Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/z4AZzxNGTWp8dQXmru78wg41RWc.roa
File: z4AZzxNGTWp8dQXmru78wg41RWc.roa (raw, json)
Hash identifier: VKZw7xlkx8DPlSZ+vT0zSO1Cjf7/G0a+PvhbIujSAe4=
Subject key identifier: CF:80:19:CF:13:46:4D:6A:7C:75:05:E6:AE:EE:FC:C2:0E:35:45:67
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A7F1A5F
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/z4AZzxNGTWp8dQXmru78wg41RWc.roa
Signing time: Sat 01 Jan 2022 04:52:03 +0000
ROA not before: Sat 01 Jan 2022 04:52:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197136
IP address blocks: 88.220.77.0/24 maxlen: 24
88.220.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981408351 (0x3a7f1a5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf8019cf13464d6a7c7505e6aeeefcc20e354567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:10:3f:98:cd:6b:f0:84:1e:c4:bd:5a:a4:89:
06:5c:d7:c4:5e:57:c5:1e:84:bd:2d:5a:65:29:ff:
59:e3:5c:1c:df:d0:d9:dc:f5:dd:0a:eb:ab:ee:bc:
bc:64:d3:2f:83:7c:7c:75:13:e4:32:4c:1c:e0:66:
fb:68:78:ee:cf:73:b8:ce:d7:f6:ba:9d:25:c1:c4:
ce:dd:6d:64:fa:0a:28:75:d7:c0:da:38:3d:da:2a:
13:8a:6c:3e:68:21:b7:be:7f:f9:31:2e:40:da:63:
33:fa:d0:d0:19:2c:27:2a:9f:49:11:fa:09:da:31:
42:87:f7:3e:e9:09:48:78:e9:71:31:1a:16:a6:d2:
47:37:bc:c7:a3:b7:c4:14:ea:a8:f8:00:9f:1b:76:
2b:8a:11:44:bf:aa:c9:5e:38:92:1a:48:99:cc:6e:
6a:0d:e2:9b:e1:24:37:06:d8:e4:e1:e2:c4:e5:8f:
bc:35:04:f4:f4:ca:84:c3:af:1d:44:08:a4:1e:33:
55:59:ef:76:8b:b3:cd:45:33:21:5c:ab:06:c6:1a:
66:b4:42:f8:20:26:dc:97:d9:3f:d3:7d:99:f1:db:
e9:9b:41:2a:85:b8:9a:47:ee:e4:ea:83:cc:72:eb:
06:57:58:e6:8d:fa:6a:4c:7e:18:61:d3:f7:c5:2c:
8c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:80:19:CF:13:46:4D:6A:7C:75:05:E6:AE:EE:FC:C2:0E:35:45:67
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/z4AZzxNGTWp8dQXmru78wg41RWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.77.0/24
88.220.85.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:d1:64:8d:b8:a1:6b:c0:95:03:53:5b:6e:ac:f4:af:23:9d:
a5:28:51:79:27:57:34:d7:1c:19:33:28:d3:c5:a0:89:24:e4:
df:ac:c9:cc:fd:60:1b:2f:63:bc:c9:2c:8e:0f:fa:8b:be:3e:
4e:bd:bf:24:7d:5c:19:17:5f:a2:ea:76:40:2b:3d:89:b8:9a:
8b:4e:ae:5d:b7:87:12:b5:86:f9:0e:30:66:6a:97:c8:f4:f7:
39:06:8c:75:ad:a6:0e:8b:e6:df:50:46:9c:1a:a6:ee:4f:64:
9c:7a:e2:a0:0c:a2:7c:90:38:dc:f5:0a:65:2b:80:aa:d0:d8:
9f:10:bb:3e:e8:9b:ed:50:1b:6c:84:b1:26:af:8b:a1:7e:8c:
e6:47:35:f5:1d:b6:c9:87:fe:38:0a:61:c9:f6:33:32:63:21:
a9:91:d8:a7:81:4a:f2:07:e2:fe:24:ea:1f:84:af:d8:85:61:
7f:ce:c9:d4:3c:9b:45:b1:9e:10:4d:2d:79:01:f4:ae:82:e9:
ff:70:58:c5:33:7d:fa:0a:1c:ed:bb:40:4d:e4:7d:3f:83:f4:
33:a9:03:8e:e6:b3:49:36:7b:58:47:ac:7f:fe:6b:a6:2c:83:
d0:d6:bc:54:1d:aa:fe:40:e5:86:6d:db:f2:71:ef:a8:a4:26:
8c:5d:74:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org