Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oIvIoxuINzVKBLQ37fZYyHlGT84.roa
File: oIvIoxuINzVKBLQ37fZYyHlGT84.roa (raw, json)
Hash identifier: mLyc//28CEDsuSkDLEsWEam7NNTS4EOcIBveppcc//s=
Subject key identifier: A0:8B:C8:A3:1B:88:37:35:4A:04:B4:37:ED:F6:58:C8:79:46:4F:CE
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018524C3923E145807046F1B240D08E3B984
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oIvIoxuINzVKBLQ37fZYyHlGT84.roa
Signing time: Sun 18 Dec 2022 10:24:34 +0000
ROA not before: Sun 18 Dec 2022 10:24:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 45.88.12.0/24 maxlen: 24
45.88.15.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:24:c3:92:3e:14:58:07:04:6f:1b:24:0d:08:e3:b9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 18 10:24:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a08bc8a31b8837354a04b437edf658c879464fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f2:75:b8:c8:da:96:0c:fc:86:e1:01:01:f9:
b7:b2:af:4b:2b:d4:9f:c0:22:d3:57:e7:62:2f:ed:
f9:e3:b3:0c:fc:f6:b7:d3:93:75:0a:01:4f:43:75:
76:24:5e:27:a1:ea:3a:7d:82:12:cb:81:b0:5d:90:
e0:79:b7:7b:7b:ee:e0:92:58:03:73:e5:b6:e2:ba:
a3:9c:fc:4a:2a:49:d4:3b:d5:60:8a:61:2f:45:6a:
f6:a6:7d:e3:ff:d5:2f:cf:a3:6c:b5:40:a5:4d:3f:
2f:50:09:56:29:bc:84:7b:b9:46:9c:b1:22:a6:db:
cb:46:49:f7:11:74:0a:4a:7a:55:95:fd:0e:87:f0:
3b:b3:54:bf:d9:20:0a:43:18:cd:ba:dd:b3:a3:05:
ec:7b:31:8c:9a:9c:b7:69:34:8f:8f:ca:0c:37:d6:
6c:8f:5c:09:b7:86:9f:84:f9:0a:d8:43:69:dc:e2:
66:bf:6a:a2:ad:27:91:e1:a6:50:26:08:16:90:3d:
b9:07:26:9c:46:eb:e9:8c:55:40:c9:43:32:db:01:
95:ed:28:2b:73:c9:2a:5d:94:aa:82:30:39:94:34:
c5:f7:0c:5f:4c:f5:4f:59:0c:8d:f3:bf:aa:ba:f4:
e7:7f:63:08:2c:c8:7e:87:36:a8:1b:35:17:88:ea:
ff:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:8B:C8:A3:1B:88:37:35:4A:04:B4:37:ED:F6:58:C8:79:46:4F:CE
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oIvIoxuINzVKBLQ37fZYyHlGT84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/23
45.88.15.0/24
93.90.74.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:9b:e6:eb:0c:4f:a4:60:55:3d:c2:43:63:76:72:1d:71:bf:
c3:a4:12:6b:ba:ee:70:f6:d5:09:67:54:91:3e:60:34:9e:ee:
1e:97:01:43:9b:f9:47:92:4d:63:76:22:60:f4:f7:19:ab:0a:
d3:4f:82:ed:13:4d:ee:05:e8:fe:39:b7:66:82:c0:d4:5a:1c:
f5:04:ac:be:6c:7e:08:17:06:12:b4:a0:03:09:f3:6d:11:da:
65:45:ca:a9:2c:61:72:b4:e1:b8:d6:cb:04:27:0a:d0:9e:6b:
d5:37:36:24:ff:ff:54:0d:17:57:8d:7c:89:e9:67:b6:f7:11:
fd:16:a4:08:c0:26:d7:4d:d3:20:6a:78:e5:fb:58:30:f2:00:
a6:20:fd:4c:4e:84:e6:49:78:80:a7:0e:20:cd:36:ca:82:5d:
af:5f:a8:a1:f7:4e:6c:6d:ea:35:de:de:bb:cd:47:f0:69:bf:
40:f8:36:4c:32:f3:4f:41:d2:6e:c1:74:16:56:48:d7:1c:21:
c4:d5:5f:77:81:ce:5b:01:f4:a0:53:fc:cb:3e:f1:4d:e8:a1:
c2:13:84:cc:a0:d9:0f:44:c6:07:5f:d0:0f:ff:d4:3c:f1:07:
13:c9:1b:b5:76:e5:94:ac:68:f6:f4:31:99:97:52:ec:ab:ba:
0c:36:68:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org