Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/m86qHRBpXt5_wz5Yl--q-7Ju7Qg.roa
File: m86qHRBpXt5_wz5Yl--q-7Ju7Qg.roa (raw, json)
Hash identifier: 8j9nkaOOeyMPZer36O3oEesgtS+DdwK7oDzOZBZjjBw=
Subject key identifier: 9B:CE:AA:1D:10:69:5E:DE:7F:C3:3E:58:97:EF:AA:FB:B2:6E:ED:08
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 8D8C2C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/m86qHRBpXt5_wz5Yl--q-7Ju7Qg.roa
Signing time: Tue 05 Apr 2022 18:57:22 +0000
ROA not before: Tue 05 Apr 2022 18:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 88.216.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9276460 (0x8d8c2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 5 18:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bceaa1d10695ede7fc33e5897efaafbb26eed08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7b:be:22:75:19:9b:6c:af:74:54:01:a4:00:
9f:13:0f:6e:18:2a:82:91:92:b6:db:ea:4c:82:dc:
d4:ef:41:a1:47:da:33:d3:44:db:b8:b5:a1:fa:b4:
65:1b:6d:dc:ac:ed:90:9a:47:90:37:16:c3:0d:aa:
41:d6:bd:b4:58:3a:b0:1f:fe:0c:81:f3:f4:87:55:
c7:55:e4:b1:91:4d:8e:d2:7e:1c:87:7d:ac:b9:93:
9b:67:87:4c:65:ff:c1:e1:48:08:1c:f2:5f:79:0e:
8c:22:28:69:fd:91:d6:6f:4a:f3:d9:98:e7:97:5d:
c3:ae:fe:1c:9f:73:56:bc:69:02:dd:da:a4:0b:73:
a6:10:9d:7f:2c:ef:73:f9:cd:13:e4:56:cb:7f:d8:
0f:34:8b:fe:41:79:2f:c6:c3:f1:3d:1b:fd:49:66:
15:24:9e:00:b1:78:d5:06:94:33:de:6f:43:f9:94:
3c:68:00:09:e1:31:13:29:ec:ee:a4:8c:5c:f3:65:
1f:4f:2f:6b:75:ab:d0:52:f4:d8:51:70:53:f8:5b:
e9:f3:af:01:79:a4:ca:34:3a:07:e8:0c:00:df:a6:
3b:f3:fd:73:9e:3e:37:86:51:bb:62:57:e2:9c:e7:
87:ec:74:88:4d:d9:e3:a2:bb:14:d3:6e:4d:2f:21:
40:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CE:AA:1D:10:69:5E:DE:7F:C3:3E:58:97:EF:AA:FB:B2:6E:ED:08
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/m86qHRBpXt5_wz5Yl--q-7Ju7Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.184.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:9a:0d:e3:31:d6:83:c8:b7:9e:d2:10:8c:bc:63:db:f6:55:
a3:10:d5:7a:48:04:c3:8e:b9:3a:4a:53:a4:15:50:19:f5:da:
8f:13:b8:bc:30:32:ea:b9:f4:cd:4e:09:dc:fc:13:c0:07:b9:
ad:3e:2a:23:d8:82:30:d4:ac:06:45:e7:f4:ae:89:94:35:0d:
73:b0:46:2d:5e:79:0a:51:52:c8:10:a7:41:cc:fa:87:bf:3e:
d6:2d:43:c6:7e:82:fe:c4:6d:68:67:2f:de:9e:74:a4:ae:c7:
9c:45:ce:38:67:c2:f5:7f:60:d9:0d:44:82:76:40:29:f3:bd:
30:8b:da:5d:a5:55:8c:2d:c4:4f:86:8e:00:eb:68:27:3c:65:
f3:3e:c0:f7:84:3f:27:ac:ac:22:9f:36:90:a7:5c:bd:02:f4:
e7:e2:6b:c2:f8:ac:ce:a2:7b:b8:53:3f:be:15:6f:19:af:b7:
0f:08:32:70:a0:dd:87:ff:05:e3:ec:a5:9a:06:46:06:f2:17:
49:2d:3f:34:6c:5e:5a:2a:ae:37:16:f0:63:6d:92:fd:cd:eb:
8e:32:52:8c:8b:1f:2b:73:a0:f9:94:32:bc:5e:fe:8d:32:98:
80:e2:09:57:44:61:9d:64:3f:37:83:b5:11:58:92:f2:d6:9f:
0c:3c:7d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:32 2023 by rpki-client on console-ams.rpki-client.org