Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ecwA8N9AVf7vL_i8J586qH7Fa1o.roa
File: ecwA8N9AVf7vL_i8J586qH7Fa1o.roa (raw, json)
Hash identifier: SUOpdkYxTT70p3Vwwi1dH1s2FLBp8NV40+He0EeUW0k=
Subject key identifier: 79:CC:00:F0:DF:40:55:FE:EF:2F:F8:BC:27:9F:3A:A8:7E:C5:6B:5A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01846156F4D5ED7EF3BF277466EBDDCF89CC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ecwA8N9AVf7vL_i8J586qH7Fa1o.roa
Signing time: Thu 10 Nov 2022 11:39:59 +0000
ROA not before: Thu 10 Nov 2022 11:39:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204843
IP address blocks: 88.216.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:56:f4:d5:ed:7e:f3:bf:27:74:66:eb:dd:cf:89:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 10 11:39:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79cc00f0df4055feef2ff8bc279f3aa87ec56b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f3:28:f5:b6:94:59:72:46:5d:35:d7:75:d1:
7e:07:1c:6d:e5:86:14:3b:84:4f:15:fd:8c:7e:0d:
13:ea:f0:f4:fb:32:d1:8f:a5:d3:9d:e0:41:ff:50:
50:bc:92:36:42:20:01:1b:52:28:e4:71:28:31:8b:
ee:71:3b:4a:4b:53:2a:0a:f9:b0:c8:5c:39:0a:7c:
3e:fb:8c:bd:e8:87:9e:e4:b9:f7:b5:71:ef:6d:8c:
14:0a:48:42:d2:03:41:1d:0e:04:cd:58:58:91:14:
ca:83:4f:cd:6e:c1:99:11:9a:31:b8:6e:8a:2e:1d:
51:bc:aa:7e:5b:5d:e1:1b:d2:02:db:e1:98:3f:eb:
16:2c:ee:da:7b:56:61:be:16:f6:60:6b:89:a5:d0:
e5:da:c6:3d:db:06:0d:95:01:e4:d5:d1:c7:4b:9d:
58:e2:f5:d6:63:00:6c:f9:67:1c:39:d7:4a:40:50:
64:17:46:07:76:2c:18:97:8a:ab:2b:27:38:0c:6a:
a5:57:43:b0:cb:5f:bf:a0:18:19:70:53:bc:f5:31:
f4:ed:75:48:23:19:a2:9c:bd:30:ac:fa:32:7b:3c:
70:55:53:bd:7f:da:5c:42:a0:56:a7:cb:55:8d:d1:
e7:85:3f:e3:04:39:14:19:ba:af:72:22:19:bd:4b:
26:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CC:00:F0:DF:40:55:FE:EF:2F:F8:BC:27:9F:3A:A8:7E:C5:6B:5A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ecwA8N9AVf7vL_i8J586qH7Fa1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.1.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:65:e9:8f:fc:c4:6e:b6:f8:58:11:88:56:18:f4:c2:cd:17:
9a:2a:c3:d2:fd:f0:db:68:8e:3d:ad:49:a0:1a:fe:2c:0c:36:
bf:96:02:e4:75:4e:41:e4:c5:e8:62:38:4b:b2:a0:9c:09:70:
76:43:ba:66:05:3b:8a:13:1b:23:7c:70:86:be:73:06:7f:7b:
2f:45:2a:e5:e4:8f:61:09:07:fb:f7:54:c1:b5:c0:85:6d:bc:
84:02:db:cb:cf:75:b6:8e:3a:7a:4e:c0:72:88:40:ec:8a:49:
9d:78:85:4a:aa:f2:46:f5:73:f9:15:58:f5:45:43:a2:24:03:
18:a9:e7:6c:2a:bb:bb:79:27:a3:7c:9c:7f:06:65:a8:6e:c9:
26:56:5e:c6:b6:11:fa:5f:8b:d0:b5:47:ed:37:b1:df:b7:be:
eb:b8:7f:e1:e5:e2:5c:a6:28:ad:e3:ea:77:da:9e:3a:1d:00:
db:25:b4:6c:87:27:12:12:de:2a:5f:1e:a9:98:d4:93:b2:b8:
de:53:8b:ac:7a:6e:a7:65:ec:a8:af:e4:93:3a:e4:0b:c2:88:
18:81:df:61:28:03:fb:85:e6:ea:02:07:2c:86:72:bf:4d:ce:
fa:7f:0c:48:00:22:db:f2:91:3c:00:f0:59:be:f8:75:6f:ca:
ae:71:bf:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRhVvTV7X7zvyd0Zuvdz4nMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjIxMTEwMTEzOTU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWNjMDBmMGRmNDA1NWZlZWYyZmY4YmMyNzlmM2FhODdlYzU2YjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/Mo9baUWXJGXTXXddF+Bxxt5YYU
O4RPFf2Mfg0T6vD0+zLRj6XTneBB/1BQvJI2QiABG1Io5HEoMYvucTtKS1MqCvmw
yFw5Cnw++4y96Iee5Ln3tXHvbYwUCkhC0gNBHQ4EzVhYkRTKg0/NbsGZEZoxuG6K
Lh1RvKp+W13hG9IC2+GYP+sWLO7ae1Zhvhb2YGuJpdDl2sY92wYNlQHk1dHHS51Y
4vXWYwBs+WccOddKQFBkF0YHdiwYl4qrKyc4DGqlV0Owy1+/oBgZcFO89TH07XVI
IxminL0wrPoyezxwVVO9f9pcQqBWp8tVjdHnhT/jBDkUGbqvciIZvUsmKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHnMAPDfQFX+7y/4vCefOqh+xWtaMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvZWN3QThOOUFWZjd2TF9pOEo1ODZxSDdGYTFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNgBMA0G
CSqGSIb3DQEBCwUAA4IBAQBaZemP/MRutvhYEYhWGPTCzReaKsPS/fDbaI49rUmg
Gv4sDDa/lgLkdU5B5MXoYjhLsqCcCXB2Q7pmBTuKExsjfHCGvnMGf3svRSrl5I9h
CQf791TBtcCFbbyEAtvLz3W2jjp6TsByiEDsikmdeIVKqvJG9XP5FVj1RUOiJAMY
qedsKru7eSejfJx/BmWobskmVl7GthH6X4vQtUftN7Hft77ruH/h5eJcpiit4+p3
2p46HQDbJbRshycSEt4qXx6pmNSTsrjeU4usem6nZeyor+STOuQLwogYgd9hKAP7
hebqAgcshnK/Tc76fwxIACLb8pE8APBZvvh1b8qucb+6
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org