Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Tr6lstoWNDH_v0XffJa9THeVIyk.roa
File: Tr6lstoWNDH_v0XffJa9THeVIyk.roa (raw, json)
Hash identifier: vl0w/GIQjS3WDeQ2nr692pK2VuBxBRYzptoP1mW/YTE=
Subject key identifier: 4E:BE:A5:B2:DA:16:34:31:FF:BF:45:DF:7C:96:BD:4C:77:95:23:29
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 89547D
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Tr6lstoWNDH_v0XffJa9THeVIyk.roa
Signing time: Mon 04 Apr 2022 15:52:06 +0000
ROA not before: Mon 04 Apr 2022 15:52:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 88.216.180.0/22 maxlen: 24
88.216.188.0/22 maxlen: 24
88.216.196.0/22 maxlen: 24
88.216.209.0/24 maxlen: 24
88.216.210.0/23 maxlen: 24
88.216.212.0/22 maxlen: 24
84.32.4.0/22 maxlen: 24
84.32.8.0/22 maxlen: 24
84.32.24.0/21 maxlen: 24
84.32.40.0/21 maxlen: 24
88.216.0.0/22 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.19.0/24 maxlen: 24
88.216.20.0/22 maxlen: 22
88.216.33.0/24 maxlen: 24
88.216.47.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9000061 (0x89547d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 4 15:52:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ebea5b2da163431ffbf45df7c96bd4c77952329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:17:b3:e5:2d:8c:92:13:11:e9:12:53:e3:de:
fc:f2:0d:13:23:9c:57:d8:4c:57:08:f5:e0:f9:b7:
d0:4c:bb:44:fd:5f:2a:f0:31:33:54:ac:7e:c4:fb:
a0:19:01:6e:1a:a5:6f:be:0e:2e:ba:b0:f1:a8:de:
78:47:e9:d7:99:e5:bd:f5:02:cd:80:2e:14:89:73:
74:49:97:d1:5e:26:41:a8:4a:ab:32:fe:3a:46:4b:
94:97:c1:2f:a9:f0:b4:73:3c:c5:de:da:49:db:4f:
d1:a3:4f:20:9f:1e:d1:9f:22:ef:2f:c4:40:be:a1:
b5:90:52:f0:68:87:b6:4f:e5:d9:a0:f7:3e:82:9b:
cb:09:2a:01:b3:e9:b6:70:c5:8a:12:84:ef:19:fe:
60:35:f3:bd:87:de:77:67:bc:04:be:d1:15:ca:6a:
91:ad:4a:68:93:62:68:ed:88:8d:e8:78:91:7b:b7:
fa:63:28:64:82:7d:79:a4:8e:31:2d:e5:b2:00:2d:
a9:4e:42:76:b1:0d:91:d7:76:59:fa:1b:c3:09:43:
63:b3:b5:8b:b3:d7:50:38:60:f0:64:2e:f6:fa:b0:
8d:e3:4d:ef:c6:77:06:d1:77:b3:f3:b9:d0:fb:c1:
56:2b:e3:f4:8f:b3:56:70:bb:65:85:1b:98:6a:61:
5b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BE:A5:B2:DA:16:34:31:FF:BF:45:DF:7C:96:BD:4C:77:95:23:29
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Tr6lstoWNDH_v0XffJa9THeVIyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0-84.32.11.255
84.32.24.0/21
84.32.40.0/21
88.216.0.0/22
88.216.16.0/24
88.216.19.0-88.216.23.255
88.216.33.0/24
88.216.46.0/23
88.216.180.0/22
88.216.188.0/22
88.216.196.0/22
88.216.209.0-88.216.215.255
Signature Algorithm: sha256WithRSAEncryption
5c:f9:b6:f7:ac:71:77:ad:66:e4:c8:d8:44:77:e3:85:04:16:
06:ad:15:4d:f3:10:34:bc:6e:3d:71:03:e8:64:fb:f8:ca:40:
0d:72:57:ef:64:82:d5:f4:1c:9a:e8:7c:27:67:80:e6:c0:50:
59:2a:2a:97:13:c8:f8:fc:3a:42:40:a3:70:f6:28:b8:11:5d:
8e:7b:a3:9b:60:59:84:ed:95:bb:c2:41:80:1b:30:61:73:93:
8c:90:de:b4:49:8b:36:7b:e9:8c:64:44:d8:a0:12:fc:2e:89:
d8:90:38:a9:20:77:eb:53:8d:01:52:0c:73:f1:8c:45:08:01:
38:5d:f3:74:3c:2c:ba:b9:35:4f:4f:13:71:5f:a1:11:42:44:
8b:59:33:8d:7e:32:32:93:40:4e:3c:7a:dd:4e:d5:ae:35:5d:
1e:d6:3c:29:d9:04:0b:45:9a:1f:ce:2b:c5:8b:2c:7d:03:2a:
c1:ed:90:3b:7d:e0:52:ee:b5:8e:cc:f0:9e:73:06:ba:bd:ad:
6c:f8:a2:83:55:80:e8:9d:ad:0b:0f:fa:35:14:70:9e:32:2f:
25:ae:7e:87:53:c1:43:1b:5b:2d:b4:77:d3:6e:4b:e4:01:28:
ab:9f:f4:4e:dc:eb:5d:f3:5f:c1:89:51:45:54:93:b1:50:a7:
ac:1c:9a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org