Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iux4vonI68-B5y6jLgfyOs6nSf8.roa
File: iux4vonI68-B5y6jLgfyOs6nSf8.roa (raw, json)
Hash identifier: tcQg8tgkRLk9G3/wnf5ogqNBdX1XCQACr/oagcnm4KQ=
Subject key identifier: 8A:EC:78:BE:89:C8:EB:CF:81:E7:2E:A3:2E:07:F2:3A:CE:A7:49:FF
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 2F4B66
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iux4vonI68-B5y6jLgfyOs6nSf8.roa
Signing time: Fri 04 Mar 2022 11:31:36 +0000
ROA not before: Fri 04 Mar 2022 11:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 88.216.96.0/21 maxlen: 24
88.216.232.0/21 maxlen: 24
88.216.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3099494 (0x2f4b66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 4 11:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aec78be89c8ebcf81e72ea32e07f23acea749ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c2:47:5e:d3:df:5f:78:27:af:c7:0d:af:55:
75:2a:48:1c:17:98:22:66:db:8b:ff:ea:07:63:46:
88:7b:0c:ee:67:b7:4e:84:6a:76:6f:20:a3:00:0b:
3e:48:df:8a:8d:1a:e5:4d:d2:5c:b3:e5:b6:26:30:
f7:65:63:31:90:02:9d:3e:3d:98:7d:d1:c4:c0:fe:
9c:03:42:de:36:8f:c0:d1:99:53:70:98:db:29:77:
ca:b8:52:3c:de:17:88:86:e4:45:7a:0e:c5:c0:11:
e3:ad:c9:18:c6:28:91:17:58:c5:85:3a:99:2f:ac:
2f:85:9e:8a:1c:78:ba:2d:96:95:30:6c:78:4c:d1:
bf:df:ff:37:a8:d0:dc:da:49:27:7f:a6:68:ce:b4:
46:58:4c:c5:ea:88:25:f3:07:44:9d:8a:48:0b:9e:
65:c1:53:6a:d1:34:9a:df:f7:42:f1:6e:d2:5c:26:
6f:49:df:59:9e:8d:cc:0c:08:b2:0d:35:ac:f9:7f:
94:64:de:ad:94:00:25:87:30:9f:15:fe:69:20:d4:
4a:c8:ba:50:44:f1:79:c0:f0:61:e7:fe:c0:4f:0d:
88:67:d6:3d:99:7b:9e:dc:d5:f3:96:5f:57:c2:2e:
8a:ad:56:d5:6c:01:00:4d:61:cc:bd:85:b4:85:54:
31:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EC:78:BE:89:C8:EB:CF:81:E7:2E:A3:2E:07:F2:3A:CE:A7:49:FF
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iux4vonI68-B5y6jLgfyOs6nSf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.96.0/21
88.216.128.0/21
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:33:47:e4:29:b1:95:76:37:5d:61:6f:d9:e7:0d:19:77:e2:
db:28:ef:d5:68:77:4f:0c:17:33:9f:77:f3:e9:d6:53:b3:d3:
a2:25:e8:70:f0:f6:c2:ee:a9:86:38:fd:5a:37:37:50:26:14:
6a:87:bf:dc:64:0d:c9:c9:65:05:78:d3:ab:01:74:d4:dd:6c:
9c:f6:ab:6b:44:e2:cb:e5:15:a0:57:2d:c6:4b:48:e4:23:83:
22:75:78:43:c3:86:23:ed:fe:9f:96:bf:27:29:50:d3:c4:e7:
b4:17:a6:d3:da:bc:49:86:00:c8:fd:56:47:47:e4:90:d2:e0:
36:c6:9f:79:a0:e9:d3:72:6f:d6:87:bf:9c:4b:99:45:53:44:
30:b1:af:a5:66:a5:65:1e:f7:56:9a:9f:38:48:a3:0d:5a:b1:
15:4c:a7:ad:64:4e:5b:bc:ba:c2:79:79:06:ce:c1:e2:88:fe:
ea:4b:bd:16:b0:b9:60:a9:bb:80:6f:45:5b:d5:07:1a:09:5b:
f9:e1:3a:c0:49:77:64:c7:57:c3:f6:af:f3:3d:01:4a:07:1c:
d1:3d:32:6d:53:11:a4:3e:62:bd:3c:d2:08:51:93:69:2d:32:
c2:df:9b:f3:02:f1:e1:03:6c:5c:63:ee:64:dc:cd:ac:38:3d:
28:48:40:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org