Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b4Ad8mlrQDm8ctcuruXpiFe-3S8.roa
File: b4Ad8mlrQDm8ctcuruXpiFe-3S8.roa (raw, json)
Hash identifier: gi/7Qo+UbdGlIdUNfLtmhBgTM8vL1QE+sT5SAMhcs9w=
Subject key identifier: 6F:80:1D:F2:69:6B:40:39:BC:72:D7:2E:AE:E5:E9:88:57:BE:DD:2F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: B50BFC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b4Ad8mlrQDm8ctcuruXpiFe-3S8.roa
Signing time: Wed 13 Apr 2022 16:24:23 +0000
ROA not before: Wed 13 Apr 2022 16:24:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63213
IP address blocks: 88.216.96.0/21 maxlen: 24
88.216.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11865084 (0xb50bfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 13 16:24:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f801df2696b4039bc72d72eaee5e98857bedd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:35:9b:da:25:f8:91:62:57:ff:ad:23:e3:fe:
0e:20:61:e1:a5:d0:e0:b6:89:5c:1c:4a:4d:e6:32:
ac:2c:d3:82:a7:28:4e:e0:55:c5:7b:cb:76:1c:73:
d7:26:bb:57:c5:15:23:ee:3c:9f:60:49:0b:ef:2e:
81:53:7c:7e:f0:61:59:ee:52:d1:0b:69:aa:9b:53:
d4:45:7e:56:04:91:59:b3:f3:31:e4:f4:a3:76:33:
53:be:89:4a:fb:68:01:a9:e6:6d:f8:d2:74:88:bf:
73:2c:4c:9b:bd:ba:9f:83:8c:80:81:b1:7d:60:a6:
8a:6c:97:ee:93:7b:5f:05:ca:4b:fa:0d:b5:57:73:
a5:07:c4:8e:f7:49:2c:26:b3:6b:55:81:35:ab:f0:
77:1a:35:54:d0:a1:fe:d5:d4:3d:7d:d5:2b:24:e5:
9e:c1:03:1b:c4:ae:02:8f:6f:ad:38:4f:de:f7:78:
5c:5c:33:8b:ee:5e:59:a2:fc:64:5a:3b:c0:a5:f3:
3b:cf:b4:ca:c4:3b:c5:e1:73:02:66:17:14:94:9e:
3a:86:b7:29:67:95:ad:0d:fc:a4:ca:98:77:b0:fa:
fc:4f:a4:fa:37:5a:00:99:63:1c:58:28:19:b3:68:
86:4f:2a:85:c4:75:ca:04:26:14:7a:9d:a7:64:d2:
45:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:80:1D:F2:69:6B:40:39:BC:72:D7:2E:AE:E5:E9:88:57:BE:DD:2F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b4Ad8mlrQDm8ctcuruXpiFe-3S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.96.0/21
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:b5:7e:34:fc:22:88:73:ed:11:d7:18:19:00:13:39:40:08:
1b:86:be:34:85:e2:d0:ff:de:69:e9:6d:c9:a1:56:52:ad:22:
63:83:04:91:76:90:63:e9:75:5b:82:ca:b2:c8:84:67:9e:48:
21:c5:66:4d:ca:8d:90:24:27:3b:4b:98:c6:34:05:1b:2b:db:
e8:74:29:27:9a:06:4f:07:5a:9d:23:1b:66:cb:9f:67:b0:3b:
ae:89:a2:7b:8b:df:44:bf:97:4e:8d:c2:a9:6e:03:5c:12:3f:
56:70:02:ac:fc:4a:4c:00:ee:5f:f0:41:f0:f0:25:1b:21:a1:
dd:2b:1e:d4:e3:e6:79:91:5f:db:98:21:f5:a4:1d:12:99:33:
d3:13:13:6e:4b:0e:91:93:65:93:6d:f0:8c:da:5b:13:5e:52:
7f:a4:1d:9b:30:18:fc:64:7e:ca:9d:52:67:c4:b9:67:47:76:
a0:42:b8:e9:af:33:48:1e:6d:90:87:7c:81:b8:b9:90:d3:9b:
2e:40:36:b9:1c:0c:32:03:82:db:ca:ca:3b:18:d7:c7:5b:b4:
12:c3:43:5c:7d:03:be:b3:e8:6e:9b:58:7f:1b:60:d9:ec:0d:
25:10:7e:39:e6:78:89:0c:20:6f:00:8c:56:15:8b:d7:0a:dd:
f4:d7:19:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org