Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Lyc90kFsiK8LIxnhhAxfTuWwX5s.roa
File: Lyc90kFsiK8LIxnhhAxfTuWwX5s.roa (raw, json)
Hash identifier: 5+SaT843KW5UL3aDcPRYMb9TG652R2DW0GgU1//2rCQ=
Subject key identifier: 2F:27:3D:D2:41:6C:88:AF:0B:23:19:E1:84:0C:5F:4E:E5:B0:5F:9B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 28739A
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Lyc90kFsiK8LIxnhhAxfTuWwX5s.roa
Signing time: Thu 03 Mar 2022 19:43:23 +0000
ROA not before: Thu 03 Mar 2022 19:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.216.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2651034 (0x28739a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 3 19:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f273dd2416c88af0b2319e1840c5f4ee5b05f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:68:93:4d:fa:87:3a:f9:04:82:2a:c4:a5:13:
4e:d9:b5:f9:21:2f:00:3d:93:01:6a:fd:ac:7e:d6:
fe:90:af:af:ef:2a:22:b1:24:c0:e6:a4:c8:01:4f:
96:94:1c:1c:4b:3a:33:09:19:61:8d:72:4c:d2:c1:
d2:18:db:fe:fd:3e:28:af:8f:21:cd:79:3f:f8:f6:
35:b5:ed:8e:8d:14:b2:5a:f2:78:be:46:7e:32:b9:
d7:ca:1e:3d:5b:3c:8c:4a:c8:76:9b:d7:0a:0a:64:
03:06:1b:75:30:33:e5:93:23:58:7a:62:48:15:35:
5f:9d:f9:00:46:e4:95:2c:4e:c2:93:06:84:d6:eb:
67:24:c2:71:aa:4e:c2:8e:d3:8c:06:3d:82:fb:20:
88:40:22:00:71:49:2a:e4:74:de:bf:92:ea:76:ea:
31:50:92:3c:29:2a:ce:4b:81:e1:78:62:40:5e:f5:
2b:0b:cb:4a:e5:b1:8c:f3:48:31:e9:a9:ce:2e:b5:
c3:c3:e2:e6:24:84:a3:18:2f:ef:af:c2:6e:d0:17:
ec:97:64:7c:94:45:33:c3:91:87:66:2e:02:f9:8c:
92:e1:54:ae:ba:f1:71:d2:99:a5:45:76:30:eb:15:
9e:4e:7b:2e:e8:b8:e3:25:62:db:d6:63:75:5d:9d:
67:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:27:3D:D2:41:6C:88:AF:0B:23:19:E1:84:0C:5F:4E:E5:B0:5F:9B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Lyc90kFsiK8LIxnhhAxfTuWwX5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.19.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ca:fc:c1:bd:2e:dd:b0:40:e0:30:7d:08:2f:af:3a:29:61:
74:55:3f:b5:69:f0:a7:8a:b0:e1:d4:59:4d:d4:c3:49:d9:f0:
64:50:45:85:60:4f:f7:32:d5:fe:aa:0f:2e:1d:61:44:9d:e3:
23:93:ab:0f:7a:c8:8e:7a:d6:44:4f:58:b8:df:b4:2c:e9:81:
72:e1:0c:92:e8:b4:ae:e5:34:92:67:8c:c3:5e:02:e3:3d:ec:
09:18:c5:56:6e:aa:26:d9:32:f6:65:1b:b0:54:c6:ce:f7:79:
a7:47:1d:82:4c:39:62:04:43:a6:a2:8f:58:2b:51:34:21:70:
ac:1d:fc:5f:64:f4:45:16:fb:62:32:85:e4:30:45:1c:68:db:
b9:74:3f:cd:fd:f5:ee:96:ac:80:d1:7a:d5:84:6d:31:0f:18:
eb:de:75:df:b1:98:d2:9a:1d:f9:20:89:11:2e:8b:65:ee:25:
9d:e0:c7:5b:e9:bb:30:1a:05:2e:c0:c4:c5:2d:db:2b:73:b3:
28:c9:2d:b3:24:70:fa:ac:f8:04:86:40:3e:d2:58:27:b6:6a:
8e:c3:e9:85:ae:21:d4:38:b1:a6:5c:a6:bc:c7:42:27:06:c0:
db:85:4a:a2:81:1d:31:32:22:e9:bf:48:14:df:62:93:df:0f:
95:27:c6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:32 2024 by rpki-client on console-fra.rpki-client.org