Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/VH5Jg8A7n7RybVKh7KkKYJEWdxs.roa
File: VH5Jg8A7n7RybVKh7KkKYJEWdxs.roa (raw, json)
Hash identifier: eKhGiPWvd74OLah1JAZdUfSc2V5c0/kl/0viayXX4r4=
Subject key identifier: 54:7E:49:83:C0:3B:9F:B4:72:6D:52:A1:EC:A9:0A:60:91:16:77:1B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 011F6EB8
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/VH5Jg8A7n7RybVKh7KkKYJEWdxs.roa
Signing time: Thu 19 May 2022 08:43:17 +0000
ROA not before: Thu 19 May 2022 08:43:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 88.216.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18837176 (0x11f6eb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 19 08:43:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=547e4983c03b9fb4726d52a1eca90a609116771b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:57:80:b7:14:9c:35:4a:a6:d0:5e:9b:bc:
58:36:21:5f:d1:c8:fb:d7:a9:8e:d3:8c:97:3d:26:
e9:ce:43:d8:87:f9:29:e6:d4:e4:e7:86:35:a9:36:
0f:ff:ec:d0:99:0c:47:95:d2:a3:b8:fa:31:f0:89:
35:92:77:7f:68:08:86:eb:b0:4f:4b:2e:99:1c:6b:
6b:25:ad:d1:a3:4f:61:37:c2:93:55:6c:70:b2:bf:
80:7f:1c:09:4c:5f:22:53:3d:c3:aa:52:05:11:08:
12:f5:58:93:70:6e:09:b9:fb:3c:2a:f7:7f:ff:92:
da:d2:5b:8b:95:e1:c1:43:4a:14:a0:e9:18:51:69:
1a:09:54:3f:c3:bd:be:2f:c6:12:7e:25:d0:7d:40:
19:a1:f4:01:0b:2e:55:5c:38:a9:13:80:b5:27:2d:
66:3d:16:ff:3b:de:2e:d8:28:d4:91:90:e4:72:8f:
6a:6f:89:10:ed:55:97:2a:83:9f:8a:2b:60:20:8b:
17:39:26:29:62:fc:2d:bb:21:42:a3:7c:60:0b:00:
84:75:e3:52:03:33:aa:c2:73:b3:56:27:5a:59:17:
65:84:c5:aa:e0:24:2f:62:10:ca:48:8c:5e:ee:7b:
39:8c:a3:0d:60:fc:3b:b7:1a:c8:c1:4b:fe:37:6a:
e8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7E:49:83:C0:3B:9F:B4:72:6D:52:A1:EC:A9:0A:60:91:16:77:1B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/VH5Jg8A7n7RybVKh7KkKYJEWdxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.99.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9d:70:42:93:8a:9a:d8:ed:81:44:35:c2:9a:ed:90:a0:63:
cf:e9:2c:d4:80:9d:ca:85:47:06:af:4b:6a:2e:27:93:7a:aa:
f8:02:1e:88:5e:4a:eb:20:14:19:76:b1:c0:cd:8c:85:28:49:
63:11:2f:57:57:be:d7:a1:fd:40:32:26:cb:fa:b6:20:05:3d:
6a:e4:78:b1:1d:6c:f1:e4:0b:fa:e1:28:c5:29:e4:80:2a:f2:
82:26:61:78:9f:5a:66:fd:b3:fc:79:81:83:9a:b8:6f:b4:6b:
fc:47:04:50:c4:26:fe:b8:03:c3:62:dc:f9:dc:1a:e8:9f:17:
bf:26:1d:c7:12:df:f6:4c:19:91:4b:9d:8e:0f:c4:7c:4e:91:
95:a5:f5:7a:6e:a8:cb:9b:a0:96:fe:f9:ce:4d:2d:92:b6:d4:
e9:ad:3f:31:69:bf:a0:bc:00:ce:b9:63:e4:d7:9a:7b:b9:59:
48:c4:86:2e:30:ae:46:1a:f5:51:02:be:74:35:37:22:e9:70:
84:52:1b:fc:b7:e2:e1:3a:68:3c:8f:39:a5:17:40:d1:69:42:
29:18:f3:81:09:50:40:2f:37:99:fe:21:dd:42:2c:7e:91:af:
24:ce:8c:10:26:43:80:99:00:ad:61:32:f0:98:9a:6f:75:95:
41:98:6d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org