Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Rc2mM_veolRcZ22tT11m8Ab-3VY.roa
File: Rc2mM_veolRcZ22tT11m8Ab-3VY.roa (raw, json)
Hash identifier: TPANOrfRn9eg0kO+X3avh7UWcepfs4DiONXRU7840Fs=
Subject key identifier: 45:CD:A6:33:FB:DE:A2:54:5C:67:6D:AD:4F:5D:66:F0:06:FE:DD:56
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01851F36ADD902F0AC827B23395D388D7707
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Rc2mM_veolRcZ22tT11m8Ab-3VY.roa
Signing time: Sat 17 Dec 2022 08:32:35 +0000
ROA not before: Sat 17 Dec 2022 08:32:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 88.216.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:36:ad:d9:02:f0:ac:82:7b:23:39:5d:38:8d:77:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 17 08:32:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45cda633fbdea2545c676dad4f5d66f006fedd56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:db:bf:79:7d:63:84:b1:b1:ec:b6:a9:27:1a:
96:8e:60:b5:17:ce:e7:9b:c5:20:47:35:38:2f:bb:
6c:54:24:42:5c:9c:2f:90:f6:dc:54:ba:51:35:69:
5d:00:92:10:33:91:69:2c:dd:64:2c:bf:39:13:4f:
d5:75:05:ba:cb:ce:50:06:03:ea:d7:9e:fb:80:3e:
94:64:16:7d:38:33:75:f1:d8:55:3a:2b:04:27:83:
ae:21:23:bd:2f:37:0d:a1:d3:3f:d4:2e:0a:d4:d5:
a0:58:c8:98:55:15:89:5b:2b:5f:45:b0:93:5e:cd:
32:d9:4f:7e:2d:6f:ed:c1:c8:cd:d7:97:de:dd:5c:
53:0e:0a:be:e5:73:a6:6b:49:e4:c7:5c:24:50:53:
11:57:80:40:d7:59:ea:ab:16:bb:7b:50:06:d7:c9:
4d:86:d3:a0:0c:d4:13:d6:de:54:27:c5:b0:aa:33:
48:60:5b:95:d8:47:58:9e:f7:f5:5f:da:3a:b6:4d:
7d:6c:35:a9:82:e9:49:b3:52:ae:be:62:4e:cb:08:
50:10:2c:9c:af:e3:9d:32:da:c1:2a:4c:9b:87:51:
f7:e5:e8:29:33:63:2e:31:a8:73:0e:9f:97:6e:ab:
44:65:48:63:f0:6e:b8:4d:d3:17:b3:c1:81:27:96:
29:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CD:A6:33:FB:DE:A2:54:5C:67:6D:AD:4F:5D:66:F0:06:FE:DD:56
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Rc2mM_veolRcZ22tT11m8Ab-3VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.130.0/24
Signature Algorithm: sha256WithRSAEncryption
98:52:05:d0:35:a2:7c:67:a2:38:68:f7:5d:32:96:d9:dc:61:
16:2f:49:83:b5:5c:9a:57:27:60:be:9d:6b:88:bb:1a:c9:37:
7d:f7:10:31:ae:71:44:61:bc:b1:48:5c:cb:0d:f4:7a:bd:aa:
a1:a3:70:ed:84:75:23:11:fd:32:e7:98:db:f7:d9:9c:0a:20:
a0:5a:a1:6f:e4:ca:c8:6f:eb:9d:3b:7b:0d:2e:dd:b6:55:d6:
60:3d:ca:2a:06:c0:19:11:48:1a:4f:c8:9d:f9:ea:0d:16:e5:
44:d6:c6:89:94:69:b4:47:01:e2:47:ce:c2:30:18:95:7a:c8:
88:0a:05:52:6f:57:b3:1d:2c:bf:a1:0a:9c:f2:6e:39:12:11:
d7:9a:32:3e:94:a6:9a:d5:99:91:d6:5b:6b:39:05:18:f6:73:
f7:74:5e:c6:67:fc:66:9a:28:b3:48:df:fa:e1:4a:ca:d9:d9:
1d:19:17:f5:0d:5d:2c:c9:db:36:e7:63:6b:cf:5c:2b:42:3c:
9c:25:57:3a:59:75:87:6c:40:2e:3d:06:37:63:c0:9a:de:34:
a7:21:2b:74:8b:d0:54:d0:cb:83:d9:3a:d2:fd:dc:06:60:94:
4c:d1:c8:ea:b5:f4:dc:06:88:37:04:e7:38:2b:b4:aa:05:24:
ca:94:d7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org