Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LJ8ho1N5OosjS2wnzkyyX44Ovoc.roa
File: LJ8ho1N5OosjS2wnzkyyX44Ovoc.roa (raw, json)
Hash identifier: Ha3xEL5BScrCtRfX26zH8ARHjKF0SnUs24UCBZjuLZM=
Subject key identifier: 2C:9F:21:A3:53:79:3A:8B:23:4B:6C:27:CE:4C:B2:5F:8E:0E:BE:87
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01840E187ED1FFF6EF9F65E1B1D49685C226
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LJ8ho1N5OosjS2wnzkyyX44Ovoc.roa
Signing time: Tue 25 Oct 2022 07:43:17 +0000
ROA not before: Tue 25 Oct 2022 07:43:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206264
IP address blocks: 88.216.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:18:7e:d1:ff:f6:ef:9f:65:e1:b1:d4:96:85:c2:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 25 07:43:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c9f21a353793a8b234b6c27ce4cb25f8e0ebe87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:24:72:c3:fc:15:04:1b:a3:66:0e:42:7c:bd:
ba:e6:f4:9c:9f:f9:b9:da:41:6f:1a:87:7a:bd:2c:
05:b6:26:d3:90:d5:d2:c4:a7:02:ce:87:5c:05:bf:
c2:3d:00:1f:d9:5a:65:f8:de:f2:22:e5:77:8d:83:
1c:4f:5e:17:33:e5:10:d9:91:09:6c:d5:0a:a0:77:
28:cb:3a:8a:a2:93:b7:80:54:31:9d:68:f4:8a:3b:
c5:bc:b1:cb:86:b3:53:26:ac:f3:f6:50:00:79:7b:
e7:7b:db:cf:1c:07:59:cc:a5:eb:1e:31:d7:f3:31:
c6:b8:19:be:84:0a:0f:32:ab:dd:de:bd:22:15:7a:
fb:e2:81:79:b8:55:35:99:ec:e3:d6:a8:51:77:42:
74:15:d3:b2:ba:3a:16:d0:94:ab:82:7e:37:0b:b1:
ba:0f:86:4b:40:47:23:74:58:09:2b:5c:bc:ec:fe:
73:72:54:38:1f:2e:5c:8a:ce:d6:d0:b0:87:44:12:
17:d4:eb:19:1a:55:98:f5:3b:58:c5:86:d4:17:85:
e7:3d:8c:26:0e:0d:47:8a:ef:61:5a:46:aa:78:19:
a5:39:f3:df:f1:e5:75:d6:74:76:f8:c0:8b:05:11:
ae:e8:b6:4a:46:e7:dc:16:a2:af:4d:79:2c:5c:8a:
22:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:9F:21:A3:53:79:3A:8B:23:4B:6C:27:CE:4C:B2:5F:8E:0E:BE:87
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LJ8ho1N5OosjS2wnzkyyX44Ovoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.220.0/24
Signature Algorithm: sha256WithRSAEncryption
92:e6:7a:f4:c2:77:ab:5d:ff:6f:4b:8d:bb:8b:3a:9c:d2:5c:
3d:7d:51:a4:12:c3:60:1d:a2:f0:68:09:f8:6b:86:d4:95:1b:
65:a3:8b:36:90:06:e2:39:cb:02:87:0b:cf:88:b7:f8:ca:33:
77:81:2e:18:fb:d1:b4:c7:47:e3:cd:ca:59:18:50:d6:c2:fa:
e7:8f:87:10:f1:20:73:99:cf:28:6f:cd:ce:9a:39:43:a4:20:
a7:35:37:93:65:27:97:7e:d3:c4:19:27:bb:72:a3:0e:6d:14:
5e:8d:90:4a:d3:fd:1b:c9:92:74:ae:7c:7b:1b:9a:fd:cb:22:
d1:e2:83:11:81:51:12:64:3f:e5:29:b5:f8:cc:76:91:48:09:
0e:25:b4:75:cf:2a:90:b2:ec:3e:ad:ed:a5:52:96:05:bf:e2:
99:2e:e3:3b:8c:87:a5:3c:70:fe:e6:f0:2f:ad:4c:ef:89:a2:
52:30:dc:54:61:2a:16:3b:26:b0:7d:49:59:bf:2a:68:b5:8a:
c5:ae:fb:b9:fe:56:b3:23:20:1f:13:4f:13:96:e1:86:c3:a3:
c1:fd:8e:7d:b4:40:6a:64:69:2d:34:6f:3b:eb:c4:f4:17:76:
87:d4:c7:46:f6:ff:bd:73:7e:5f:d1:c7:3f:f1:8d:af:f7:a8:
25:79:19:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:32 2024 by rpki-client on console-fra.rpki-client.org