Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Txh3b1fBfm2JeLs_YCSnGU8AEPA.roa
File: Txh3b1fBfm2JeLs_YCSnGU8AEPA.roa (raw, json)
Hash identifier: 9ykFJEPyX6nb9Z1CVkt4mNu6qMaNUoV5a1c0Aj814/g=
Subject key identifier: 4F:18:77:6F:57:C1:7E:6D:89:78:BB:3F:60:24:A7:19:4F:00:10:F0
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01843996B9E15AFA0C41E44F40BAB278FF84
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Txh3b1fBfm2JeLs_YCSnGU8AEPA.roa
Signing time: Wed 02 Nov 2022 18:24:50 +0000
ROA not before: Wed 02 Nov 2022 18:24:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 88.216.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:96:b9:e1:5a:fa:0c:41:e4:4f:40:ba:b2:78:ff:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 2 18:24:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f18776f57c17e6d8978bb3f6024a7194f0010f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:64:3e:cc:e6:5a:06:32:ff:19:5f:25:7b:66:
e6:ad:b0:c9:2d:cf:ee:4c:20:8e:d1:f9:bb:da:4d:
77:1f:7b:13:57:a3:bd:5e:3c:59:f5:a4:a9:ed:72:
d8:e0:1c:59:74:a7:40:2d:a3:c1:a5:13:5c:1f:c9:
87:84:3e:e7:a4:13:b8:fe:24:4b:d8:57:ff:01:24:
62:83:6d:f1:9a:07:df:a6:c8:8c:92:9e:a6:81:7d:
17:9d:dd:9c:78:ab:ee:c3:11:fd:68:63:e3:26:f0:
a2:eb:21:00:e2:f0:93:f9:e0:15:59:a3:21:48:16:
68:75:e9:15:db:88:97:46:d8:87:40:42:56:db:d5:
2d:df:14:f1:7a:1e:a4:82:be:6d:aa:ba:82:cf:9f:
57:37:1d:3f:5e:31:e7:01:29:7b:3e:7d:02:80:8f:
36:7d:a7:7a:46:3e:97:66:28:78:43:23:ba:37:ae:
9d:b5:82:22:07:27:a2:e9:70:c4:be:bf:85:4a:d0:
96:95:04:81:32:74:b5:1b:32:9e:ca:ad:74:71:38:
d4:1b:46:4b:1d:8f:f8:99:bf:bf:a3:2e:cc:dc:85:
3b:a3:ef:94:69:be:fc:48:f5:ee:90:de:18:1d:80:
c6:98:99:60:c5:29:df:52:52:cb:c9:fb:73:e7:52:
80:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:18:77:6F:57:C1:7E:6D:89:78:BB:3F:60:24:A7:19:4F:00:10:F0
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Txh3b1fBfm2JeLs_YCSnGU8AEPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.47.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e7:a8:5a:a3:c3:46:64:c1:69:9a:12:36:1e:da:34:fe:3c:
43:74:a8:94:b6:0a:49:4e:cd:32:9c:33:9f:ed:29:7f:67:97:
5c:34:87:2d:7f:cd:28:0b:29:86:47:ac:15:f1:96:9c:d6:1c:
18:6b:58:e4:50:e0:0a:0c:a5:c5:01:4f:20:09:e1:e9:ab:eb:
2c:66:fd:9d:d6:30:60:b4:55:31:81:ae:81:8b:2b:32:4d:8a:
f8:d4:23:9c:32:1a:72:30:bb:5d:ea:06:94:87:0a:8e:5e:35:
7e:1f:ea:a4:d9:af:2e:5f:7b:fe:3f:b5:5a:18:e6:59:78:82:
23:fc:70:36:57:ec:f7:44:1a:35:2d:84:aa:3e:14:b5:91:82:
d6:76:8c:c6:7a:34:61:d2:c6:9f:d3:f9:f2:ca:ae:6e:c3:bb:
8a:4a:b4:39:54:50:11:95:d7:aa:4c:e9:74:4d:b6:b1:3c:03:
87:78:4d:b6:c8:0a:e9:a7:2d:65:28:d7:54:5b:d4:1d:e5:97:
09:d8:48:b0:a0:d9:00:99:9f:a4:59:3c:18:57:d1:3b:11:38:
c2:ab:47:6e:0f:b3:e5:49:db:bc:22:1b:64:ef:71:14:80:0d:
51:82:54:08:89:30:a7:12:cb:3c:11:d8:43:3c:e2:87:9e:b8:
05:f7:63:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org