Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xliqd2qelmCZkf5m5IuXlSBaUQM.roa
File: xliqd2qelmCZkf5m5IuXlSBaUQM.roa (raw, json)
Hash identifier: EipqmNo9J/79hH/TK2guc5GNGgjP66L3CVEK0FlPeYM=
Subject key identifier: C6:58:AA:77:6A:9E:96:60:99:91:FE:66:E4:8B:97:95:20:5A:51:03
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01852BC80166FAAE199A89073EA617D45B29
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xliqd2qelmCZkf5m5IuXlSBaUQM.roa
Signing time: Mon 19 Dec 2022 19:06:45 +0000
ROA not before: Mon 19 Dec 2022 19:06:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52041
IP address blocks: 88.216.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:c8:01:66:fa:ae:19:9a:89:07:3e:a6:17:d4:5b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 19 19:06:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c658aa776a9e96609991fe66e48b9795205a5103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:d2:ce:df:38:15:85:f8:30:25:40:ae:05:
18:ac:f1:33:9b:e9:da:23:a5:99:e5:ec:82:61:d2:
46:f5:fc:07:5c:d1:31:16:ec:e9:78:e1:85:20:db:
34:c8:93:3b:98:31:25:62:78:80:eb:a1:d1:66:9b:
e1:d3:6c:b0:22:8b:fb:aa:e3:a6:79:cb:ed:1a:96:
9b:65:86:70:77:8f:9d:04:ea:5a:19:54:41:ae:97:
5e:5b:07:c9:12:aa:25:77:1d:c0:e4:e6:10:f0:4c:
1d:60:9d:85:a4:4f:fc:56:d3:a7:3c:24:c1:9f:b3:
39:a9:d7:d1:ff:b2:34:55:68:5a:ee:8b:0e:de:5f:
3e:2e:0d:0e:08:60:57:7f:dc:7e:c2:30:67:39:9b:
36:c9:76:cd:5b:87:56:bf:ac:dc:64:1b:c8:c5:f3:
cc:02:ba:f6:8b:d6:30:9c:3f:9d:7c:3a:2d:ea:e1:
5e:a9:11:2e:d3:99:30:7a:68:b3:f2:d0:81:b3:f8:
26:7a:f0:c4:66:97:0b:7a:03:1a:b9:f1:11:f5:d5:
84:0e:0f:25:86:39:a5:f0:da:21:d5:1e:ef:c6:b8:
da:69:e0:61:28:f8:bd:80:5f:d1:ef:88:b0:9a:7a:
2f:a9:98:7e:07:84:90:49:7c:11:d8:7b:e0:d6:76:
88:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:58:AA:77:6A:9E:96:60:99:91:FE:66:E4:8B:97:95:20:5A:51:03
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xliqd2qelmCZkf5m5IuXlSBaUQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.184.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ed:6d:76:ec:ee:4f:7f:2f:87:57:88:f1:7c:76:1a:16:a8:
36:93:58:14:71:64:2d:77:46:dc:e9:e6:56:e8:ed:eb:6a:e0:
63:88:b4:48:36:92:0d:34:74:16:67:5e:8f:ee:14:21:fc:68:
24:4d:0b:f5:a6:5a:60:57:35:bd:57:ec:6f:0c:d9:95:a1:46:
44:e3:bf:53:76:a9:23:d5:60:1a:38:e3:32:bf:c1:dd:1e:bb:
fb:ec:7c:d0:45:df:90:ba:ee:8d:30:4b:10:42:2f:d9:2c:68:
9a:d8:d0:e8:28:c1:94:33:09:9b:18:81:7c:82:1a:b3:1c:fe:
06:e4:26:42:ca:ee:f6:9d:b7:b1:7a:ad:a8:59:69:8b:73:4d:
84:6d:18:b2:7c:9b:2b:3a:4f:56:05:a3:b5:08:35:1f:5e:71:
77:61:7e:d0:cc:86:bc:61:34:c4:b8:9c:9c:42:34:eb:4a:69:
f3:36:47:d9:1f:31:5e:3f:54:51:cd:22:1c:e9:ca:a4:29:d3:
15:6e:aa:23:34:91:56:1e:b1:f9:ce:cc:93:40:0c:5d:a6:75:
c8:5d:17:e6:85:ff:cd:ee:91:65:70:b7:b4:cb:ea:74:4e:f7:
04:43:6b:ea:0e:6f:01:10:ac:2f:74:ce:f3:67:f6:b0:b4:2d:
41:8c:73:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:34 2023 by rpki-client on console-ams.rpki-client.org