Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8KQRpTq00BjTd0Jmq-ewAgYy0iw.roa
File: 8KQRpTq00BjTd0Jmq-ewAgYy0iw.roa (raw, json)
Hash identifier: /n9gsCq24pfiBBgIwjUW1s96ifHNQJxppfYQHbsDlb8=
Subject key identifier: F0:A4:11:A5:3A:B4:D0:18:D3:77:42:66:AB:E7:B0:02:06:32:D2:2C
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018507A3811E08E7FAEAD873F862C0CFFD80
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8KQRpTq00BjTd0Jmq-ewAgYy0iw.roa
Signing time: Mon 12 Dec 2022 18:40:34 +0000
ROA not before: Mon 12 Dec 2022 18:40:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 88.216.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:a3:81:1e:08:e7:fa:ea:d8:73:f8:62:c0:cf:fd:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 12 18:40:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0a411a53ab4d018d3774266abe7b0020632d22c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2b:83:9a:89:b0:1e:b1:9e:ab:96:02:0c:ef:
07:e4:2f:69:6c:2c:26:bc:08:90:27:9d:b4:79:98:
41:f9:80:d7:7c:3f:4d:b9:4f:ae:5c:6e:f2:56:22:
f7:9e:76:12:cd:3b:f1:0e:28:22:b2:d6:41:35:5d:
50:f1:b4:17:93:6d:b8:03:f1:d8:1f:4e:44:39:96:
0b:7e:30:c7:5b:25:a9:4a:88:12:bb:16:c9:25:cb:
b2:55:e9:cf:45:16:86:69:40:f2:0f:99:52:09:11:
82:79:c6:e6:8d:eb:b9:30:21:e9:27:58:58:fe:ae:
a2:a1:db:e0:18:d0:18:53:87:99:a1:12:5a:2f:a8:
c3:7d:ac:36:77:03:54:1e:19:7f:ad:f0:f1:32:dc:
5c:9c:a3:87:6d:b9:68:22:96:36:1d:59:51:a8:fe:
b8:7c:93:0e:4e:6f:19:fb:09:2f:bc:80:e2:c7:14:
39:20:e1:12:c4:ca:35:3c:60:51:cd:d2:86:e4:73:
48:c9:ce:f2:9a:92:ba:fc:6e:56:f5:6c:18:3f:b2:
e7:c1:e8:70:70:43:9a:44:2c:5e:48:1e:36:e2:7e:
38:0a:e5:02:45:26:a4:c3:33:77:2c:eb:98:c8:2b:
87:e2:fa:42:f2:fb:1f:03:a4:ac:36:cd:5a:7f:b8:
ec:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A4:11:A5:3A:B4:D0:18:D3:77:42:66:AB:E7:B0:02:06:32:D2:2C
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8KQRpTq00BjTd0Jmq-ewAgYy0iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.186.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:10:80:34:39:a0:5b:69:7d:7b:ef:22:1a:4b:48:f0:af:7d:
a5:64:02:09:22:be:e5:9e:10:4d:77:e8:fa:53:b1:85:84:77:
1e:2d:82:f1:2c:05:63:b0:d4:f8:00:72:51:2e:0b:11:33:7a:
cc:c7:c4:a6:c7:9a:bb:f4:29:c9:b6:72:64:5d:d8:75:68:1a:
3d:8a:37:f4:fc:08:f7:6b:7f:cd:cd:34:03:53:12:61:0c:a3:
d1:d1:f6:c9:12:02:b6:a3:e7:26:67:0d:10:d9:93:98:8e:c9:
2c:50:0f:58:18:f8:52:bc:65:7b:a2:de:e2:4c:cb:d4:46:18:
74:c7:f6:68:1b:e3:93:6b:79:82:86:ae:a5:0c:d3:30:d9:40:
78:bd:9d:5c:f9:39:3e:86:7d:87:86:b4:cd:47:0d:82:db:b0:
e7:c6:90:57:45:cc:f7:d5:13:2d:f1:04:82:7f:e4:ee:9c:b1:
46:45:56:94:92:0c:26:5e:1a:97:80:19:d6:08:ab:8b:9d:46:
3c:6b:0a:c6:5f:b5:6c:0f:0b:8c:01:0f:73:87:e9:3d:46:68:
fb:c2:08:12:89:60:5c:49:2a:54:ce:d1:c4:33:e1:5d:51:cd:
a4:2c:cb:20:b8:20:f8:6a:d1:df:8a:ff:99:f8:d0:15:7d:4f:
72:1b:33:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org