Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oqgpwNWpf4B2kaTdO3DKYJejU0g.roa
File: oqgpwNWpf4B2kaTdO3DKYJejU0g.roa (raw, json)
Hash identifier: Fpm/KfHwH8Qo5GDtcHYmLk6EpUqElrWAz4a9+b1pMKk=
Subject key identifier: A2:A8:29:C0:D5:A9:7F:80:76:91:A4:DD:3B:70:CA:60:97:A3:53:48
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184241FBF795CD05E281F95EA0276398B26
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oqgpwNWpf4B2kaTdO3DKYJejU0g.roa
Signing time: Sat 29 Oct 2022 14:22:51 +0000
ROA not before: Sat 29 Oct 2022 14:22:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 88.216.208.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:24:1f:bf:79:5c:d0:5e:28:1f:95:ea:02:76:39:8b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 29 14:22:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2a829c0d5a97f807691a4dd3b70ca6097a35348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:27:32:49:a0:de:39:da:a5:7e:92:52:1b:c5:
19:4a:fb:7a:ab:9e:41:38:96:9a:37:64:b8:b1:ec:
4b:f2:96:cc:14:33:48:85:e2:16:83:b9:40:af:3c:
f5:31:43:4c:16:ca:f7:b8:a3:fd:ce:0b:1b:24:59:
d8:dd:0e:8a:db:ea:5d:49:24:c2:70:52:e4:d1:13:
b8:db:0d:60:52:a2:9e:d6:f0:cf:60:91:4a:c1:ca:
d0:67:1f:b2:2b:40:f4:df:52:aa:41:10:af:ae:56:
e1:e6:87:fb:8b:9c:79:66:ac:e2:d8:7b:b6:80:c7:
c9:78:5e:e7:ce:33:72:5d:c9:c0:58:ab:10:e1:9f:
ba:a6:76:a2:53:66:19:94:40:05:30:f2:e4:1a:fd:
a0:71:91:28:b3:01:d4:c0:fe:2d:aa:53:98:2c:63:
b2:38:6a:64:b3:13:d5:2b:bd:0f:5a:1c:ab:12:a0:
f6:fa:ac:c1:e2:05:d3:5d:dc:b2:bf:7d:36:8b:f9:
f2:b6:d1:f7:a1:34:81:dc:99:fc:64:18:3d:e7:47:
a3:16:4e:ae:48:6c:5b:78:01:2b:78:33:d4:2b:f1:
20:39:53:0e:18:f4:05:ce:d9:1d:3e:6d:f8:3f:1f:
47:5e:1a:c7:2f:3f:a8:9b:06:4c:84:91:dc:7b:5d:
8b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A8:29:C0:D5:A9:7F:80:76:91:A4:DD:3B:70:CA:60:97:A3:53:48
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oqgpwNWpf4B2kaTdO3DKYJejU0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.20.0/22
88.216.208.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:3f:10:16:8f:2a:52:6e:02:33:d9:d5:81:d3:77:f4:b5:2f:
8f:1d:e2:e8:b1:6c:e5:8c:1a:e6:a7:52:97:e9:c2:09:1e:11:
92:e6:17:31:9c:9c:fb:f2:26:18:9d:ac:ab:e0:f9:a9:38:17:
c5:42:9f:04:d5:61:94:61:71:1d:08:d6:51:f2:a1:4d:36:af:
b5:8f:30:22:6d:71:00:53:95:3b:04:41:1c:a2:3a:04:ce:c1:
81:bd:21:a6:76:f2:62:86:b3:82:68:e6:f8:95:39:7e:02:48:
9a:5d:1c:72:ee:fb:4b:6d:ee:4b:8d:59:9c:f0:2c:1f:4f:a9:
a3:24:25:50:e7:94:c8:de:7a:b2:4f:96:dc:d4:85:f4:b6:7f:
0b:23:fe:bb:f4:d0:04:5e:7b:d4:e8:15:12:21:6d:b4:9a:4b:
b9:dd:c3:ec:d3:46:57:21:b3:e5:0a:a3:64:0b:e0:4b:2e:5b:
78:41:58:8b:c1:2b:92:40:09:d8:75:af:3b:bc:2d:aa:1b:34:
ad:79:d9:b1:46:4c:af:54:c3:f8:8e:ef:e7:2b:42:29:44:a2:
cf:6b:af:45:4e:f5:cd:ad:b8:26:58:ed:34:6e:06:83:5a:78:
53:1e:79:26:27:0e:58:b7:af:34:74:6e:4c:22:cd:a6:f7:4e:
0a:ee:20:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org