Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZWu_3PLJ1HhqNw6MzN8VBjxLVxQ.roa
File: ZWu_3PLJ1HhqNw6MzN8VBjxLVxQ.roa (raw, json)
Hash identifier: wXcH5Q/URP8Aztjr/ewweZeEIcdglD0XQhW1QcID9Ko=
Subject key identifier: 65:6B:BF:DC:F2:C9:D4:78:6A:37:0E:8C:CC:DF:15:06:3C:4B:57:14
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184A5AB465F2DC8B93ABC5672B1F2477443
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZWu_3PLJ1HhqNw6MzN8VBjxLVxQ.roa
Signing time: Wed 23 Nov 2022 18:06:16 +0000
ROA not before: Wed 23 Nov 2022 18:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51167
IP address blocks: 88.216.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:ab:46:5f:2d:c8:b9:3a:bc:56:72:b1:f2:47:74:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 23 18:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=656bbfdcf2c9d4786a370e8cccdf15063c4b5714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:82:3a:8c:ac:54:e7:0b:d5:d2:a5:29:4a:0a:
c1:4d:42:3f:62:fc:78:60:a7:22:a4:8e:19:d4:93:
95:56:2b:6d:34:39:66:b5:49:c8:da:2a:16:a3:ac:
d0:79:1e:6d:0e:a5:12:9e:69:d3:68:52:c9:dd:f8:
b4:12:b6:9c:66:f9:fb:b4:a3:61:a0:ed:86:b5:8e:
b2:70:f2:af:e6:ca:d7:9c:ca:38:20:8c:1d:3d:c3:
4a:ec:a8:a4:42:cc:c9:ca:f3:dd:19:3f:31:56:ea:
0e:79:9c:5a:0d:1d:48:25:ba:6f:dd:bc:35:e2:94:
da:cc:4f:53:4a:69:62:d1:d8:df:e1:00:b3:c1:3c:
53:ca:65:2e:05:73:ba:c8:0a:bc:45:db:5c:08:de:
d7:9a:fc:fb:33:05:7e:fd:e1:6e:f6:47:eb:22:db:
8c:37:4a:64:24:4e:bd:43:ad:05:81:34:bb:88:40:
2e:1e:44:0c:4e:92:b7:dc:98:89:a6:fe:79:8f:e4:
1a:6c:39:e5:51:d8:7d:0f:3e:cc:66:cf:4b:0b:92:
e8:d5:1d:0f:d2:fc:95:35:c7:fd:0a:59:ed:2b:9e:
21:a2:ce:c0:ed:c4:23:de:8c:2e:0f:49:27:89:51:
ca:f8:d5:df:82:2c:d8:21:a3:2c:60:58:7e:6c:2a:
89:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6B:BF:DC:F2:C9:D4:78:6A:37:0E:8C:CC:DF:15:06:3C:4B:57:14
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZWu_3PLJ1HhqNw6MzN8VBjxLVxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c2:be:e8:fd:bd:e3:e2:e2:bb:66:ad:cf:16:ff:1c:ca:1f:
50:d0:0d:54:46:38:bf:e8:60:3d:c9:1b:e7:c3:08:58:3a:b1:
27:7f:87:fd:1a:3c:4d:51:33:60:c7:01:96:b9:33:d8:88:0a:
bd:ec:48:45:0c:5c:96:bf:0e:f6:b7:f9:6f:4d:47:7a:77:05:
a1:eb:f5:bb:82:53:87:a5:a5:7e:a2:2a:cc:0e:fe:c3:db:2f:
4c:26:ac:12:ee:76:33:6a:ee:6c:6f:93:8e:67:77:80:cc:ff:
e6:4b:ec:60:65:36:b5:4b:bb:f8:d3:d4:12:c6:23:7b:8d:e4:
b8:fb:21:ae:3e:0f:96:6d:9c:b5:cb:2c:6a:5c:e5:fc:49:08:
1e:bc:92:00:d0:2d:f7:9d:05:74:1e:05:47:37:e9:6c:68:ed:
d9:31:5f:c1:9f:33:1c:8c:38:75:a6:9f:0d:59:5d:77:22:13:
5d:ed:0d:b8:05:95:7c:53:28:87:6c:c8:be:56:62:c2:5f:6d:
90:05:00:cf:67:e3:4c:d7:48:ca:7f:a6:94:a6:a0:8f:ce:0f:
45:8b:4b:21:ef:ca:c7:26:ef:d8:1f:a1:6f:14:12:78:dd:2c:
68:58:d0:db:77:e0:56:3e:7c:10:34:34:d4:a9:fa:29:ab:c2:
b3:2f:cf:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org