Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/JGci2mm8Qb9U0TIzJ3XNFssE1B8.roa
File: JGci2mm8Qb9U0TIzJ3XNFssE1B8.roa (raw, json)
Hash identifier: 6vzQw4HDl+cpycktgJTiYEZh7YnHHnINpzhriuQES+s=
Subject key identifier: 24:67:22:DA:69:BC:41:BF:54:D1:32:33:27:75:CD:16:CB:04:D4:1F
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10C333F1
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/JGci2mm8Qb9U0TIzJ3XNFssE1B8.roa
Signing time: Sat 01 Jan 2022 13:02:21 +0000
ROA not before: Sat 01 Jan 2022 13:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201549
IP address blocks: 88.199.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281228273 (0x10c333f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=246722da69bc41bf54d132332775cd16cb04d41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bf:78:72:2c:40:cd:72:46:64:14:83:59:c7:
b4:53:df:fd:2c:5d:e6:e0:44:85:cb:ca:9d:3b:1a:
2b:a3:72:44:23:0e:7a:32:79:eb:1a:1c:73:82:7a:
4f:95:e2:6c:66:84:0e:f4:6c:dc:2b:e2:5e:c5:d1:
c1:e0:20:5d:56:f9:4e:20:93:61:23:d4:6e:54:21:
41:75:2d:07:72:bf:35:4b:a0:18:86:eb:07:d3:5a:
16:be:a1:07:e7:0e:89:16:06:bb:c0:f1:37:bc:b1:
80:9a:9a:f7:48:52:6b:af:1f:7e:37:b4:d7:bb:0a:
5d:b2:5c:b3:db:33:00:be:3d:46:30:5c:c6:3a:f7:
42:2b:ee:77:58:dd:55:08:80:c2:84:4c:64:02:57:
00:1a:2a:77:39:b4:2b:70:58:07:b7:65:3b:c5:1f:
9f:e8:dc:5b:26:f2:dc:9c:5e:84:31:3b:b1:f6:ec:
97:52:ed:1d:0f:1a:ab:34:ef:23:02:4a:9a:23:7c:
9e:ba:4e:c9:8d:71:fe:03:bb:8f:b2:5e:f5:43:f1:
fd:84:41:f9:5d:3e:e8:f3:07:ec:27:72:5a:c4:c6:
a0:56:5a:23:d4:20:e1:37:af:25:d2:bc:93:d0:b5:
0b:d6:94:d8:f6:1d:a9:62:3a:4e:c4:37:a7:7e:5c:
51:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:67:22:DA:69:BC:41:BF:54:D1:32:33:27:75:CD:16:CB:04:D4:1F
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/JGci2mm8Qb9U0TIzJ3XNFssE1B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.97.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a9:3c:10:08:39:b2:1d:7a:90:77:7d:b3:81:96:5b:d7:b5:
95:b8:a9:79:37:f8:79:48:c1:1f:c3:f8:83:10:e8:76:43:7e:
88:b9:d8:5b:51:29:b8:85:2a:b6:ba:d0:f0:46:99:bf:ae:f8:
f8:fa:f3:d9:b1:30:62:c4:aa:ee:94:b3:86:b6:41:8e:cd:ba:
d9:7d:f0:d0:89:d5:42:dd:71:3a:e4:b9:7c:19:4b:7e:bc:e8:
6f:85:b6:e0:84:ea:30:a5:0c:92:7c:56:86:31:53:fa:7a:a2:
cc:51:a8:9d:84:d5:5a:55:80:72:10:0d:80:66:2d:a3:a6:99:
b7:36:d6:eb:c8:f4:86:71:2a:29:24:33:20:35:98:66:92:93:
0c:c4:30:a3:f8:bb:24:2c:88:fa:c0:fc:81:90:34:ca:bd:76:
23:1e:d7:59:30:88:de:35:5c:ca:d8:f6:d8:5e:49:01:23:de:
22:f5:f8:3b:fc:c0:b2:97:3d:71:ed:c8:a4:4c:4e:0b:df:bf:
1d:e9:c8:b2:92:76:bc:e6:64:6e:db:cd:a2:48:ca:c1:f5:e7:
1b:e4:31:72:bb:35:3a:e7:74:ab:35:4b:ba:aa:24:63:d4:03:
1b:f3:43:e2:8e:bc:6b:ff:e5:62:16:1a:7d:31:f8:29:65:aa:
68:69:8c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:56 2023 by rpki-client on console-ams.rpki-client.org