Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6e4b78-ab94-449c-a4d5-abdb63ace7e7/1/ct1o914ONx3zQ_jlJu7fk10XOzs.roa
File: ct1o914ONx3zQ_jlJu7fk10XOzs.roa (raw, json)
Hash identifier: MQuQyAq+gC3TI8rOXSt5l6qbrHry6aZxrQpO8pCC4DI=
Subject key identifier: 72:DD:68:F7:5E:0E:37:1D:F3:43:F8:E5:26:EE:DF:93:5D:17:3B:3B
Certificate issuer: /CN=0d889fadae7bf21072fadb32e1ea763b0c29948e
Certificate serial: 015967
Authority key identifier: 0D:88:9F:AD:AE:7B:F2:10:72:FA:DB:32:E1:EA:76:3B:0C:29:94:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYifra578hBy-tsy4ep2OwwplI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6e4b78-ab94-449c-a4d5-abdb63ace7e7/1/ct1o914ONx3zQ_jlJu7fk10XOzs.roa
Signing time: Tue 26 Apr 2022 06:46:16 +0000
ROA not before: Tue 26 Apr 2022 06:46:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50939
IP address blocks: 195.88.81.0/24 maxlen: 24
195.88.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88423 (0x15967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d889fadae7bf21072fadb32e1ea763b0c29948e
Validity
Not Before: Apr 26 06:46:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72dd68f75e0e371df343f8e526eedf935d173b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:e2:dd:cd:29:58:2c:cf:08:86:66:7d:18:
9c:1f:8d:1b:7c:c5:9d:c8:a3:b7:14:81:84:03:77:
14:20:ec:bc:ac:dd:99:b9:03:2f:22:c7:db:a2:2a:
fc:03:2b:8b:59:c1:d1:36:4a:32:ea:40:45:2b:2b:
6b:53:00:11:01:f2:b7:e4:7b:dd:ec:3b:2b:8d:42:
0c:22:89:32:a1:bb:ee:81:67:d2:cf:8c:20:91:cb:
64:8e:a1:e7:ce:53:4f:99:ef:6b:18:0d:62:39:eb:
f3:7a:fe:03:c5:48:c9:38:99:3c:33:e8:24:ba:0f:
7d:27:6f:f6:d3:10:32:87:6b:0e:4e:2c:a5:ac:8a:
fc:13:04:a0:2a:40:aa:09:cb:b2:ea:5d:6e:22:5f:
e9:2d:33:e7:1c:a9:32:25:19:0a:fd:f4:5f:6f:54:
dc:67:b3:27:4b:16:ab:5a:f0:07:f6:8a:f3:c7:64:
7e:7d:06:ba:af:7c:e6:3f:04:f1:ac:b8:79:a9:d3:
ba:dc:43:8a:b2:d0:c9:cf:21:01:d7:45:9b:78:89:
cb:46:36:54:b3:b5:6e:97:2b:63:47:2a:cd:c1:44:
a1:c5:b2:52:2a:25:9d:b5:00:a8:9c:a1:7c:94:6b:
3f:95:49:69:98:10:5d:50:ae:52:81:6c:a4:7d:be:
5e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DD:68:F7:5E:0E:37:1D:F3:43:F8:E5:26:EE:DF:93:5D:17:3B:3B
X509v3 Authority Key Identifier:
keyid:0D:88:9F:AD:AE:7B:F2:10:72:FA:DB:32:E1:EA:76:3B:0C:29:94:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYifra578hBy-tsy4ep2OwwplI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6e4b78-ab94-449c-a4d5-abdb63ace7e7/1/ct1o914ONx3zQ_jlJu7fk10XOzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6e4b78-ab94-449c-a4d5-abdb63ace7e7/1/DYifra578hBy-tsy4ep2OwwplI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.80.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:0c:82:72:a5:91:87:25:b8:db:08:1b:be:83:2d:b1:a9:7f:
a0:16:33:92:20:2c:09:28:16:17:5b:b4:3d:da:6d:0a:cf:f7:
19:93:40:99:ab:5f:6d:f6:0e:ec:e3:9e:13:84:fa:c6:ce:eb:
a0:dc:93:c4:51:69:3e:20:00:f8:6e:bd:79:e2:22:3a:9e:d3:
38:7b:7b:bb:cd:99:f5:b3:bf:3f:52:33:78:a4:a5:ea:61:86:
c0:18:e0:98:ce:26:4a:27:9e:62:d6:0b:56:a5:dc:19:22:21:
bc:9b:ce:ea:6e:c9:f1:1e:77:3b:8c:f5:b7:5b:09:83:21:d0:
14:69:0d:99:58:06:48:80:45:9f:3e:dc:61:3d:00:a9:67:ae:
28:3a:90:9e:74:b5:0b:dd:00:c6:8a:e6:fa:a6:cc:b5:57:0f:
09:90:34:60:4f:17:ce:6f:59:28:d9:2b:e2:db:b1:e3:e4:10:
ad:ea:b1:4b:4b:cc:88:21:41:b7:94:91:94:19:4b:6e:5c:6f:
74:7f:da:f0:f9:56:60:5a:75:aa:3f:84:f3:d1:58:f8:13:e3:
6d:90:cf:96:e0:c5:3e:4b:60:0c:f7:4e:4d:46:56:09:00:07:
6b:20:0c:84:a7:c0:53:f0:99:f8:63:74:db:32:4e:99:07:16:
69:c5:02:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:25 2023 by rpki-client on console-ams.rpki-client.org