Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/98oVK4Rer--gMS3S-M5gaFUEqtY.roa
File: 98oVK4Rer--gMS3S-M5gaFUEqtY.roa (raw, json)
Hash identifier: eaV4asuUCL8Qv+MTDbCG9Xp6kCBCBKD9qhNxc0SyJCw=
Subject key identifier: F7:CA:15:2B:84:5E:AF:EF:A0:31:2D:D2:F8:CE:60:68:55:04:AA:D6
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018538A847A85AD701A546AC2BA1CB8FE4EF
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/98oVK4Rer--gMS3S-M5gaFUEqtY.roa
Signing time: Thu 22 Dec 2022 07:07:10 +0000
ROA not before: Thu 22 Dec 2022 07:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 84.32.70.0/24 maxlen: 24
88.216.185.0/24 maxlen: 24
88.216.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:38:a8:47:a8:5a:d7:01:a5:46:ac:2b:a1:cb:8f:e4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 22 07:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7ca152b845eafefa0312dd2f8ce60685504aad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7d:65:38:18:fa:70:c4:91:3b:58:b3:73:74:
8c:50:ee:cc:1f:d9:55:bb:47:e1:6c:55:cd:5d:32:
d5:b5:f0:a1:0e:a9:94:80:35:28:98:ac:60:00:64:
a5:54:28:fd:d9:6e:e7:e2:4b:4b:96:05:0a:8f:90:
e9:b8:c1:c4:da:92:f1:da:ba:fd:2f:c8:84:33:62:
f9:18:3b:6e:63:2d:1e:45:81:bd:03:b3:c6:ab:db:
62:02:27:26:0f:82:78:15:7b:19:61:0d:0c:ee:2a:
2e:50:e7:64:04:1d:76:f4:82:cd:2e:a9:9f:52:ea:
ea:37:46:10:e5:5e:b9:dc:a2:e6:0d:85:ca:65:ef:
40:65:4d:84:8d:c3:a5:59:a2:9a:b3:69:43:ad:eb:
3b:71:a8:d0:8c:d1:56:15:4f:da:9a:6e:1d:86:50:
0a:e5:03:6f:b8:e8:eb:ff:84:0b:9a:e3:4d:41:9d:
38:e0:55:42:53:72:9e:4d:42:1b:b9:6c:e1:dd:d8:
07:27:f9:10:d9:c5:1e:5a:c8:ef:07:89:86:cf:61:
95:fd:71:1d:b1:64:5d:47:7b:95:c8:1b:05:a7:85:
01:f0:93:ab:af:50:1f:a2:ec:e9:cc:99:61:0d:0d:
65:50:ed:76:b4:96:3b:aa:8a:1f:f5:c9:3a:a4:03:
63:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CA:15:2B:84:5E:AF:EF:A0:31:2D:D2:F8:CE:60:68:55:04:AA:D6
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/98oVK4Rer--gMS3S-M5gaFUEqtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.70.0/24
88.216.96.0/24
88.216.185.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:bb:b8:af:17:61:24:50:01:46:8f:b3:e8:fa:52:a5:79:98:
f7:44:66:e2:e1:bb:98:68:f9:a3:d5:d3:f5:bb:7f:82:ab:c2:
3a:85:c8:a1:76:da:58:03:3a:3d:bf:3a:f3:85:7f:ef:08:24:
b3:c7:86:3c:74:35:e4:a0:28:33:69:1d:bd:d6:66:fb:35:52:
4e:87:eb:f7:4f:9a:37:e9:57:bf:0b:46:87:8a:96:9a:3d:f4:
f6:d2:00:b1:df:ba:d3:43:f5:14:a8:1f:cf:6b:8d:72:b3:a5:
3c:8b:89:bb:42:b8:4a:fc:b7:63:b8:f4:80:d7:36:3a:f5:3d:
78:c4:44:3d:ff:60:18:a5:63:8c:bf:aa:cc:90:63:85:fd:38:
ca:6b:67:ae:95:25:dc:a7:28:b6:05:b4:68:b8:35:1e:83:44:
09:c2:47:6c:61:5a:15:08:22:5c:3e:de:3a:f1:fc:d3:09:cd:
85:4a:3a:82:03:b1:44:30:31:22:aa:8b:1f:9b:af:98:e2:17:
65:b5:f0:12:4d:36:8c:b6:96:ac:d2:45:1a:6c:e7:93:75:68:
2d:af:b2:d9:f6:2e:b6:75:b4:1a:b8:29:78:e4:54:18:e1:3c:
7d:7c:b1:ff:00:e4:21:7f:da:67:a1:fb:d4:87:0f:94:87:9c:
b8:80:3d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org