Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oFo0e1rYagMPOnH6zFyo000MLRc.roa
File: oFo0e1rYagMPOnH6zFyo000MLRc.roa (raw, json)
Hash identifier: HZulbylf6nZkzp6aQMd5hkmhY92eBb6477JtPzbJAy4=
Subject key identifier: A0:5A:34:7B:5A:D8:6A:03:0F:3A:71:FA:CC:5C:A8:D3:4D:0C:2D:17
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 0181CEF2708AFDC5D49511AEFCDD26AE6108
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oFo0e1rYagMPOnH6zFyo000MLRc.roa
Signing time: Tue 05 Jul 2022 15:20:03 +0000
ROA not before: Tue 05 Jul 2022 15:20:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204687
IP address blocks: 45.88.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:f2:70:8a:fd:c5:d4:95:11:ae:fc:dd:26:ae:61:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jul 5 15:20:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a05a347b5ad86a030f3a71facc5ca8d34d0c2d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:31:d7:6c:ba:fd:3a:4e:22:f4:fb:62:b3:a6:
86:00:dd:7f:c2:79:89:71:13:2d:98:9f:d9:70:24:
02:6d:cf:37:dc:9b:bd:3c:d9:a9:8e:f0:d8:3b:5d:
31:c9:68:ae:c7:36:d8:57:4f:b2:5a:a9:b4:a4:20:
04:cd:d5:bd:80:b3:c8:e3:26:ef:54:4d:e2:b0:2e:
e1:a4:ba:d5:ae:08:91:aa:f1:75:6d:f5:0b:5a:20:
b9:da:62:e5:54:0b:2c:a7:83:6e:a7:05:42:e3:84:
33:97:26:41:f9:1b:6b:3e:fb:65:f6:43:65:63:3c:
47:7b:88:12:ad:e3:cb:a0:80:2f:02:ed:db:25:2c:
49:22:62:09:4d:f1:5c:8c:86:3e:a1:36:ef:74:27:
a6:d3:8e:50:e1:25:58:0b:25:e9:0f:d3:29:9e:81:
f1:6a:99:f5:23:1d:97:6f:92:18:46:cc:8b:f8:b8:
7a:d8:e8:b1:6f:aa:7f:da:9c:b0:57:84:a8:3b:b3:
28:2c:6a:56:78:24:b7:6a:71:ec:b8:3c:50:08:d0:
1c:25:35:4c:e9:0b:88:11:b8:61:c4:0b:16:6c:41:
81:35:93:b1:0e:43:61:c6:0b:d8:37:96:4c:48:e6:
b7:94:c6:bb:d0:82:ac:60:c4:bd:9c:d8:b8:63:b1:
b0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5A:34:7B:5A:D8:6A:03:0F:3A:71:FA:CC:5C:A8:D3:4D:0C:2D:17
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oFo0e1rYagMPOnH6zFyo000MLRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.187.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d4:4f:5d:77:42:d9:f4:b9:74:28:57:44:69:1d:95:43:df:
f0:e8:5b:6d:e2:60:0c:24:07:be:df:47:55:f8:8a:47:82:fa:
c6:c7:91:93:a0:1b:eb:b6:3b:c6:4f:2e:4d:1f:f1:5f:a6:a1:
69:f2:36:cb:48:63:93:85:6e:f9:89:97:ad:db:4c:43:11:c8:
45:b5:67:53:4f:ee:74:a9:55:ad:7b:dc:3f:eb:ea:84:86:9c:
f6:aa:bf:19:28:07:78:f8:94:d7:60:e8:58:5d:47:9e:37:dc:
a1:6a:ee:1f:b6:90:01:82:32:12:12:ac:4b:02:ac:87:03:86:
23:7e:5c:54:68:39:82:db:f7:17:17:b2:3c:b5:ce:fe:e7:57:
9e:11:92:00:0b:80:40:29:07:c2:63:70:b1:0e:80:d8:db:96:
da:da:e1:c4:08:ea:6b:24:27:bb:d1:42:a4:5d:a0:40:5f:b6:
37:00:34:f5:f9:d9:4e:03:73:4b:a5:50:1f:1d:3c:a6:e6:57:
ba:03:7f:cc:c5:e6:7b:25:42:d7:15:f8:5a:c5:5f:5c:27:2f:
19:f4:40:d5:65:c4:8a:25:8c:88:c3:17:a9:2d:72:10:2a:11:
0b:d5:ec:3f:4b:bb:26:ae:a7:89:e3:07:4c:fd:7f:cc:26:47:
1c:ea:0c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org