Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DXBHFbosIjDYGTu0-xThkN0GGyo.roa
File: DXBHFbosIjDYGTu0-xThkN0GGyo.roa (raw, json)
Hash identifier: 9cbWY4/SC2G2b5D7gzWzot/lP09IWXg2gu7zhVzLykE=
Subject key identifier: 0D:70:47:15:BA:2C:22:30:D8:19:3B:B4:FB:14:E1:90:DD:06:1B:2A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0178DF3C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DXBHFbosIjDYGTu0-xThkN0GGyo.roa
Signing time: Wed 15 Jun 2022 13:36:44 +0000
ROA not before: Wed 15 Jun 2022 13:36:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 88.216.236.0/22 maxlen: 24
88.216.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24698684 (0x178df3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 15 13:36:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d704715ba2c2230d8193bb4fb14e190dd061b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:50:d4:f9:b9:e8:bd:10:f4:0c:d4:9e:a6:2e:
41:c3:41:71:3d:e0:61:ad:a1:3e:f6:92:ea:17:7f:
59:52:3f:7e:8e:1f:9b:63:3a:c3:73:b1:18:aa:a3:
d4:a9:59:48:38:29:fe:4c:31:66:97:60:02:a8:37:
a3:01:78:f2:d6:46:7d:5b:18:78:7a:39:9b:4f:40:
50:fd:26:fb:fa:29:e1:b8:dd:ec:56:e2:f7:de:56:
14:c0:83:43:04:a6:9e:82:38:75:b0:02:db:88:34:
05:fc:e5:7b:2f:d3:87:e1:82:ee:30:eb:65:d8:2e:
1c:ca:47:dc:57:90:2f:bd:0b:06:15:d0:45:94:c6:
60:86:7f:7f:65:47:9e:9b:8b:93:d4:bd:b5:dc:91:
58:24:65:33:93:05:6d:89:20:fe:ce:ea:bb:d1:28:
e5:fb:40:c2:fd:84:50:be:7f:a2:f8:b5:27:0f:0a:
09:c6:1f:0e:1d:6d:27:4e:07:14:c3:2f:1d:53:0c:
da:38:fc:f0:c7:da:1a:f4:45:88:03:bd:1a:a7:92:
79:bd:63:4e:97:b3:ed:60:35:73:24:b6:2c:7b:6c:
0c:f6:17:0a:a9:87:2d:82:c8:4f:b1:ce:53:7b:33:
c7:c7:04:17:b6:47:9f:b8:1e:91:b2:b5:f9:4d:de:
d4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:70:47:15:BA:2C:22:30:D8:19:3B:B4:FB:14:E1:90:DD:06:1B:2A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DXBHFbosIjDYGTu0-xThkN0GGyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.236.0-88.216.243.255
Signature Algorithm: sha256WithRSAEncryption
81:dc:ce:50:ac:3b:27:40:d6:de:d0:40:d7:fe:a5:d8:a2:6e:
f1:40:57:0b:b6:0c:7d:85:17:02:b8:e5:b8:82:26:a2:0f:32:
f4:e1:ca:7a:32:73:38:b0:4f:19:9e:21:7c:da:ca:0f:d9:f8:
86:c5:32:6a:38:69:e1:43:c2:72:b7:a3:a6:c4:fa:b4:cd:e6:
0e:45:3e:39:1f:62:76:fb:7d:cc:62:48:6f:72:8f:9f:67:0d:
a6:e0:8f:a2:d3:c0:3c:d3:0f:72:04:e3:2b:80:68:b2:17:b5:
96:cd:b2:d4:bd:01:52:8a:a3:c7:5e:ce:40:f9:0e:19:49:d8:
52:7e:07:5e:57:65:03:ad:ca:b5:44:c3:e2:d1:da:45:a8:e1:
33:f8:ed:01:2e:24:4c:ed:aa:33:ec:6d:e7:6b:32:17:7d:32:
e9:20:ad:65:06:c3:dc:3b:1c:1b:29:03:5c:5b:02:86:88:7f:
5b:a2:6e:19:1c:90:6a:b0:a1:67:6b:fd:c6:66:d0:a4:6d:e0:
30:f1:60:be:96:51:35:76:e6:af:12:ca:f0:26:9f:3c:d0:a9:
96:67:37:e2:56:65:f9:a7:41:71:4d:12:1d:ea:a3:8b:a8:93:
d4:fb:14:c5:11:aa:93:88:57:00:4f:cd:eb:f6:6a:d8:fd:52:
d2:ed:2e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:45 2023 by rpki-client on console-fra.rpki-client.org