Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/snZhTUye-hJbIdkyR76cSP0YwEQ.roa
File: snZhTUye-hJbIdkyR76cSP0YwEQ.roa (raw, json)
Hash identifier: NTEOrG98EOb8mMdqfufok3gnHB5JDyvPvZrxvs65wxg=
Subject key identifier: B2:76:61:4D:4C:9E:FA:12:5B:21:D9:32:47:BE:9C:48:FD:18:C0:44
Certificate issuer: /CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Certificate serial: 0F6542A3
Authority key identifier: 7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/snZhTUye-hJbIdkyR76cSP0YwEQ.roa
Signing time: Sat 01 Jan 2022 09:02:11 +0000
ROA not before: Sat 01 Jan 2022 09:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44789
IP address blocks: 88.132.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258294435 (0xf6542a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2ba86df787888f6f8592a806a6ffea3046c07a
Validity
Not Before: Jan 1 09:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b276614d4c9efa125b21d93247be9c48fd18c044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9e:d7:69:7c:66:c1:bb:f3:6b:65:c6:9a:ea:
80:50:af:44:99:12:59:b1:86:ed:ae:ad:7d:8f:06:
15:b2:40:6c:17:00:73:b5:37:7c:55:62:c1:88:da:
f4:e6:01:12:14:83:0e:bd:82:cc:16:57:a8:67:f3:
a1:f3:de:5d:be:ed:01:f9:40:f5:3c:6b:05:bb:67:
aa:ed:af:bf:eb:1d:6d:74:a5:6f:6d:ae:67:d2:30:
ed:cf:0f:36:8c:2f:ea:78:f6:0e:93:49:bd:30:bb:
fe:4e:bc:76:0d:16:33:58:ec:40:56:31:13:ee:1b:
40:51:eb:62:c8:62:66:70:ca:94:1b:a6:4c:cf:bd:
cf:e0:84:5e:28:ed:1b:be:b0:d5:e5:50:02:d4:be:
b5:93:63:b6:94:5e:17:1c:4a:81:1b:fe:3e:e0:d0:
14:1e:ee:75:8c:dd:e5:75:76:61:18:8e:cc:80:4e:
bc:29:92:94:e6:a4:c2:ae:9f:75:18:6c:fc:44:45:
df:f6:54:3e:38:b8:c7:89:e0:ce:48:04:d3:a3:b5:
d5:e2:e3:a6:c6:eb:3c:0d:70:71:82:48:c0:7c:1c:
d0:04:9b:c3:01:7e:1b:d3:c8:7c:0c:c3:15:ad:80:
60:01:f2:1e:e6:85:1b:67:10:21:bc:6b:18:59:81:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:76:61:4D:4C:9E:FA:12:5B:21:D9:32:47:BE:9C:48:FD:18:C0:44
X509v3 Authority Key Identifier:
keyid:7F:2B:A8:6D:F7:87:88:8F:6F:85:92:A8:06:A6:FF:EA:30:46:C0:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyuobfeHiI9vhZKoBqb_6jBGwHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/snZhTUye-hJbIdkyR76cSP0YwEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e6786-6377-4224-ba06-dc4769eff1f5/1/fyuobfeHiI9vhZKoBqb_6jBGwHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.132.252.0/22
Signature Algorithm: sha256WithRSAEncryption
82:03:4c:71:d1:ce:12:a1:d8:c2:a5:2b:8b:76:7e:2b:2f:bf:
8f:fc:23:8b:c6:4e:3d:6f:0c:4c:87:a4:cc:b0:bb:99:c8:9e:
03:bb:58:a1:d4:34:f1:d3:f4:73:24:cb:d6:90:8e:82:c6:6f:
e7:b3:a5:07:97:b9:cb:54:4c:d6:9c:a5:7c:56:16:bd:0a:c6:
ac:56:5c:0e:39:5b:43:11:52:cb:52:6d:74:15:a8:ae:73:41:
af:27:99:0f:99:e8:96:94:b0:dd:2b:45:f7:a6:b9:2d:24:c3:
24:96:8d:3a:07:06:4a:63:d5:b3:86:59:f7:19:bd:03:ea:63:
3d:61:97:bb:a1:2a:6e:50:6a:86:52:9c:9c:71:a7:98:79:28:
01:8d:ab:6a:f2:1b:9e:53:a2:3e:53:d5:11:4c:8d:d3:83:42:
09:7a:81:fe:29:43:75:4e:5e:bd:99:dd:b0:33:69:8f:15:d4:
db:7d:eb:96:db:3d:8f:9c:da:77:8d:9a:17:8f:60:b5:7f:f9:
43:fb:d8:d9:9c:49:7a:b5:94:ce:b8:af:77:ac:ef:99:03:5b:
59:63:1e:4e:98:70:fe:ac:1e:82:20:f3:81:47:87:3a:d6:39:
e9:2b:6a:53:ee:a0:f5:71:92:0a:8e:ab:1a:e9:42:9a:5e:7c:
5c:99:b6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org