Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TM5CJD9KJj-WV-HQcZyNbUpelyA.roa
File: TM5CJD9KJj-WV-HQcZyNbUpelyA.roa (raw, json)
Hash identifier: AObQnBjwuRFnVhGtXZmSyYF5htgKxylB9gPRJxgBXyY=
Subject key identifier: 4C:CE:42:24:3F:4A:26:3F:96:57:E1:D0:71:9C:8D:6D:4A:5E:97:20
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0183ABD60EE360E635654D702095A7BB4129
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TM5CJD9KJj-WV-HQcZyNbUpelyA.roa
Signing time: Thu 06 Oct 2022 05:47:55 +0000
ROA not before: Thu 06 Oct 2022 05:47:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 88.216.186.0/23 maxlen: 24
88.216.184.0/23 maxlen: 24
88.216.94.0/23 maxlen: 24
88.216.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ab:d6:0e:e3:60:e6:35:65:4d:70:20:95:a7:bb:41:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 6 05:47:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cce42243f4a263f9657e1d0719c8d6d4a5e9720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d6:55:d2:3a:11:a6:3b:d1:a3:8b:a1:93:ba:
21:9b:47:2e:1f:55:5e:7e:d0:00:8c:f5:8a:0e:d8:
7d:3c:9e:e2:e5:c6:5f:3c:86:7a:fa:6e:87:c4:b1:
39:ed:1e:93:08:2d:d1:10:df:26:9f:9b:a8:ed:b0:
81:4a:6a:0f:f9:28:d7:45:ba:f0:46:39:22:1f:6b:
e1:32:ec:ff:01:ac:42:88:e4:f1:a1:15:f5:c8:5b:
3d:75:e8:9e:18:50:22:fb:49:39:4e:fa:81:d0:3b:
38:c4:35:c9:5d:98:0f:4c:57:70:41:02:59:f1:e4:
04:9c:10:c5:d6:51:67:34:74:a8:cd:f9:fa:00:a3:
e6:24:d3:3c:35:a4:0c:f2:57:ad:93:97:06:f2:31:
eb:e1:7a:a7:cb:41:dc:81:10:ea:d7:1f:65:b2:16:
17:40:a9:f6:df:ae:23:41:3a:99:2a:98:fc:15:46:
1f:f6:6b:79:07:db:ed:de:0b:f1:32:4a:ac:0b:ed:
36:86:df:1c:8b:26:f8:44:d7:33:ce:84:aa:f6:3d:
9d:67:25:91:7a:49:18:4d:b9:3d:b2:82:46:c8:28:
d3:7c:5b:57:2f:c4:99:9f:ee:26:02:6d:65:e8:1d:
cc:de:76:b4:df:3d:77:7f:6b:8d:79:76:dc:c8:54:
8a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CE:42:24:3F:4A:26:3F:96:57:E1:D0:71:9C:8D:6D:4A:5E:97:20
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TM5CJD9KJj-WV-HQcZyNbUpelyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.92.0/22
88.216.184.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:f0:22:67:24:b4:d2:ff:70:24:f2:57:4b:da:48:3b:4d:f3:
76:5a:91:0e:48:0b:74:26:62:25:7a:d1:17:e7:13:74:61:07:
61:40:50:b6:18:4c:e9:7b:b3:e6:6b:8e:ee:a9:d6:7c:84:b3:
a9:c6:26:46:e6:b6:ed:a1:32:a8:2e:48:37:bd:47:d6:9e:a1:
c2:4f:26:18:49:d3:14:04:70:c3:ae:b4:3a:5b:8c:d0:a7:15:
a6:8f:ea:4a:37:5b:47:8d:10:9f:48:48:4d:6d:a3:e4:40:bb:
c0:82:cd:4c:ac:bf:7e:8b:4e:e3:8c:ac:f5:cc:6d:18:bb:a9:
04:d0:94:ed:da:b7:9b:fa:32:15:9c:3b:7a:ac:64:2f:37:83:
d5:07:ed:c2:ac:80:25:c9:3d:46:68:f3:ed:10:91:5b:b2:21:
b1:96:9f:1f:3a:db:b3:9d:ce:4c:9f:25:3e:d7:ab:4d:32:6a:
25:83:ff:ca:15:f0:ed:20:82:01:76:8e:cc:14:cb:06:ac:d9:
1a:a6:2e:00:38:1b:37:30:27:d8:b2:0f:c4:62:aa:74:b0:81:
0f:19:0a:a4:2f:aa:22:c0:7b:67:6d:1e:a4:7d:a8:ed:55:36:
8a:39:21:06:87:67:b7:81:47:e7:8a:2a:b5:c2:0e:aa:cb:f9:
03:50:fe:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org