Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/4QCni8CO1dvbJehIKYxcJX55Z80.roa
File: 4QCni8CO1dvbJehIKYxcJX55Z80.roa (raw, json)
Hash identifier: lF1Q5qXa3yWR1/hzrmpnhQ8MNXc/ST5NK377s8ao65E=
Subject key identifier: E1:00:A7:8B:C0:8E:D5:DB:DB:25:E8:48:29:8C:5C:25:7E:79:67:CD
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10BB2268
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/4QCni8CO1dvbJehIKYxcJX55Z80.roa
Signing time: Sat 01 Jan 2022 13:02:18 +0000
ROA not before: Sat 01 Jan 2022 13:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199296
IP address blocks: 88.199.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280699496 (0x10bb2268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e100a78bc08ed5dbdb25e848298c5c257e7967cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:34:7d:de:6a:da:d1:cb:1b:c2:f3:5c:c0:ea:
46:8d:e6:67:42:40:73:9e:1f:43:24:1a:d5:3e:64:
2e:8b:30:c8:e2:f1:db:a5:a6:71:81:34:c6:b0:db:
3e:c4:e2:ec:9a:26:3f:c7:69:0b:86:83:af:ed:ce:
4c:6b:71:91:ca:86:60:98:07:01:28:96:e5:c6:9f:
0c:13:16:30:c2:73:c4:d6:79:a7:36:b0:6d:ee:f2:
35:a1:f8:2c:f7:3d:df:93:7d:70:28:4c:1f:36:d4:
65:0a:47:00:97:0f:81:bf:ed:e1:3f:60:c3:78:3a:
2f:61:c8:9d:b8:b9:ac:48:da:89:90:15:86:36:5b:
3f:10:c8:7a:d0:da:14:4f:ed:6b:d0:70:e8:c8:bc:
77:82:fb:7d:95:fb:22:93:27:1c:dd:51:a5:4b:33:
43:2b:5a:7b:c5:cb:5b:c5:e1:23:49:a0:52:a1:52:
24:4f:f7:2d:4d:12:fa:6b:55:25:af:22:42:3f:90:
e3:36:90:63:5e:b2:83:c4:9f:10:ef:eb:2f:a1:61:
69:6f:6b:85:d8:88:6e:f9:40:9f:de:6e:6c:5e:f7:
ab:8d:ac:c3:82:cd:ed:79:25:bc:c0:ae:44:7a:3a:
3e:36:ab:02:99:65:40:b7:09:6e:27:7b:eb:0e:fa:
3e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:00:A7:8B:C0:8E:D5:DB:DB:25:E8:48:29:8C:5C:25:7E:79:67:CD
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/4QCni8CO1dvbJehIKYxcJX55Z80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.144.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:39:fd:b8:08:38:59:ec:66:0f:0c:f3:1f:60:c2:00:44:61:
f0:9e:43:99:4f:19:0a:d1:59:e1:de:e2:3c:96:d7:64:d0:c0:
89:ce:20:15:28:2d:f4:e2:35:1e:e1:85:8c:ad:a8:10:24:a4:
26:5e:20:27:78:83:9f:cb:74:71:26:5a:ca:f3:4b:46:cb:41:
60:a3:bc:eb:9b:51:21:8e:e0:29:e1:fe:cb:ec:85:7e:b9:d4:
38:bc:fe:c0:9d:99:9b:11:65:13:e3:1a:e7:ed:85:0f:70:a6:
f8:af:f8:c7:77:b4:28:45:b0:fd:31:81:f9:11:02:d6:b6:9e:
cc:f5:6e:c7:1e:b8:a5:2d:f9:93:31:42:e2:9b:11:47:f3:68:
44:bb:d0:9f:b8:bf:76:e2:ad:58:b9:99:e7:9f:29:11:3c:f0:
b6:b8:6b:05:37:21:d9:d0:ff:cf:1d:a2:c9:3b:31:91:17:89:
98:bf:92:08:30:96:23:ab:47:a4:8b:69:94:54:c3:25:eb:cc:
04:d5:e4:c6:9a:9d:21:d9:9c:df:e7:03:25:1d:f3:71:b7:e5:
27:e2:c8:e4:e1:88:4a:85:cf:90:f2:6d:9e:9c:fc:b2:c8:85:
db:fb:a9:34:3a:78:5b:08:99:39:4b:7d:85:db:59:a1:1d:9a:
40:01:1c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:15 2023 by rpki-client on console-fra.rpki-client.org