Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/I36uE8OLtofPtQvQpS5-nwwf3OY.roa
File: I36uE8OLtofPtQvQpS5-nwwf3OY.roa (raw, json)
Hash identifier: D3WjVo9TYfLRgcEQb4SEeYhzo7SHpfaRfchDynLdzIY=
Subject key identifier: 23:7E:AE:13:C3:8B:B6:87:CF:B5:0B:D0:A5:2E:7E:9F:0C:1F:DC:E6
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A8CD3B1
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/I36uE8OLtofPtQvQpS5-nwwf3OY.roa
Signing time: Sat 01 Jan 2022 04:52:10 +0000
ROA not before: Sat 01 Jan 2022 04:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204301
IP address blocks: 88.220.48.0/24 maxlen: 24
88.220.84.0/24 maxlen: 24
81.15.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982307761 (0x3a8cd3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=237eae13c38bb687cfb50bd0a52e7e9f0c1fdce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:78:f7:5e:81:e1:2c:2b:a0:86:9f:fe:7e:87:
25:a6:ad:34:93:95:16:3b:a5:72:a3:1d:9f:11:17:
31:82:ed:1c:91:fd:39:7d:9c:2a:a2:69:4a:98:2f:
02:a5:d7:c7:7a:b3:28:1a:6a:57:c8:eb:53:73:49:
83:99:e2:14:fe:f4:56:43:05:2c:93:50:69:06:eb:
57:1d:eb:28:11:13:85:f1:2f:fd:d7:4d:8f:55:6d:
b6:8b:20:f8:96:85:bf:35:16:eb:90:0b:eb:58:a6:
be:15:b4:52:b1:8b:a7:b8:93:5a:3c:f2:c6:78:83:
8c:14:93:5a:38:5a:53:34:05:71:fd:f7:e5:83:ed:
e5:1a:49:65:93:94:fc:aa:df:34:c0:ef:08:71:d6:
9b:fa:5c:1d:d9:a6:c4:40:6a:5d:17:ec:82:4c:c5:
af:ca:85:74:76:33:71:5c:da:dd:a3:01:f6:c2:a9:
6c:30:d9:b7:a7:7a:15:d2:7e:3a:d5:2b:bd:f0:a4:
ed:1f:b5:73:59:4b:47:42:aa:64:44:f9:b7:4d:8b:
bc:49:19:b2:fa:70:3d:69:f9:b0:dd:29:85:9e:0a:
5a:f4:d3:f7:0c:4d:0e:31:5e:55:a7:7a:77:a3:1d:
d9:4e:31:7f:f4:a8:7c:f9:b4:d8:b5:32:da:99:30:
b2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7E:AE:13:C3:8B:B6:87:CF:B5:0B:D0:A5:2E:7E:9F:0C:1F:DC:E6
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/I36uE8OLtofPtQvQpS5-nwwf3OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.191.0/24
88.220.48.0/24
88.220.84.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f7:1a:49:4d:7d:2c:f9:cc:e8:0e:8b:fb:df:0a:be:59:b4:
c4:37:02:28:d6:e3:ed:8f:35:34:78:e2:6a:d6:09:42:46:6c:
d3:9d:45:d9:05:30:48:de:8d:8c:ef:ba:89:2e:86:f8:27:8a:
40:59:c5:dd:85:7d:21:90:24:a4:48:30:80:db:1e:9b:46:ff:
d2:d1:9c:f5:dd:32:0b:d9:00:7d:0e:bb:df:ad:11:87:58:61:
e4:f4:30:50:e7:30:2f:24:20:5d:8f:f7:17:02:4a:26:11:61:
35:46:2a:97:f9:4d:bd:d2:c8:56:39:37:f6:c2:aa:a1:bf:c8:
25:36:95:fb:3e:eb:ef:3f:59:e0:93:bd:b9:4e:cb:ca:64:18:
8d:2a:5a:88:f4:8e:6f:e9:f7:4b:99:ee:30:8a:4e:ff:6d:77:
78:0c:6c:35:ab:79:c9:51:e2:17:ac:6b:c6:44:cf:71:65:c1:
66:f2:74:e5:e0:4f:c1:8f:b2:bf:ea:c6:ae:43:34:fb:5f:25:
cf:cb:06:54:c9:e7:4f:af:af:36:de:98:35:f8:4a:d8:d3:0a:
be:e6:8b:22:58:4c:7f:38:6b:99:13:0f:43:3f:5d:8c:e7:93:
8a:4a:ca:6f:de:60:68:54:0b:f7:40:a5:8b:ed:a2:81:03:d3:
4e:29:b7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:53 2025 by rpki-client