Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_PUAJdVf3sPvndniBsC8QWPlbUE.roa
File: _PUAJdVf3sPvndniBsC8QWPlbUE.roa (raw, json)
Hash identifier: /M8tc2cJ1eXeOfnYo1eaQItPYGyrEO4+U4ttM+0yMvE=
Subject key identifier: FC:F5:00:25:D5:5F:DE:C3:EF:9D:D9:E2:06:C0:BC:41:63:E5:6D:41
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A8BC594
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_PUAJdVf3sPvndniBsC8QWPlbUE.roa
Signing time: Sat 01 Jan 2022 04:52:09 +0000
ROA not before: Sat 01 Jan 2022 04:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201904
IP address blocks: 88.220.82.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982238612 (0x3a8bc594)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcf50025d55fdec3ef9dd9e206c0bc4163e56d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:99:6f:ef:1e:8b:a9:aa:cc:8c:bf:18:31:96:
b1:8e:c2:bd:be:a5:c0:9f:1d:43:8a:7a:15:83:08:
fb:1e:1e:d6:4f:82:37:50:10:10:fc:b0:ba:45:28:
60:de:cb:ae:ef:38:fe:67:df:62:b8:7e:c8:9c:57:
53:4f:9b:72:ce:fc:fa:80:89:74:ef:80:c4:82:8d:
4e:36:a2:2f:9a:80:96:98:1a:57:aa:40:9a:d4:08:
cf:c7:dd:7a:b1:29:ef:bb:8e:49:b0:f1:86:78:94:
d5:51:4a:34:fd:d9:e6:f9:db:68:be:46:73:57:c2:
d7:6a:fa:e4:02:9a:5c:b4:aa:82:ee:f4:47:44:b3:
9a:e0:b1:ac:a7:4b:a7:c8:46:9a:78:6d:43:f5:11:
7f:ad:6f:8f:40:d4:2d:28:64:b8:39:54:5d:c9:95:
fe:5a:95:8e:e2:e4:59:ce:70:1b:b4:19:9d:00:40:
66:d4:e6:aa:22:4c:78:28:e6:14:c9:e8:b0:b8:50:
2b:b6:a5:72:24:8f:fd:93:4d:12:0e:11:e8:0e:31:
7a:26:74:de:0f:1d:27:d8:ac:bb:66:b2:87:f4:f9:
f0:6b:24:c9:7c:31:13:90:2b:2c:6f:fe:73:2c:1d:
ee:87:a8:43:57:98:d5:c4:df:78:cb:e0:72:cb:60:
53:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F5:00:25:D5:5F:DE:C3:EF:9D:D9:E2:06:C0:BC:41:63:E5:6D:41
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_PUAJdVf3sPvndniBsC8QWPlbUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.82.0/23
Signature Algorithm: sha256WithRSAEncryption
01:f1:d8:55:d3:6b:18:a1:67:ee:0b:93:85:7d:c4:6e:02:cd:
1d:1d:6e:5b:11:8d:64:16:cb:cf:31:d4:6b:35:5a:6b:db:d4:
69:cf:bd:3e:2b:30:37:ff:11:69:26:63:0d:9e:a7:b0:86:43:
d7:b2:d2:f0:99:c7:f8:c6:a6:04:99:dc:5a:c1:7c:ff:05:43:
6c:f8:46:49:4d:0b:0a:87:6c:3c:1f:67:dd:f3:0d:57:b4:67:
46:88:cb:78:7f:08:53:5e:e3:75:f4:75:5a:87:ec:f6:ff:3d:
2d:65:4d:d0:a5:b6:5d:9a:2b:11:af:b9:78:05:fb:e5:39:69:
0a:38:9e:d9:39:04:84:ae:e5:31:d2:e6:0b:83:55:cb:ad:64:
60:87:bf:16:f4:08:be:1d:1e:a6:72:3d:7b:13:dc:03:10:99:
25:78:08:03:32:8d:7c:7a:1b:d5:03:d5:d7:fd:a7:67:a1:63:
49:f8:85:d2:5d:bf:d4:46:7f:d6:db:e7:3c:de:35:a7:04:53:
94:bb:ff:b3:d8:c8:af:03:86:9f:d6:21:61:f5:8e:fd:ad:f0:
4c:83:01:f6:98:d1:94:b4:fa:5f:8a:61:b0:82:4b:01:39:a0:
4b:51:4d:dc:05:00:18:55:c7:65:e7:26:ce:ce:fc:ed:3d:a0:
05:47:12:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org