Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Y14Pdi9z75r-sEUAn5PLJ10IbEI.roa
File: Y14Pdi9z75r-sEUAn5PLJ10IbEI.roa (raw, json)
Hash identifier: K9p+yVKCyqcOijRj2ifZZjN82tsGKZTpIHVkv1mfT+g=
Subject key identifier: 63:5E:0F:76:2F:73:EF:9A:FE:B0:45:00:9F:93:CB:27:5D:08:6C:42
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184808B02BD1B588DCCD180B1BE841597C7
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Y14Pdi9z75r-sEUAn5PLJ10IbEI.roa
Signing time: Wed 16 Nov 2022 13:05:04 +0000
ROA not before: Wed 16 Nov 2022 13:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.59.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
84.32.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:8b:02:bd:1b:58:8d:cc:d1:80:b1:be:84:15:97:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 16 13:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=635e0f762f73ef9afeb045009f93cb275d086c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:6c:67:dd:dd:c4:d6:89:e0:e1:94:66:55:db:
d2:5c:1f:ce:59:25:57:ef:1d:4e:47:2e:f5:af:05:
87:0f:b9:0c:66:83:e4:63:29:bc:b7:cc:52:9e:db:
03:b0:f8:d2:5e:06:cd:72:d0:02:34:b4:09:b6:d8:
5d:5c:b7:b2:59:0f:d0:8e:f1:f7:ff:a7:b0:86:bb:
5a:86:76:ee:1a:0f:7c:30:81:e1:3d:c6:3f:da:e2:
7a:5e:f4:32:84:33:d8:fa:10:f3:e3:45:46:26:bf:
54:2c:aa:d2:2a:60:c6:55:98:f1:2d:f0:93:6e:5a:
a8:4c:e0:d4:a8:d9:88:71:67:ad:ee:4b:19:46:4a:
4b:ac:06:2b:d3:79:5e:47:ff:58:29:23:1f:88:05:
a3:f8:8f:72:59:ad:9c:46:e2:c5:76:52:10:92:57:
4b:f9:e1:f7:98:85:2a:c1:7c:3e:c6:07:a0:42:15:
8f:1e:37:95:06:20:5d:10:8a:f4:c5:72:a0:58:c5:
e8:5b:f6:ce:b0:ec:13:08:e2:58:f5:f9:b7:c8:08:
c4:14:d4:24:5a:b0:2b:17:52:a7:0a:e9:c3:59:9b:
f6:36:92:9b:05:02:5d:90:14:38:28:bc:40:56:7c:
8c:9e:20:8b:55:d3:d7:85:bd:5a:f1:25:e2:15:e3:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5E:0F:76:2F:73:EF:9A:FE:B0:45:00:9F:93:CB:27:5D:08:6C:42
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Y14Pdi9z75r-sEUAn5PLJ10IbEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.45.0/24
84.32.59.0/24
84.32.228.0/24
88.216.34.0/24
88.216.36.0/24
88.216.180.0/24
Signature Algorithm: sha256WithRSAEncryption
02:fc:69:34:de:f3:96:33:54:ad:20:8a:f3:51:48:97:65:45:
78:27:11:3d:bf:13:4e:11:86:20:51:42:61:fd:04:de:50:0e:
d4:09:e0:5c:4b:7a:cd:53:74:1e:12:aa:fa:af:6e:6e:3f:70:
12:18:8d:50:7d:f8:07:67:92:af:79:da:5a:9c:b8:c0:93:26:
2f:ba:65:d1:53:4d:10:61:bc:56:a7:fa:ff:04:25:b4:ae:db:
df:14:4a:5f:8a:94:af:8b:f3:44:47:9e:43:15:81:23:9e:13:
ec:c4:38:74:e9:f3:52:a1:80:56:69:b3:d8:3b:d8:c7:be:23:
8a:08:1f:a0:c3:f1:25:cd:10:8d:17:8b:de:e6:60:37:03:e7:
08:8c:c6:a4:55:9a:a7:34:b3:94:81:ae:9d:df:7e:6e:17:05:
1e:f9:8f:b9:1a:e7:3d:47:5e:87:aa:36:a6:a1:ac:26:50:46:
85:93:b1:f5:90:23:c2:2c:14:bd:26:2b:cb:27:2e:3d:50:01:
bb:99:58:0b:cf:3f:45:ba:ff:cf:5a:06:d3:dc:4b:a9:c7:2b:
46:3e:e7:ab:c5:42:8f:c5:85:92:6e:64:db:96:60:f9:b5:95:
ef:89:44:82:fd:07:55:45:cc:6e:8b:af:e2:5a:1f:b4:cc:6c:
54:97:8e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:30 2023 by rpki-client on console-ams.rpki-client.org