Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/OXAIu0jB6KR-Hn8rZMJ8cGB0F1s.roa
File: OXAIu0jB6KR-Hn8rZMJ8cGB0F1s.roa (raw, json)
Hash identifier: DBSesR4ZLfXF+MeQNAh2ANWrC6sCJD5zich0eeVvigo=
Subject key identifier: 39:70:08:BB:48:C1:E8:A4:7E:1E:7F:2B:64:C2:7C:70:60:74:17:5B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0183797A6757CBD0257BC3161D829C841AC6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/OXAIu0jB6KR-Hn8rZMJ8cGB0F1s.roa
Signing time: Mon 26 Sep 2022 11:06:48 +0000
ROA not before: Mon 26 Sep 2022 11:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205571
IP address blocks: 88.216.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:7a:67:57:cb:d0:25:7b:c3:16:1d:82:9c:84:1a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 26 11:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=397008bb48c1e8a47e1e7f2b64c27c706074175b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:15:16:74:f2:70:36:b5:e5:e7:ba:62:3d:1a:
77:3b:f5:f0:03:c8:70:1b:5e:a2:56:c0:97:7a:30:
4a:11:f6:a8:e7:b4:ff:89:0b:24:a6:94:bc:7d:c8:
2a:38:cf:64:2f:aa:d1:f7:fc:51:2e:79:57:49:cb:
b7:df:79:60:7d:de:78:dc:16:58:47:69:03:f8:9f:
33:f1:e4:b1:88:05:f3:f8:48:1b:d6:50:63:2f:78:
86:fc:0c:7c:b9:32:c4:46:46:ec:65:17:26:65:e6:
87:c2:3d:1a:58:dc:a5:b1:fd:b7:b7:86:6b:23:34:
dd:28:1b:08:38:94:b3:b3:f8:a3:a3:d3:5b:96:c6:
3b:4b:a7:85:93:fa:0f:aa:26:11:8a:ac:b5:82:a1:
85:d8:54:16:9e:80:e7:23:2b:7a:7f:9e:e8:7f:04:
49:ef:66:fe:23:58:02:02:de:8c:97:33:00:56:57:
9d:98:d2:22:12:49:49:f0:7e:9c:96:4c:a2:34:5d:
05:a7:9a:13:60:33:f6:8a:86:cb:54:3e:d0:57:bb:
57:bf:ce:b5:59:d9:aa:07:b1:83:fb:61:c9:38:88:
0e:07:96:d8:f3:2d:2b:6d:6f:a3:65:a0:3e:38:b0:
65:86:b8:8f:5e:eb:1c:57:d6:62:4d:f9:52:2a:e2:
ab:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:70:08:BB:48:C1:E8:A4:7E:1E:7F:2B:64:C2:7C:70:60:74:17:5B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/OXAIu0jB6KR-Hn8rZMJ8cGB0F1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.224.0/22
Signature Algorithm: sha256WithRSAEncryption
73:40:74:9c:a2:92:d3:2f:e3:30:8d:22:38:73:cb:c2:4f:17:
f0:99:b6:6e:b1:37:ff:13:14:63:89:f8:f6:f4:ef:2a:13:8f:
d4:a0:7e:4f:8f:97:05:20:7a:1f:3b:5e:22:f5:ef:4f:66:d8:
5f:6a:bd:5f:57:ec:5e:ad:e4:de:6d:3e:10:31:93:5a:e8:d5:
38:e1:22:69:e6:72:95:ea:0e:ed:1f:d5:03:30:54:dd:20:cb:
54:78:e0:22:60:f7:06:13:0a:ec:3d:22:83:7f:7b:22:35:8e:
25:64:a8:52:62:70:7f:25:5a:6b:36:17:5f:d1:c0:34:61:16:
81:29:2c:4b:78:c0:10:74:ce:02:a1:90:1b:cd:92:23:dc:1e:
1e:95:b1:92:98:18:69:0f:49:77:6b:7d:50:9f:9e:28:ac:d4:
c2:ea:d6:be:a8:30:4d:53:ce:20:6f:cc:e1:35:94:ad:54:fc:
ec:0b:40:57:45:0f:df:68:31:ad:be:1f:11:88:95:ab:67:fd:
3a:02:fd:1b:8f:9c:4b:3a:e6:77:31:98:79:df:e1:9f:47:5f:
4d:fb:71:46:d4:0a:34:15:23:b3:88:8a:b6:66:26:e4:09:4b:
88:71:31:a8:26:f4:56:bb:ff:2a:24:22:0c:b8:a1:5f:64:d8:
0b:3f:ae:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:27 2024 by rpki-client on console-ams.rpki-client.org