Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9wFX8R_bl-8o_Ad3hQ-0Ns9Oi9I.roa
File: 9wFX8R_bl-8o_Ad3hQ-0Ns9Oi9I.roa (raw, json)
Hash identifier: t/Vu9w4Y/8C5MZSHxfDPQHP3tBdRTmPNe+jTheR+LfE=
Subject key identifier: F7:01:57:F1:1F:DB:97:EF:28:FC:07:77:85:0F:B4:36:CF:4E:8B:D2
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184BF2E1C4C96EA2F413376E57C9D8B6918
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9wFX8R_bl-8o_Ad3hQ-0Ns9Oi9I.roa
Signing time: Mon 28 Nov 2022 16:59:40 +0000
ROA not before: Mon 28 Nov 2022 16:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 88.216.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bf:2e:1c:4c:96:ea:2f:41:33:76:e5:7c:9d:8b:69:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 28 16:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f70157f11fdb97ef28fc0777850fb436cf4e8bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:ee:8e:71:80:35:53:6b:c7:4c:19:1e:ca:
f0:7a:3c:4c:1e:97:1a:2e:68:59:23:a5:39:ed:fa:
78:d5:ba:83:7b:83:a1:90:df:da:5a:ab:c7:8f:3e:
d4:7a:a1:86:8e:bd:0c:85:af:9a:f0:7d:60:92:b0:
50:77:39:7d:67:43:46:b2:44:d4:7b:c4:17:f8:52:
f6:87:97:29:fd:fa:df:14:e7:86:c4:e3:e2:fb:e4:
74:23:96:cc:61:b4:8a:a6:d1:65:96:b9:ac:b2:75:
65:a0:b7:dc:7a:ea:6c:cd:35:0a:74:ca:8e:77:5a:
d2:fa:fd:20:26:59:ff:75:2d:40:2b:f5:6a:e9:c8:
e6:36:fd:37:50:35:c3:6a:ed:1b:51:41:bf:1a:5b:
bd:63:66:a0:34:96:d3:e9:bd:41:b3:80:f9:32:f3:
3d:5f:c5:d9:71:de:62:85:1e:60:57:95:8d:c2:70:
84:cb:dc:f2:51:ef:8b:c1:93:fd:81:5b:03:64:bf:
d2:2d:77:2f:56:c5:3d:f1:50:69:34:27:b3:cd:a1:
d3:96:9d:6d:50:1c:18:ca:2a:db:5f:b3:86:f2:ae:
a3:40:77:44:e1:05:ac:b2:67:2a:a1:8a:9e:2b:12:
47:98:6c:43:0a:8f:72:a6:99:29:15:56:a5:0d:db:
b7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:01:57:F1:1F:DB:97:EF:28:FC:07:77:85:0F:B4:36:CF:4E:8B:D2
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9wFX8R_bl-8o_Ad3hQ-0Ns9Oi9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:cc:db:25:ff:46:f1:cb:9f:25:8e:fb:23:f5:be:33:5a:81:
4f:cc:7e:dd:fd:22:9e:0b:4a:18:63:ac:13:26:66:d3:d9:51:
47:9a:b3:0f:5c:51:d7:e2:21:6f:5c:8c:fe:38:2f:ee:f3:d1:
95:e1:99:98:0f:a9:9d:e8:a6:ee:54:6c:73:21:24:cb:23:c6:
d4:3f:ac:94:38:da:b1:d8:f9:93:0f:04:be:b0:3d:2f:b1:30:
d4:c6:5d:0f:36:4b:5d:72:ba:9f:d6:8f:c8:80:65:9c:5e:b7:
1b:cb:cb:1a:bd:97:41:ee:e6:fe:2c:88:51:41:86:72:f9:cd:
78:3d:68:36:db:4b:57:14:48:49:e8:2f:69:e7:74:8e:84:0c:
90:65:2a:a5:70:9c:f9:be:05:70:3d:55:97:67:2a:08:4d:e1:
ad:9c:7d:c1:8f:c3:d5:24:5d:df:be:2f:6a:cb:ca:f0:55:fe:
2d:fd:73:70:65:01:ce:6e:5c:a9:df:20:a5:d9:66:1c:96:fd:
c0:03:0d:76:41:6d:16:d5:dc:02:f4:c4:41:45:ad:e9:ce:01:
35:77:ce:85:2e:59:13:9e:bd:23:b0:c9:fb:47:ef:a2:2d:a6:
6b:6b:83:b5:c1:6f:23:d6:54:ea:51:5e:12:b1:6a:d5:fc:d2:
80:17:b2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:25 2024 by rpki-client on console-ams.rpki-client.org