Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/PiUrcOly6UqCuNcXKBo0EtfgJik.roa
File: PiUrcOly6UqCuNcXKBo0EtfgJik.roa (raw, json)
Hash identifier: 9MpvpnJ47pAHD1MshNukY7puYvoCy6SxYH3oknYjodQ=
Subject key identifier: 3E:25:2B:70:E9:72:E9:4A:82:B8:D7:17:28:1A:34:12:D7:E0:26:29
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 78F389
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/PiUrcOly6UqCuNcXKBo0EtfgJik.roa
Signing time: Mon 16 May 2022 14:20:29 +0000
ROA not before: Mon 16 May 2022 14:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 88.218.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7926665 (0x78f389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: May 16 14:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e252b70e972e94a82b8d717281a3412d7e02629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:8d:53:5b:67:50:ba:05:00:da:76:5e:41:
0d:63:24:3d:ce:62:18:9e:33:02:2b:5d:63:f4:f9:
01:5e:d9:12:04:20:fa:91:70:d5:1b:00:0b:43:ac:
35:48:5b:cb:39:78:2f:95:e4:f3:eb:c3:f7:9c:02:
ff:a0:b5:3d:01:8f:90:7e:e5:d6:f3:7c:e7:98:c5:
96:26:50:cf:aa:57:6f:1d:1b:a6:7b:39:24:7a:17:
b7:c9:f1:ce:3d:a8:2a:70:5a:c5:c8:55:05:40:10:
87:bc:79:94:d1:00:30:14:ee:4e:44:b7:b1:73:81:
e5:1b:74:eb:d5:29:8a:cc:37:a1:c1:fd:17:6e:d0:
7d:68:48:55:91:e7:10:93:90:6a:b7:bb:e1:29:88:
c8:cb:a9:52:28:6e:6e:fb:12:70:99:91:4e:14:ab:
22:81:ae:f7:d3:16:08:1c:6c:b1:42:5d:26:92:35:
d8:ea:c8:d0:a9:b2:84:9a:99:b2:f8:7a:52:d2:73:
c5:fe:39:ab:bc:66:b1:43:c2:51:b0:1a:e7:b5:f9:
7e:1a:e5:c1:fa:14:78:fe:90:f7:97:90:27:1f:cb:
bf:e8:65:d9:e5:dd:9a:0a:88:d4:a4:27:09:09:1f:
bc:97:65:4c:3e:02:e1:ab:66:8d:ac:39:b1:b3:6d:
ca:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:25:2B:70:E9:72:E9:4A:82:B8:D7:17:28:1A:34:12:D7:E0:26:29
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/PiUrcOly6UqCuNcXKBo0EtfgJik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.43.0/24
Signature Algorithm: sha256WithRSAEncryption
db:1d:42:25:56:2f:ac:82:7f:18:f9:83:c0:77:4d:0d:3f:70:
30:be:88:33:d7:19:6d:dd:44:15:bb:2d:1c:43:18:93:bf:74:
1a:8a:c8:13:66:1f:cb:55:23:47:e4:b9:3d:27:cc:e6:50:c2:
d2:ce:49:ba:79:e7:0a:f9:1a:34:d2:fd:2f:9e:e5:db:a4:49:
78:a2:55:2d:68:85:d6:9a:a1:6a:8a:97:5f:46:98:26:ae:8c:
53:91:fe:e3:14:ea:bd:92:cd:c7:f4:28:36:85:93:d9:92:3e:
b3:77:bb:9c:bb:59:07:dd:64:6a:dd:d9:8f:4c:34:92:51:da:
dd:a0:c3:46:e1:a3:59:26:ca:a0:c5:e2:fd:bc:9d:dd:8f:6e:
65:04:84:5d:a6:03:b8:e7:bb:fb:2d:93:e4:1d:4b:55:61:9c:
07:f3:67:3f:2a:ba:7f:7a:d3:2c:45:e0:e1:e0:05:dd:4a:86:
92:51:86:79:b4:1f:ae:d8:3f:03:38:99:6e:a3:5c:81:e4:fa:
85:b7:96:6f:1a:49:0d:cc:a4:0d:bd:ee:16:73:f6:26:50:69:
ca:49:11:4b:7a:7d:79:a0:0d:e7:a0:5a:86:77:86:57:11:9d:
15:fc:3a:34:7c:c6:22:76:7b:8a:d5:04:83:87:fa:51:89:4a:
d4:c9:96:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org