Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/FmSF5KtBGJvBF37IKLLrXCIKxzo.roa
File: FmSF5KtBGJvBF37IKLLrXCIKxzo.roa (raw, json)
Hash identifier: ZZeiRfw7OkZrlFtW2B074eSKduyMU6S6A7bJInK8SK0=
Subject key identifier: 16:64:85:E4:AB:41:18:9B:C1:17:7E:C8:28:B2:EB:5C:22:0A:C7:3A
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 388A8672
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/FmSF5KtBGJvBF37IKLLrXCIKxzo.roa
Signing time: Sat 01 Jan 2022 01:51:50 +0000
ROA not before: Sat 01 Jan 2022 01:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211106
IP address blocks: 85.88.58.0/24 maxlen: 24
85.88.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948602482 (0x388a8672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Jan 1 01:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=166485e4ab41189bc1177ec828b2eb5c220ac73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:21:4d:f6:f3:c0:cc:11:1b:2e:fc:69:4f:64:
7c:ef:ad:78:35:00:7a:db:3d:69:90:57:f0:d9:6c:
8c:a3:f9:e1:76:4d:e7:05:78:aa:e9:9e:ad:09:24:
f0:87:da:1e:db:e5:df:f4:a3:b7:c7:e2:5d:bc:0a:
35:7a:0a:44:50:54:10:33:c2:6e:d1:36:4a:ac:5f:
b8:e4:f4:e8:ae:b4:87:c2:3a:17:01:c9:fc:e4:ca:
89:b9:6c:61:3b:b5:85:51:3f:5e:c3:65:9e:24:4b:
23:74:0f:3d:b5:ef:0e:45:5a:65:b5:f4:28:8f:89:
f3:ea:9f:1c:d5:e5:63:99:9e:2b:c2:7c:70:aa:e0:
18:38:c0:9d:a4:19:1c:75:7a:6a:cf:eb:98:3a:af:
94:9b:ed:af:a3:70:bc:57:84:d4:2d:c9:fc:95:ef:
9f:de:f1:7d:f3:20:84:39:84:cd:01:37:38:83:1a:
25:93:74:d3:c1:5e:6e:5f:f3:3f:a0:62:e9:71:0e:
0e:aa:27:82:6a:bc:e2:0c:1b:8e:a5:5e:b6:08:11:
18:b9:13:78:ac:25:7c:14:c1:fe:78:2c:10:6a:a9:
22:fb:18:b5:91:f5:bc:97:20:d2:12:73:40:4b:18:
64:2f:3a:66:28:47:28:58:35:73:c3:92:ef:6c:54:
67:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:64:85:E4:AB:41:18:9B:C1:17:7E:C8:28:B2:EB:5C:22:0A:C7:3A
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/FmSF5KtBGJvBF37IKLLrXCIKxzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.88.58.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:d5:93:85:50:16:60:e4:b0:98:1d:5d:66:4d:79:54:e7:21:
7b:1c:2f:32:a0:6a:4a:37:8b:51:19:81:45:c4:41:e6:8d:f6:
07:c8:10:32:72:26:d8:aa:b3:88:a0:6d:32:b7:aa:7f:1e:9d:
c9:f6:5b:b0:56:7a:90:2e:36:c5:47:ca:fd:83:ed:74:b1:22:
c8:61:3e:e3:da:72:44:e5:24:c2:fa:d5:ed:f0:73:69:05:90:
ca:8e:63:d4:36:f9:fd:df:26:47:bc:b3:c2:c6:08:df:ec:da:
5b:e4:28:7f:39:81:9e:7f:7d:94:1e:c6:55:0f:bb:0e:48:70:
53:16:d0:fe:cb:97:36:f8:ee:6d:c8:2d:f1:9e:8b:db:8a:75:
40:97:46:5b:48:47:a0:3d:df:33:1a:a4:49:d5:2a:0e:d9:ca:
8d:14:7e:4c:33:cc:b3:72:b6:a6:52:17:76:ed:c9:0f:5f:88:
9c:ec:d2:44:24:6a:84:29:bc:85:a8:24:f3:f4:c2:81:bb:9d:
91:4b:e1:49:42:02:17:6d:31:fa:ce:90:fb:e5:e4:9b:46:48:
48:89:44:85:a2:2b:44:2e:38:5c:60:25:2d:a7:98:76:5b:41:
69:52:f3:e8:6c:7a:fd:27:36:54:27:95:c3:66:ed:c1:8c:e7:
16:b5:df:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:29 2024 by rpki-client on console-fra.rpki-client.org