Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UAzdMSpetF-osRzUGy1KeHX8TSI.roa
File: UAzdMSpetF-osRzUGy1KeHX8TSI.roa (raw, json)
Hash identifier: 9kX4gPDy9/YvlKCjeABlEAyY0ST/JiM2tLGJDkqpoYU=
Subject key identifier: 50:0C:DD:31:2A:5E:B4:5F:A8:B1:1C:D4:1B:2D:4A:78:75:FC:4D:22
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018460A663EFE2E98BA61EC7CFC29AA4D111
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UAzdMSpetF-osRzUGy1KeHX8TSI.roa
Signing time: Thu 10 Nov 2022 08:27:08 +0000
ROA not before: Thu 10 Nov 2022 08:27:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207429
IP address blocks: 88.216.183.0/24 maxlen: 24
88.216.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:a6:63:ef:e2:e9:8b:a6:1e:c7:cf:c2:9a:a4:d1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 10 08:27:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=500cdd312a5eb45fa8b11cd41b2d4a7875fc4d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:92:e9:3e:9d:32:19:74:32:6d:28:25:e2:
da:8e:53:86:ab:56:22:fd:68:39:46:50:97:cc:28:
ea:20:5e:a5:47:09:df:e8:5a:13:63:22:e6:61:c7:
56:e3:42:22:31:e0:62:c3:5b:01:57:56:cd:60:8b:
1b:50:4b:c3:21:e6:7c:76:05:14:63:0c:f9:fa:38:
55:33:eb:a9:0e:4e:ff:0b:f9:22:78:e1:e6:2b:b8:
bc:61:07:57:7a:87:7b:22:54:f1:32:3c:d8:35:12:
ef:15:05:d8:a3:17:a2:e4:de:36:8b:96:1a:ea:bd:
ae:d5:f4:06:32:23:16:60:b2:26:cb:68:36:8c:8a:
a4:24:65:85:05:60:ce:42:3c:5f:ff:a1:7e:a8:ec:
38:c2:89:3b:50:9b:17:11:33:a6:49:ae:56:fa:f0:
56:ce:9d:e1:47:72:4d:5f:f1:14:fb:c5:df:a3:c9:
b4:f7:c4:60:7a:b2:83:54:46:e5:ad:ea:24:f7:2d:
e3:85:3b:fa:fa:20:fd:c2:dc:ce:8e:11:34:d3:37:
d7:af:48:96:23:c8:89:28:82:b9:38:30:7d:7f:07:
c2:fe:3b:c4:0f:36:45:ea:5c:58:03:ce:1b:fd:66:
99:d4:04:75:13:cc:ec:29:34:d0:95:7c:b6:2c:2e:
f8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0C:DD:31:2A:5E:B4:5F:A8:B1:1C:D4:1B:2D:4A:78:75:FC:4D:22
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UAzdMSpetF-osRzUGy1KeHX8TSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.182.0/23
Signature Algorithm: sha256WithRSAEncryption
54:f3:f0:ec:0f:c8:1b:b3:64:5c:7b:4a:ff:05:6c:fe:8d:c4:
2f:1c:6a:2c:78:a4:85:e1:bc:41:09:f3:d2:f7:ca:e1:64:9c:
2c:da:fb:1b:d5:ab:c7:25:72:75:8c:08:38:e1:3b:a1:c7:d7:
2a:b4:96:d1:00:f3:61:01:f0:38:7e:f1:8b:a3:68:68:5a:e8:
a8:28:f5:ab:21:5b:14:46:f9:3d:33:0a:16:00:11:75:5d:c5:
b7:6e:c6:97:0d:95:3b:4a:a9:15:f5:3e:80:a1:47:71:e2:e1:
42:2a:57:b8:62:1e:02:21:77:17:3f:f4:cf:83:5e:28:a9:5b:
b4:25:50:4d:a7:39:19:e5:33:ea:e4:8d:aa:9b:e6:e9:85:a7:
12:e0:a0:29:36:78:3e:d2:13:b3:98:6c:81:1c:30:94:6f:96:
83:87:27:39:74:8c:d5:d6:d1:ca:28:b4:b2:e1:03:e1:c1:e9:
d2:fd:ea:b5:36:7a:44:95:b4:27:ad:b8:50:b6:be:4c:c0:85:
b2:25:9e:12:82:11:fe:da:f6:13:91:97:5f:bb:6c:00:72:eb:
c6:9f:3c:fb:d9:12:47:fb:0b:c4:48:14:63:d2:19:b0:34:af:
3c:d3:0b:08:06:94:85:7b:15:9f:1d:79:1b:62:ca:7b:03:54:
7a:28:fc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org