Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UddspBl2NqiGWjyGPIOEf65yuGg.roa
File: UddspBl2NqiGWjyGPIOEf65yuGg.roa (raw, json)
Hash identifier: ZI2E4DyqyMLEbbO7uZp8NEOwxk9D2Q6sdHBWi/aPZgU=
Subject key identifier: 51:D7:6C:A4:19:76:36:A8:86:5A:3C:86:3C:83:84:7F:AE:72:B8:68
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018392755E660B98FD5ED7A0B7029810CA01
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UddspBl2NqiGWjyGPIOEf65yuGg.roa
Signing time: Sat 01 Oct 2022 07:31:48 +0000
ROA not before: Sat 01 Oct 2022 07:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201364
IP address blocks: 88.216.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:92:75:5e:66:0b:98:fd:5e:d7:a0:b7:02:98:10:ca:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 1 07:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51d76ca4197636a8865a3c863c83847fae72b868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:51:89:5c:09:2b:62:ee:54:ef:a3:80:2b:55:
7e:8d:29:0c:db:84:5b:0b:3f:82:b2:b2:c0:19:29:
01:37:94:1f:19:da:2b:67:fa:f8:4a:2d:82:a0:ae:
a5:d7:95:b2:3a:c3:ae:9c:9c:db:d6:ec:53:6b:37:
33:56:0b:e6:5b:dc:fb:8f:05:fc:21:22:75:a4:e7:
fa:6e:4d:df:8a:d7:9e:be:a6:50:33:2c:5f:5c:a6:
d2:fd:a2:c2:96:79:db:02:50:7c:bc:f4:cc:50:c0:
a9:74:0c:14:81:22:0b:72:01:51:47:f3:09:07:39:
2c:ba:99:f1:9c:45:1b:95:c5:97:ce:1d:3c:c5:22:
e2:b9:de:05:3b:1a:ff:0c:d0:22:a7:86:32:be:67:
5b:bf:06:2f:89:75:46:7a:e7:9b:7b:13:5f:da:95:
b6:9b:7f:c2:23:f6:e1:99:13:c5:b6:b9:a2:70:1b:
95:f9:80:b3:e6:fd:61:79:c7:71:74:1f:69:e2:1f:
60:9c:0b:68:3e:ca:2b:cb:fb:16:cc:f0:1c:de:f9:
aa:79:f2:11:26:c4:08:72:a4:9f:ac:00:b7:86:99:
59:9b:63:62:82:ec:6d:b5:fd:cc:7a:73:6d:e5:b5:
96:91:45:59:bc:00:d2:11:51:71:e4:b8:b1:a5:03:
95:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D7:6C:A4:19:76:36:A8:86:5A:3C:86:3C:83:84:7F:AE:72:B8:68
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UddspBl2NqiGWjyGPIOEf65yuGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.129.0/24
Signature Algorithm: sha256WithRSAEncryption
39:1e:88:b8:30:1b:e8:47:be:20:14:2c:09:a9:51:94:f5:83:
77:0e:e7:a7:a7:fa:d8:f5:a2:3c:b1:68:9a:98:38:d8:89:7c:
20:a6:08:e8:4f:a1:3b:ae:64:bb:d6:13:a7:6c:4d:21:a1:af:
3d:4f:21:e1:e9:74:33:87:c6:5e:f6:83:ed:9a:0f:17:0e:10:
72:78:91:3a:d2:b0:21:f5:a5:7e:9e:eb:dc:d6:a1:c7:1e:b8:
1f:8c:87:09:83:7c:8d:85:13:c0:17:67:0e:20:96:27:a8:43:
2d:a2:24:b3:60:14:a0:76:20:8d:93:95:89:99:77:89:a1:24:
13:6e:30:79:24:82:ef:42:17:53:b1:3b:52:13:21:30:31:9a:
a9:ef:30:04:da:0a:77:1d:ea:bc:2a:17:8d:b5:9e:aa:0d:97:
bd:2e:38:db:24:43:a0:f1:42:d5:17:f8:ce:84:6c:ae:96:dd:
7c:47:1d:72:c7:6b:8c:d8:51:78:18:8d:7c:7c:73:b2:59:0e:
b7:96:6c:69:65:5d:f5:7f:5f:ee:9b:a2:1a:66:0f:db:68:a0:
88:54:a6:a3:9d:3d:ed:22:5d:b4:82:99:51:40:99:13:b9:c9:
1f:f6:b7:6f:34:f3:7b:ed:1e:ce:5e:47:8a:7b:41:57:68:79:
fe:68:dc:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org