:62:69:66:fe:a3:
54:b8:5f:90:62:82:07:f3:8b:ff:cd:01:38:d0:2f:36:e4:35:
28:5e:46:35:a0:55:9a:02:db:74:f0:c2:2e:0b:58:fa:76:71:
8d:d5:f7:89:54:3a:2d:8d:79:e9:4d:1f:1d:4f:4f:6a:fa:30:
71:14:2e:a1:3c:c1:a5:74:60:a6:e6:52:d1:d7:58:40:0a:71:
bf:97:84:0b:1c:62:fc:3e:29:27:8a:13:1d:a1:2e:0f:72:62:
a9:50:72:f1:c9:7f:49:7e:bd:dd:4a:30:90:39:4e:0e:6f:e2:
28:15:70:36:d2:2c:d7:ea:a4:3f:41:af:46:94:17:57:c9:f7:
87:3b:cf:6a:a2:81:08:8a:28:9e:e8:c5:30:4c:6f:b0:38:2f:
79:50:bc:e7:c1:15:6f:7e:f8:2d:20:1b:58:1d:ce:96:87:eb:
94:73:1c:92:c4:30:89:a0:2e:de:8c:09:ca:9e:2d:29:ba:40:
55:5f:49:2b:59:da:35:de:6e:b5:5d:ee:b4:02:ed:bb:b5:34:
8b:e3:97:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:27 2023 by rpki-client on console-ams.rpki-client.org