Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YkCFE4kj50fdsvDUhc6zREg9sSw.roa
File: YkCFE4kj50fdsvDUhc6zREg9sSw.roa (raw, json)
Hash identifier: e2HmBAJwUX2iEWj3xbBfhZr/aObZnKMhodmKgEIKXyA=
Subject key identifier: 62:40:85:13:89:23:E7:47:DD:B2:F0:D4:85:CE:B3:44:48:3D:B1:2C
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 019E2741
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YkCFE4kj50fdsvDUhc6zREg9sSw.roa
Signing time: Wed 29 Jun 2022 12:49:02 +0000
ROA not before: Wed 29 Jun 2022 12:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 88.216.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27141953 (0x19e2741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 29 12:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624085138923e747ddb2f0d485ceb344483db12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:34:8f:dd:7f:bc:34:98:1b:c7:03:a4:a6:50:
21:d2:39:72:10:e6:c7:d7:19:47:06:53:d1:fe:f7:
d4:fc:85:8d:f8:22:70:75:42:9a:7c:70:fa:dd:62:
66:70:56:d1:bd:ce:c1:c4:57:00:68:7b:09:83:3a:
24:25:03:d4:2d:ed:5d:b9:90:b6:18:97:6b:ad:06:
c8:c0:c7:1e:3b:31:cf:5e:dd:d9:19:11:b0:6b:4e:
be:50:28:b8:aa:56:4f:24:f2:a3:6b:ed:ce:f1:9e:
cd:c1:5a:c7:cf:12:40:a4:99:55:66:8d:78:49:26:
84:03:88:7c:b5:20:3c:20:f4:a4:55:c5:36:df:31:
af:a9:59:67:37:24:6e:1b:eb:76:38:54:c3:72:9c:
93:2a:c9:63:a6:e0:7d:a8:a4:58:f0:ff:f5:fd:6c:
bc:59:d5:84:e7:57:b3:bd:04:6a:ad:e9:be:57:78:
45:62:9d:8d:d5:7f:4b:0a:ec:55:b0:28:dc:14:85:
92:85:b4:70:60:21:69:23:44:96:04:27:7c:a6:93:
29:38:28:db:76:77:35:5d:70:30:a4:58:b4:4e:1a:
2a:0c:aa:34:14:4d:82:e6:e9:b3:a0:cf:9c:32:4a:
0c:45:0d:07:55:12:52:45:4d:2d:f2:92:7c:8f:6e:
9d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:40:85:13:89:23:E7:47:DD:B2:F0:D4:85:CE:B3:44:48:3D:B1:2C
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YkCFE4kj50fdsvDUhc6zREg9sSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.90.0/24
Signature Algorithm: sha256WithRSAEncryption
91:08:b9:59:c4:2c:9a:c9:44:3d:34:e2:0e:62:b4:34:33:57:
81:ca:00:8d:01:ed:b1:4b:98:f0:00:26:fe:ea:c9:a6:53:07:
59:03:67:a6:0c:8f:25:1e:72:4f:d5:48:51:f3:1b:67:59:19:
df:7d:b4:31:b8:c2:be:94:2f:64:1e:90:ff:49:46:3a:60:66:
2f:92:24:ae:ac:e5:e4:e0:f5:1c:a7:99:76:47:c5:ae:f4:7d:
6a:83:02:f4:b1:14:63:b2:66:52:4a:e2:c7:0e:f5:66:df:69:
4c:88:41:12:d9:84:8a:e4:e7:16:07:9f:98:7f:81:eb:9b:73:
7e:1a:c7:d3:83:85:91:d9:3c:62:86:2c:86:af:3c:3b:72:af:
f7:42:5b:19:6f:9d:28:c1:06:3a:c8:b8:c1:d3:72:33:d4:06:
1d:9f:ff:0a:fc:a2:45:8c:39:df:8e:81:1b:6d:d6:67:5c:6c:
9a:bd:8b:76:8e:c8:73:1f:ab:4f:b5:fa:d1:14:6a:e4:e5:d8:
4a:9e:cc:4b:ea:aa:3a:6c:2f:ea:68:99:e6:90:54:23:89:50:
e4:7e:c1:a0:31:ba:e7:f9:93:8e:01:eb:bb:04:59:28:02:3e:
40:95:1d:2a:9e:7b:dd:79:3c:a5:83:00:67:9e:f0:cd:0b:d8:
99:f6:ad:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org