Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aEdiuLhXvkX95XmnanRfU6rdox8.roa
File: aEdiuLhXvkX95XmnanRfU6rdox8.roa (raw, json)
Hash identifier: OIT3mk5RIGgN0/DXz9aUZTe1q+BeSJVP5Y88ZM+jy6Q=
Subject key identifier: 68:47:62:B8:B8:57:BE:45:FD:E5:79:A7:6A:74:5F:53:AA:DD:A3:1F
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A97194A
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aEdiuLhXvkX95XmnanRfU6rdox8.roa
Signing time: Sat 01 Jan 2022 04:52:19 +0000
ROA not before: Sat 01 Jan 2022 04:52:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207735
IP address blocks: 88.220.118.0/23 maxlen: 23
88.220.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982980938 (0x3a97194a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=684762b8b857be45fde579a76a745f53aadda31f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3f:ba:f0:e1:72:a1:65:7a:21:f5:c4:24:fb:
f4:ac:79:40:89:24:29:b7:22:2d:82:0b:ec:02:cd:
a8:eb:0e:17:a5:9f:f3:e3:58:c6:30:d2:f8:c8:dc:
30:c5:d7:ec:f4:cf:d5:0b:3a:40:82:69:f1:6d:86:
62:7c:6b:13:f9:b5:19:ed:a2:89:a7:c3:57:20:64:
ba:4c:ce:ec:b9:d8:05:38:6a:4b:26:b9:00:4a:be:
e5:58:b6:3e:30:c7:45:ba:d2:13:7a:bf:d8:16:90:
63:1e:33:45:56:5e:09:ee:eb:96:7e:99:c1:cd:dd:
55:2c:51:0b:64:b3:38:00:28:86:00:96:09:fe:ed:
ce:5e:6f:55:c7:fb:8d:de:02:d7:23:0d:eb:ae:fc:
a5:dd:11:9c:3f:a0:0d:0c:33:ef:14:60:5f:34:b8:
78:57:4a:46:e4:78:49:21:f3:d4:0f:d2:6a:64:98:
f4:42:b2:3b:b5:7b:51:41:1e:02:54:50:d5:d8:9e:
9c:b2:38:a1:44:a8:2f:8e:f7:4b:05:6c:d6:25:49:
87:02:31:83:c4:d5:df:04:8f:9d:50:ea:4e:a1:f5:
1f:44:14:8e:a4:eb:17:95:fb:bd:f1:bf:8c:21:06:
91:08:dd:89:3c:3a:51:97:da:3d:59:63:3b:67:60:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:47:62:B8:B8:57:BE:45:FD:E5:79:A7:6A:74:5F:53:AA:DD:A3:1F
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aEdiuLhXvkX95XmnanRfU6rdox8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.118.0/23
88.220.125.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f8:c3:41:d9:8c:8b:bc:d5:62:c7:09:a7:b2:4b:2f:3f:5b:
64:c4:09:b9:81:43:82:3a:c8:c8:b1:97:ff:b3:2c:10:7f:15:
aa:0b:98:6b:d2:47:5d:3c:ad:86:2f:a2:bf:1f:f9:80:d6:84:
b9:82:bf:ba:12:3b:47:22:71:ed:22:43:d9:b0:f4:09:9d:3c:
91:f5:b5:57:12:4b:47:32:11:a0:b1:39:83:ca:3c:a4:a6:7b:
47:db:e8:12:70:2b:8a:74:1a:2c:32:28:93:0f:27:2a:88:24:
68:eb:82:00:45:be:07:9e:8f:96:7f:01:13:97:78:f8:76:13:
39:dc:a3:00:8e:cc:ec:98:a6:1c:f8:f8:3c:b8:15:70:b7:a8:
4b:fa:74:f2:40:d9:ce:47:86:41:77:82:89:69:b5:ad:e5:c2:
84:05:92:b8:e6:77:65:a3:f2:b9:57:8e:78:7f:80:af:0b:39:
11:e2:50:fd:f5:d3:5e:e6:98:52:bf:6d:b2:13:9b:e8:e7:c2:
9f:ba:26:b0:54:a0:63:7d:38:81:f2:aa:f8:f3:3e:71:d1:d7:
cd:71:d5:db:b6:f2:ad:ac:5a:34:db:9c:55:1c:6e:6a:4d:f0:
9a:80:4e:55:70:17:bd:94:b2:0c:99:af:a3:5b:6f:07:44:ee:
9c:56:ba:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org