Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bJHtoVcrXppk-leR6Xrsn-vlNfA.roa
File: bJHtoVcrXppk-leR6Xrsn-vlNfA.roa (raw, json)
Hash identifier: STMI89QKOb0ILH8Ybr4HNSW1Vs9x5etPnozNGCKyvE0=
Subject key identifier: 6C:91:ED:A1:57:2B:5E:9A:64:FA:57:91:E9:7A:EC:9F:EB:E5:35:F0
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01109ED9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bJHtoVcrXppk-leR6Xrsn-vlNfA.roa
Signing time: Sat 14 May 2022 10:49:41 +0000
ROA not before: Sat 14 May 2022 10:49:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.216.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17866457 (0x1109ed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 14 10:49:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c91eda1572b5e9a64fa5791e97aec9febe535f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:45:38:54:71:a4:49:4c:af:be:87:35:c8:c0:
d8:6f:49:9d:39:2d:f2:61:e0:ec:04:eb:69:43:e1:
cb:08:f4:6d:e7:05:02:48:42:8e:bd:50:a7:16:be:
27:66:3b:00:74:2b:24:3e:58:d0:e3:5a:e6:f5:0c:
df:14:da:49:18:b8:6e:8c:08:0c:b5:d9:53:24:41:
e6:66:26:06:08:7f:ab:6d:11:c9:63:fa:be:04:24:
25:f5:b4:64:47:c6:59:c7:18:2a:c9:09:4d:bd:2c:
d7:67:ab:1e:0a:17:91:2b:ba:95:89:90:b3:d3:86:
57:1d:c6:72:a0:99:a6:fd:5f:6c:ed:77:3a:f1:74:
22:27:b4:7e:e3:9f:45:f8:77:d6:c2:51:31:77:cc:
fd:6c:10:6e:ee:d8:d2:19:c4:15:27:28:54:43:88:
bf:6a:9e:30:98:f5:07:59:04:cf:b4:46:bf:36:dc:
af:8e:01:ab:fe:c0:5c:30:73:1b:ad:2d:1b:b7:28:
a3:97:5f:7a:5f:99:55:9f:c6:06:ac:2e:07:c6:8d:
0c:fb:08:bd:0b:50:59:b8:be:cf:08:cd:73:c0:71:
34:a0:2f:d2:de:56:73:17:0a:b4:d8:68:8d:ee:f7:
09:70:f8:28:2b:5a:53:fe:32:20:21:bc:c1:3a:4d:
72:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:91:ED:A1:57:2B:5E:9A:64:FA:57:91:E9:7A:EC:9F:EB:E5:35:F0
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bJHtoVcrXppk-leR6Xrsn-vlNfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.33.0/24
Signature Algorithm: sha256WithRSAEncryption
13:28:9f:fa:9d:3a:96:81:ac:c7:9c:ec:95:e8:12:b3:1a:a6:
36:c9:03:df:69:96:31:11:40:2a:96:46:71:0c:6a:2f:e2:8f:
7c:b0:92:d4:ab:59:c2:af:fb:4d:54:4b:b4:94:f5:23:29:27:
23:78:b1:22:e8:70:a3:5a:39:78:55:d0:f4:a6:62:0c:67:d7:
79:91:d2:e3:11:f0:60:7b:f1:ca:7c:76:af:47:fb:41:cd:d8:
f6:84:46:7a:e8:41:71:55:ce:f8:0b:76:85:4f:b8:23:d6:7f:
4a:3c:1b:ce:43:93:f6:d3:e7:7e:d5:7a:c8:05:88:08:38:c9:
40:69:ef:45:ab:e4:dd:92:06:9a:d7:54:9e:19:0d:48:82:2d:
21:c1:a0:3b:b8:26:49:15:cf:bf:be:63:b0:e8:ac:70:29:0e:
48:24:b1:6b:45:23:16:3d:9b:10:d9:64:43:6e:61:ff:3f:d8:
3e:1a:9b:47:30:75:90:fa:b3:af:8f:2e:f3:6a:7f:5a:89:38:
53:f7:21:7c:67:4d:26:20:5e:53:c3:df:b8:ac:0b:b1:eb:35:
87:30:c5:b0:02:4a:1c:3c:24:39:26:60:3e:e4:d6:de:a0:7e:
dd:8b:d2:e4:7c:43:bc:05:ce:80:f0:a0:bb:f6:bf:0e:5e:1d:
51:86:78:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org