Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/FXYwKEOwCVjm8iyefjv1f-izQdI.roa
File: FXYwKEOwCVjm8iyefjv1f-izQdI.roa (raw, json)
Hash identifier: FSoLcqVCbaBZgcPl8Jmp7CBxkUy75wWyJH7+prTa/q8=
Subject key identifier: 15:76:30:28:43:B0:09:58:E6:F2:2C:9E:7E:3B:F5:7F:E8:B3:41:D2
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0183A6B7C937FEECBB061A6C7F461DA15E78
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/FXYwKEOwCVjm8iyefjv1f-izQdI.roa
Signing time: Wed 05 Oct 2022 05:56:45 +0000
ROA not before: Wed 05 Oct 2022 05:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 88.216.210.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.209.0/24 maxlen: 24
84.32.6.0/24 maxlen: 24
84.32.50.0/23 maxlen: 24
88.216.98.0/24 maxlen: 24
88.216.0.0/22 maxlen: 24
88.216.224.0/21 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.19.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
88.216.240.0/21 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.252.0/22 maxlen: 24
88.216.248.0/21 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:b7:c9:37:fe:ec:bb:06:1a:6c:7f:46:1d:a1:5e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 5 05:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1576302843b00958e6f22c9e7e3bf57fe8b341d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2c:45:19:9d:6f:bf:84:db:fb:28:fc:ab:88:
77:71:2c:be:75:71:48:1b:89:ee:0b:16:6f:6a:03:
e0:a3:1e:30:f0:e3:f2:23:07:d5:bc:da:b6:15:92:
2a:b8:24:78:d8:fb:83:8b:6d:b9:ac:c9:75:08:8b:
5e:fd:c8:45:54:9f:33:37:49:a9:2a:3c:7a:68:a1:
d9:94:67:76:3b:7d:22:7d:20:b7:85:78:44:0a:14:
da:ae:a5:8a:ed:68:6d:0f:6a:b7:97:86:54:b9:4b:
c8:43:db:ae:5b:4b:86:67:dd:47:5e:db:66:63:ed:
e7:07:cb:ba:4a:e9:ef:b7:f3:59:a0:1d:80:4e:df:
32:56:44:29:c4:fd:85:f8:53:7a:0c:bf:53:31:77:
69:52:7c:6c:d0:ce:80:d7:ee:d2:7d:3c:bc:67:ed:
33:40:7c:a6:04:cc:38:9f:95:67:f4:b7:a3:93:b7:
f9:be:12:70:cc:e4:19:3b:30:7c:b3:ce:7c:87:6b:
2e:ba:06:08:2d:69:fc:12:91:fd:b0:a3:00:bb:72:
67:12:e2:49:c7:2d:34:5a:4e:6d:9c:aa:83:1a:05:
9b:c5:e8:79:55:16:37:47:b4:a2:74:4d:7f:d9:fa:
bb:19:98:d5:fa:e0:f8:99:55:ac:35:ed:51:e0:1e:
b0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:76:30:28:43:B0:09:58:E6:F2:2C:9E:7E:3B:F5:7F:E8:B3:41:D2
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/FXYwKEOwCVjm8iyefjv1f-izQdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.6.0/24
84.32.50.0/23
88.216.0.0/22
88.216.19.0-88.216.23.255
88.216.32.0/24
88.216.46.0/24
88.216.98.0/24
88.216.209.0-88.216.211.255
88.216.224.0/21
88.216.240.0/20
Signature Algorithm: sha256WithRSAEncryption
47:89:a6:0c:0f:42:1d:d3:1b:04:95:90:fa:72:d8:e7:6a:04:
42:d1:87:6a:94:d9:ae:41:d7:e8:7c:75:e7:b9:4a:a6:e4:e5:
ae:8b:82:0f:f0:c2:34:fc:87:d4:d8:62:58:4f:c0:94:60:6b:
db:f6:4f:c7:f6:d9:ac:7f:76:c1:87:8f:5b:c6:0e:6f:e5:dd:
a8:18:34:70:eb:56:55:4d:15:fc:7a:46:81:a8:48:76:80:90:
f6:a0:0e:ea:88:15:02:58:9f:b8:43:af:7b:47:37:1d:41:a3:
fa:6d:1f:37:7c:6d:7c:2f:71:eb:80:9b:13:7f:84:71:4a:4c:
ae:83:82:66:1d:03:21:ea:4a:16:f6:f7:ed:bd:28:10:16:d3:
31:9b:92:50:c5:94:55:98:86:05:6a:6a:fd:17:b7:d1:ba:96:
a0:02:76:4d:e1:44:46:aa:25:7b:17:cc:d4:4e:3b:1a:0b:80:
86:6d:9c:cc:52:33:fb:79:7c:6f:4c:fe:ea:b5:0e:5a:3d:10:
02:e0:a1:0f:4c:15:34:8d:ba:7e:63:2a:77:92:fa:67:8e:78:
14:e4:04:cb:85:01:8e:ef:47:a0:2e:09:40:e5:67:44:04:75:
5b:9a:a6:a2:bc:62:e8:a6:74:18:cf:5b:f9:b8:cd:9a:2a:d7:
8f:fc:f6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:25 2024 by rpki-client on console-ams.rpki-client.org