Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cOjYImEaHULdLazBvIdmoUNMshs.roa
File: cOjYImEaHULdLazBvIdmoUNMshs.roa (raw, json)
Hash identifier: Pa9AadHtbdQXMR+Rq2kZsQtlDVMkL55hBPUk3VGYcz4=
Subject key identifier: 70:E8:D8:22:61:1A:1D:42:DD:2D:AC:C1:BC:87:66:A1:43:4C:B2:1B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01844394B8005F4D8B58DCFAA0BAF71A0BDD
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cOjYImEaHULdLazBvIdmoUNMshs.roa
Signing time: Fri 04 Nov 2022 16:58:50 +0000
ROA not before: Fri 04 Nov 2022 16:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211287
IP address blocks: 88.216.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:43:94:b8:00:5f:4d:8b:58:dc:fa:a0:ba:f7:1a:0b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 4 16:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e8d822611a1d42dd2dacc1bc8766a1434cb21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7a:5c:45:37:53:71:4f:89:bb:30:33:1a:bb:
1d:12:3e:43:7d:f5:61:cb:6a:9f:c7:99:92:da:5e:
37:79:22:1c:0f:0a:36:da:2d:ec:fe:cf:66:a3:ef:
fd:62:69:57:a9:d1:ec:6f:3a:be:a9:a3:8a:3a:7a:
a4:24:28:1b:7a:d7:e5:2c:15:ff:ba:7d:e5:af:f7:
9d:03:22:b8:b8:e7:48:13:ef:de:ee:53:84:79:77:
ce:df:58:bb:12:a3:21:5e:6f:78:e2:46:28:d3:e9:
27:53:71:12:0a:ea:b4:e0:21:a8:4d:58:32:18:7c:
82:f0:bc:d7:ab:23:6c:69:1a:5e:8d:b6:ff:93:97:
75:7c:68:ee:03:bc:9f:42:ab:37:93:04:cd:f1:d2:
6a:7a:3f:c0:f1:b1:36:16:d6:73:e8:83:de:7b:a6:
bf:a6:a2:c9:4b:4a:1e:50:42:47:af:de:fd:8d:42:
63:d9:69:fa:7e:75:ba:4e:63:9e:bc:36:81:1d:16:
9a:80:bf:0e:88:90:9c:7e:79:5b:5b:e9:09:57:36:
ce:78:19:c6:30:88:c0:e3:5b:5d:21:1a:f2:05:ce:
98:a2:43:fd:0c:79:d0:c8:34:b1:31:90:1b:d6:6b:
e5:a3:25:9e:17:47:4d:71:12:b8:16:0c:da:36:cb:
29:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E8:D8:22:61:1A:1D:42:DD:2D:AC:C1:BC:87:66:A1:43:4C:B2:1B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cOjYImEaHULdLazBvIdmoUNMshs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.221.0/24
Signature Algorithm: sha256WithRSAEncryption
64:9c:23:45:b2:5a:31:ce:8d:a9:9d:3e:3c:22:a2:e8:2e:24:
dd:97:82:8c:ba:64:ad:16:ba:c7:99:b9:4a:e3:f0:b1:f9:7a:
37:b6:82:87:5c:cf:04:44:d4:f9:d1:2c:4d:31:e9:fa:02:0e:
2a:d1:b8:c6:92:82:bc:22:bd:7f:1c:93:34:bb:cb:73:18:e3:
e3:c7:ce:f4:12:a8:4a:ae:85:53:28:b0:6a:28:39:ca:6d:54:
1e:a8:3d:fd:f5:fd:8c:aa:f5:51:2c:44:c7:dc:5f:8b:5f:b7:
5e:6b:bd:24:9a:a9:8a:18:82:9f:ef:90:82:cc:34:52:97:3d:
b9:e2:9b:df:39:b1:26:e2:99:ac:be:9c:15:e2:3d:c6:3f:e2:
c8:fb:da:87:71:0c:26:e6:74:29:1c:c8:6f:8e:0b:13:9a:1d:
b7:69:e4:db:7a:9d:60:b1:1d:5f:c7:f1:13:ee:d2:cc:f2:d7:
87:6f:45:30:01:0c:b1:53:04:71:a3:a8:b9:42:17:52:b2:dc:
89:92:83:b1:0a:ce:f8:f4:a0:1f:03:b9:ad:68:87:58:9d:32:
0e:9d:58:48:97:d3:02:28:41:f9:87:ab:55:ce:3a:dc:1b:81:
1b:eb:ae:04:82:4c:4c:36:9e:e2:f2:bd:5d:e2:3f:2a:1a:83:
97:cb:25:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org