Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/ibuoynlwELcvX94U13FJreB2wDU.roa
File: ibuoynlwELcvX94U13FJreB2wDU.roa (raw, json)
Hash identifier: w5c/Oh4q08kUK8yX/QMpdSrpc1FBQ+t3vAZNnu26vj0=
Subject key identifier: 89:BB:A8:CA:79:70:10:B7:2F:5F:DE:14:D7:71:49:AD:E0:76:C0:35
Certificate issuer: /CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Certificate serial: 0F65F8ED
Authority key identifier: 7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/ibuoynlwELcvX94U13FJreB2wDU.roa
Signing time: Sat 01 Jan 2022 09:02:12 +0000
ROA not before: Sat 01 Jan 2022 09:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47159
IP address blocks: 88.132.216.0/21 maxlen: 21
88.132.244.0/22 maxlen: 22
88.132.248.0/22 maxlen: 22
88.132.208.0/22 maxlen: 22
88.132.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258341101 (0xf65f8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Validity
Not Before: Jan 1 09:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89bba8ca797010b72f5fde14d77149ade076c035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6f:63:5a:e0:17:e1:a1:5e:fe:8a:df:19:95:
a3:7f:06:64:d0:3a:9c:36:43:2b:70:9b:50:ed:c5:
87:8d:98:0e:22:6b:e1:dd:99:fe:1f:41:0b:5e:fb:
67:20:a6:50:49:b3:86:d4:83:f5:07:ef:f9:00:64:
3b:91:17:e4:21:1a:e3:f1:b7:c5:7b:f3:ee:37:82:
90:72:d7:9f:19:c2:2d:28:e6:c7:08:84:80:47:ed:
49:95:4f:89:0c:fd:dd:f5:c8:61:18:56:37:b8:5b:
c7:a8:b2:c3:db:56:7a:2e:1d:43:9a:7a:9a:d0:7b:
50:3f:05:f2:07:6c:0e:35:ea:78:f2:eb:d6:35:bf:
a3:51:e8:ce:eb:94:dd:53:93:dc:13:50:bd:fa:ae:
ad:82:97:ee:5e:b3:ba:ec:18:0d:d4:43:b4:12:68:
17:17:fe:70:3a:7f:27:74:12:18:95:88:97:0f:ab:
ed:98:dd:e2:6d:47:f2:97:29:72:1b:d7:20:c7:5a:
82:e1:0c:71:62:f1:52:f4:b8:31:b9:01:13:94:40:
4a:e9:74:6e:a3:72:c8:37:30:23:f6:88:ae:99:e3:
b5:85:20:d1:7b:18:de:15:ee:ce:6a:26:59:fb:92:
65:a3:2a:68:79:43:7a:30:c7:7b:c9:f3:4e:78:8b:
6b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BB:A8:CA:79:70:10:B7:2F:5F:DE:14:D7:71:49:AD:E0:76:C0:35
X509v3 Authority Key Identifier:
keyid:7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/ibuoynlwELcvX94U13FJreB2wDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/fyuobfeHiI9vhZKoBqb_6jBGwHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.132.208.0/20
88.132.244.0-88.132.251.255
Signature Algorithm: sha256WithRSAEncryption
57:84:58:41:42:0c:f6:87:0f:b5:d4:d3:b4:7b:a3:f9:81:d9:
89:d5:38:7b:1d:e9:04:48:a4:13:ce:65:c0:69:df:8d:39:19:
50:21:8f:a0:a1:a8:4f:55:65:b2:00:61:06:93:ff:aa:5c:55:
70:ed:6a:ed:78:f8:26:31:26:83:59:bd:55:09:dc:b2:d6:c5:
d7:93:45:e7:df:2f:bd:b0:70:a7:4d:0c:a3:fe:77:3d:54:ba:
74:52:26:6a:be:8a:c5:fa:e2:8b:6a:3c:8c:2c:13:97:2f:84:
3e:b1:d9:a2:9f:2b:92:f9:ed:9c:e2:b8:f6:c5:bd:6d:2e:14:
34:37:0a:05:23:9b:b5:32:91:ae:59:e0:7c:dd:88:ff:22:f0:
b7:4f:b0:28:30:22:bd:78:dd:6b:d1:19:3e:f7:ee:47:20:c4:
5a:92:56:b4:0a:ea:5c:5b:d6:3e:5d:04:04:14:3f:8c:db:ac:
33:83:9e:81:26:51:67:ae:66:d2:a1:d9:4c:ae:49:04:b9:fa:
9c:96:6a:d5:7c:72:53:40:cf:1a:f6:eb:6c:f2:28:b5:d7:10:
eb:ba:79:78:af:c7:e9:80:8a:57:8d:7b:75:f2:2d:64:b4:84:
a1:20:e4:de:19:65:74:bd:a4:29:77:04:b1:b2:49:fe:c3:3b:
51:74:69:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:18 2025 by rpki-client