Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mv4CbkPCufC4qixGcQuaIoPNERI.roa
File: mv4CbkPCufC4qixGcQuaIoPNERI.roa (raw, json)
Hash identifier: R73jVNKZNojgBYD/ddRhJZAeJxy1lbP9ZkFoBpWuxAY=
Subject key identifier: 9A:FE:02:6E:43:C2:B9:F0:B8:AA:2C:46:71:0B:9A:22:83:CD:11:12
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184D1982B439F5CD7732D4E7324961CF091
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mv4CbkPCufC4qixGcQuaIoPNERI.roa
Signing time: Fri 02 Dec 2022 06:48:41 +0000
ROA not before: Fri 02 Dec 2022 06:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 88.216.186.0/23 maxlen: 24
88.216.184.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:98:2b:43:9f:5c:d7:73:2d:4e:73:24:96:1c:f0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 2 06:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9afe026e43c2b9f0b8aa2c46710b9a2283cd1112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d3:5c:a1:a9:62:7f:fe:9f:96:52:96:13:81:
02:15:e7:9f:fc:a2:57:fa:86:92:76:c8:1d:e3:0e:
1d:08:1a:bf:8d:ae:5c:9a:7e:42:15:24:1a:a7:81:
5b:14:df:2c:cd:90:50:64:b5:21:c9:60:e4:b3:c9:
6f:d3:8c:21:51:09:5f:fc:77:41:c6:29:58:01:cf:
41:b0:f9:23:ff:05:95:7d:96:84:cd:ba:6b:e1:7a:
5d:a3:b3:26:11:99:23:49:2a:4f:50:32:a5:4a:7e:
d6:1b:f0:32:fc:7a:93:8a:83:73:55:8f:a7:ea:fb:
03:59:d2:0e:8b:fa:40:03:83:b1:d0:96:50:c9:8e:
41:70:a1:a6:6b:1f:43:7c:8f:4a:a6:53:3d:5b:46:
e2:d3:a5:60:26:8b:1f:cd:6e:c4:a1:f6:50:e5:a1:
ad:cc:7f:ba:30:04:0e:a1:88:57:b4:b8:d4:9a:1c:
ad:b5:61:9b:70:aa:9b:65:2b:c8:1f:c2:3a:19:fe:
ea:15:2b:fe:74:31:67:02:f2:92:9c:bc:46:1f:31:
50:91:c5:01:9d:cb:9f:82:49:39:a2:76:a4:86:ec:
39:31:4f:bc:57:b8:28:e2:95:8f:50:b1:12:36:10:
5e:aa:74:af:cd:c2:25:d2:e7:1d:7b:25:41:80:30:
d5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FE:02:6E:43:C2:B9:F0:B8:AA:2C:46:71:0B:9A:22:83:CD:11:12
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mv4CbkPCufC4qixGcQuaIoPNERI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.184.0/22
Signature Algorithm: sha256WithRSAEncryption
76:60:62:bb:7b:e3:b3:4b:d8:d1:0b:e6:82:08:ad:40:c2:be:
68:74:66:80:79:d7:57:c9:45:af:30:ff:40:90:8c:f6:38:80:
77:69:53:d3:7d:47:68:1d:82:75:4b:10:e3:07:a9:df:9c:36:
bf:a7:3e:19:83:ac:bd:c3:7d:ec:08:c6:07:6f:b8:15:91:60:
98:04:27:94:49:f9:49:4f:c5:1c:8a:51:e3:c7:8e:c9:93:b6:
d7:a1:15:2d:8b:09:55:fc:d1:3b:8d:7a:ca:1b:19:a8:07:84:
4f:7c:69:e3:fe:2c:c7:75:d2:2c:67:cd:07:5a:84:a0:08:e3:
ad:5b:b1:cc:4a:68:77:51:14:33:eb:0b:10:07:dc:1f:d0:2c:
eb:2e:01:a1:b3:50:0b:32:6f:90:13:ec:f6:f7:2b:0a:09:6d:
9f:93:4e:58:4e:e3:a0:f2:8d:4b:a8:9b:28:45:74:02:b1:97:
33:3a:e8:c9:ee:28:45:6d:23:94:ac:e2:b3:d1:0d:94:fa:25:
32:bb:78:c6:03:1f:a1:ad:2c:69:91:7e:0e:ed:9c:c6:6c:44:
0b:33:69:58:d8:f6:22:4e:dc:da:49:ab:32:33:78:f9:a5:fa:
d4:a0:29:65:9f:13:7b:b9:e4:19:f0:ea:c0:f7:6c:c6:7f:82:
41:f9:d6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:33 2023 by rpki-client on console-ams.rpki-client.org