Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/7d606a-12e3-4dae-9d0c-0eadebd52955/1/0UfaEx2r3JzstznHJg2o77yEDEE.roa
File: 0UfaEx2r3JzstznHJg2o77yEDEE.roa (raw, json)
Hash identifier: jZjKpGlWDE8lZ0M3vttlRA+ZOAZDiM2QE9uAx/ecvEY=
Subject key identifier: D1:47:DA:13:1D:AB:DC:9C:EC:B7:39:C7:26:0D:A8:EF:BC:84:0C:41
Certificate issuer: /CN=8c3988516b1e6820b436a849f7c20df3192a48aa
Certificate serial: 09887245
Authority key identifier: 8C:39:88:51:6B:1E:68:20:B4:36:A8:49:F7:C2:0D:F3:19:2A:48:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDmIUWseaCC0NqhJ98IN8xkqSKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/7d606a-12e3-4dae-9d0c-0eadebd52955/1/0UfaEx2r3JzstznHJg2o77yEDEE.roa
Signing time: Sat 01 Jan 2022 13:59:46 +0000
ROA not before: Sat 01 Jan 2022 13:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209725
IP address blocks: 88.218.124.0/24 maxlen: 24
88.218.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159937093 (0x9887245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c3988516b1e6820b436a849f7c20df3192a48aa
Validity
Not Before: Jan 1 13:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d147da131dabdc9cecb739c7260da8efbc840c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ca:20:53:40:7d:34:e3:82:a5:6f:8a:e9:cb:
df:7f:c8:af:e2:9a:c8:1c:e6:21:92:51:7b:b5:e0:
f3:b5:2e:ad:99:b9:3f:6a:10:8d:00:1e:bf:3c:d1:
e8:fe:00:93:96:7c:40:1c:e0:ef:ce:6d:09:18:c9:
96:7f:d0:6e:76:53:0d:5e:17:bf:49:ed:a9:ba:1c:
7c:37:d9:88:10:c9:35:59:75:0e:47:15:b0:67:40:
c7:51:7f:f1:71:4c:fb:69:1c:56:ce:7f:da:d6:9a:
3f:25:41:86:3b:45:dd:6a:99:0a:82:4f:69:e8:b7:
93:c1:2a:e4:72:fe:28:7a:e0:c0:67:bb:73:5a:43:
13:e0:cf:46:88:1c:bc:4d:a5:19:10:b1:99:38:ce:
fc:61:69:44:96:98:77:56:4f:6c:c1:66:bd:bd:d8:
e7:e8:7b:e5:2c:0a:0f:6f:63:19:a2:d0:68:d0:09:
4b:a0:30:0f:a2:2f:9e:9e:0e:9b:b9:d4:bf:9f:88:
ee:0f:46:4d:3e:6d:98:f0:34:79:94:91:ff:93:ca:
73:ce:aa:aa:24:df:14:ed:b8:79:20:46:60:79:db:
9f:0f:2d:34:c4:44:2d:07:b4:3a:82:83:80:66:53:
7f:a3:82:87:1f:e6:6d:49:a2:0f:2f:9a:a2:09:b1:
82:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:47:DA:13:1D:AB:DC:9C:EC:B7:39:C7:26:0D:A8:EF:BC:84:0C:41
X509v3 Authority Key Identifier:
keyid:8C:39:88:51:6B:1E:68:20:B4:36:A8:49:F7:C2:0D:F3:19:2A:48:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDmIUWseaCC0NqhJ98IN8xkqSKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/7d606a-12e3-4dae-9d0c-0eadebd52955/1/0UfaEx2r3JzstznHJg2o77yEDEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/7d606a-12e3-4dae-9d0c-0eadebd52955/1/jDmIUWseaCC0NqhJ98IN8xkqSKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.124.0/23
Signature Algorithm: sha256WithRSAEncryption
32:33:9f:06:cb:96:b8:53:92:a4:43:ee:95:2f:05:ad:a2:76:
8a:23:9e:a8:9c:23:69:b5:1a:d0:21:e4:05:ec:3e:55:96:45:
82:1e:c9:dd:5d:f3:16:b2:13:9d:18:90:7d:d4:ca:08:ea:51:
38:85:26:99:e2:62:aa:81:c0:5a:39:2b:6e:ed:d3:65:c0:d6:
6a:1a:2e:e9:86:86:a9:c0:d1:f5:dd:01:70:4f:2e:f2:ac:cf:
4f:80:44:ca:b2:ca:6d:8c:1a:ec:52:a6:f4:57:4e:f0:71:28:
51:d3:2b:ca:16:7f:62:62:18:e8:1f:f0:3e:b2:50:93:90:be:
fa:cb:62:a8:40:14:2f:25:58:2f:23:4d:3c:db:2e:e3:ea:6f:
b9:fe:fd:e6:05:94:89:61:c5:1c:2c:8f:db:78:f1:aa:c5:07:
e3:1d:b7:11:18:a6:2c:71:e2:f1:b3:3f:35:50:21:df:65:bc:
86:9e:05:6f:83:a8:11:e8:f4:d1:4e:89:7c:d6:d4:e0:40:e5:
ca:63:7d:66:8d:11:69:95:2b:8b:27:3c:10:67:14:9b:79:c8:
f0:0e:f7:ca:f0:b1:98:73:d7:82:07:71:6d:f6:96:e9:64:d4:
85:33:2d:81:9c:8e:72:8b:0d:1d:01:e4:bb:a0:f1:2d:40:e7:
ec:36:5c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org