Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y9jxYZNV5UjUH_1PM_Jz3iHX5iU.roa
File: y9jxYZNV5UjUH_1PM_Jz3iHX5iU.roa (raw, json)
Hash identifier: dYas09xjcTagtukf/gUrCIAzd9kYV/icutHaSYNVUfs=
Subject key identifier: CB:D8:F1:61:93:55:E5:48:D4:1F:FD:4F:33:F2:73:DE:21:D7:E6:25
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01824BA1AE0EFA3BC84194FB180017EE1839
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y9jxYZNV5UjUH_1PM_Jz3iHX5iU.roa
Signing time: Fri 29 Jul 2022 20:24:23 +0000
ROA not before: Fri 29 Jul 2022 20:24:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3498
IP address blocks: 88.216.129.0/24 maxlen: 24
88.216.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4b:a1:ae:0e:fa:3b:c8:41:94:fb:18:00:17:ee:18:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 29 20:24:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbd8f1619355e548d41ffd4f33f273de21d7e625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:65:f7:ca:d2:4d:73:a3:dd:ff:2c:af:fb:9e:
d2:3d:54:90:28:86:23:ed:28:54:74:e9:b9:ae:6e:
1c:29:7c:2b:61:24:21:7b:03:ec:61:7a:38:a4:11:
5f:7a:36:46:0e:b6:b9:56:a8:ed:db:b2:6e:80:e2:
df:59:79:4f:28:56:b2:91:85:24:06:e1:98:d3:b0:
fa:3f:82:2b:1e:4c:8c:4b:9e:80:23:ae:33:50:be:
72:df:e3:e1:50:d6:4d:df:7a:73:13:7a:6a:9a:74:
1e:95:99:97:66:ea:c7:c3:de:20:05:d5:04:47:82:
b7:74:e3:c7:0b:c4:38:c8:82:cd:f3:2b:f4:b0:95:
ae:d5:41:ca:e3:ad:b1:45:24:27:41:31:d3:f5:f5:
f1:43:60:07:50:4a:b7:7f:a6:95:2d:bc:67:65:fe:
d3:7b:7b:b3:aa:8a:76:44:b9:4c:ca:f6:4e:15:15:
c6:90:bc:57:93:5d:f8:b0:9e:14:82:71:4c:7b:f1:
8c:9d:60:7e:9a:bb:9c:ab:74:7d:5d:81:aa:ee:cf:
df:6e:6e:f4:00:7a:b2:c6:2c:5f:b2:5a:3c:0a:d0:
ff:20:99:98:53:15:b8:9e:0b:6e:ed:5f:e3:78:7d:
a7:d0:21:94:6d:fe:06:c8:0c:74:cc:95:a0:e8:8a:
9c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D8:F1:61:93:55:E5:48:D4:1F:FD:4F:33:F2:73:DE:21:D7:E6:25
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y9jxYZNV5UjUH_1PM_Jz3iHX5iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.129.0-88.216.130.255
Signature Algorithm: sha256WithRSAEncryption
6a:82:6f:fd:f9:35:67:cf:a3:08:20:b9:6f:c0:c5:3e:69:03:
e0:95:7f:21:20:92:43:03:7a:93:67:f6:90:8e:17:30:82:46:
7f:ce:25:99:b5:ef:0a:f6:29:f4:5d:5e:4a:ec:76:94:c0:af:
1d:06:43:7b:f7:5f:06:9e:8d:91:3e:9d:7b:c2:d3:33:ab:ec:
02:6f:98:8f:af:5b:4b:e6:e5:30:9d:bc:07:4b:db:a8:73:94:
5e:4d:d8:28:28:d4:7e:06:00:29:0e:c1:b0:e6:8a:29:53:9c:
6e:63:96:06:3d:de:39:48:6c:4b:ea:4e:a3:84:4c:10:89:f6:
2a:3b:31:0e:30:a4:40:e2:c5:d7:db:13:aa:8a:67:23:a5:15:
e4:9b:53:4b:d9:f2:51:e7:be:36:47:83:a7:b3:7e:ea:b7:6f:
5e:cf:a3:f8:6c:a9:ee:db:7c:a0:ff:6f:28:d2:b4:b0:f9:5e:
95:8f:2f:77:19:19:c8:da:61:44:87:fb:cb:00:d0:88:52:66:
1b:b3:47:4b:28:b2:f9:6a:8a:f7:7e:93:23:3a:9e:1f:a8:c5:
bd:82:ae:89:6c:ba:10:b2:39:ac:5b:07:a0:c4:58:f6:7e:b4:
67:74:5b:87:e5:27:06:80:7d:3e:13:88:6f:d6:46:2b:26:19:
2f:67:02:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org