Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Ru83U0IYAKubd4oW_AFMsm6GwrI.roa
File: Ru83U0IYAKubd4oW_AFMsm6GwrI.roa (raw, json)
Hash identifier: var56WKbimUZaV7uxJAjkIWDgLdzdbXb9rMbQ9Xq+5E=
Subject key identifier: 46:EF:37:53:42:18:00:AB:9B:77:8A:16:FC:01:4C:B2:6E:86:C2:B2
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: BC9D5B
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Ru83U0IYAKubd4oW_AFMsm6GwrI.roa
Signing time: Fri 17 Jun 2022 14:21:44 +0000
ROA not before: Fri 17 Jun 2022 14:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12361051 (0xbc9d5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jun 17 14:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46ef3753421800ab9b778a16fc014cb26e86c2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e2:0b:52:4c:b8:b5:b8:23:11:1b:85:13:3d:
46:fb:da:08:16:9d:fe:b6:46:81:69:5b:fe:8b:b8:
02:32:82:b4:13:07:67:9f:1c:21:4d:3a:80:ce:13:
03:3e:cb:95:75:7d:8a:80:57:47:fe:da:bd:8c:6b:
69:fa:99:86:f7:0e:a1:42:4e:1b:3d:d9:dd:37:31:
11:e5:0b:69:0d:e5:99:4c:f5:ab:2c:e9:1a:6b:70:
cf:2b:06:27:09:de:65:0a:d4:8e:dd:67:7d:9d:75:
12:9f:28:5d:d3:fa:49:2f:6e:b8:6c:63:3a:30:34:
6a:6c:67:d7:ae:a8:27:16:14:0b:75:2e:82:c3:9e:
db:ca:4c:fe:90:07:11:cf:13:35:1a:ce:d5:26:6f:
b2:d4:fa:7a:d7:28:75:de:67:85:29:4a:55:c3:29:
bb:3b:a9:02:59:31:04:4a:1c:24:fb:9d:28:db:62:
c4:f4:04:b7:aa:34:c7:85:bf:c4:b1:77:44:3f:37:
69:7e:23:9f:1d:25:be:7c:2b:d5:5d:34:df:14:07:
aa:6a:3c:bb:ae:a2:1f:d7:59:f4:84:0a:f1:8d:17:
31:b2:79:72:b6:49:de:04:0e:05:a9:d3:19:cc:7a:
d2:cb:ae:51:f9:4e:72:f1:85:47:ed:a4:4f:02:26:
ef:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EF:37:53:42:18:00:AB:9B:77:8A:16:FC:01:4C:B2:6E:86:C2:B2
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Ru83U0IYAKubd4oW_AFMsm6GwrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:0c:46:df:50:84:6b:25:de:89:b7:4d:d8:c4:f9:b5:87:52:
73:f3:f6:36:31:03:02:3e:94:fa:fe:54:99:ed:0d:65:67:a7:
f4:ac:d3:ae:b6:19:ad:60:5c:95:96:fd:15:cf:0c:58:1c:ec:
bf:fe:00:d7:2f:c8:37:55:cd:28:7f:e9:99:92:d2:15:bf:0f:
7a:0f:d3:4a:9f:0a:12:18:d0:cc:73:c6:5f:60:38:fd:51:dc:
6e:02:7b:b6:ba:97:6f:9a:81:97:6e:f6:53:59:fd:7b:ba:7f:
65:80:8d:46:a7:6b:0f:f6:b8:c9:c5:ae:29:96:60:33:9c:d0:
ae:67:12:91:10:81:26:1f:f7:a3:15:30:c8:d2:d0:54:ad:71:
d6:9b:9f:c1:ff:ce:5e:88:07:37:38:3c:7f:32:fe:5e:0c:f4:
d0:83:9d:2f:ea:14:03:3d:3b:b1:ba:a4:e6:84:7c:ee:97:3a:
26:f7:3a:8a:19:18:e9:f9:dd:43:d5:d0:b1:93:2b:8a:92:c0:
06:3a:b4:14:f0:50:01:79:06:43:ca:f7:fd:f7:11:ef:be:bb:
c0:39:eb:a1:c1:00:b2:dd:56:c3:55:76:55:2f:e9:39:85:a7:
a4:fe:33:28:37:22:02:23:ef:a0:6b:22:32:79:99:a3:1d:cb:
4e:45:10:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org