Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/rw6peYvOHEGL-vhPDb7PJ4b7ilM.roa
File: rw6peYvOHEGL-vhPDb7PJ4b7ilM.roa (raw, json)
Hash identifier: mHeXi7CvUKHhhOA2ywqrucQTuxcl4ygSCzI0Vu3x6qc=
Subject key identifier: AF:0E:A9:79:8B:CE:1C:41:8B:FA:F8:4F:0D:BE:CF:27:86:FB:8A:53
Certificate issuer: /CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Certificate serial: 048C280F
Authority key identifier: AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/rw6peYvOHEGL-vhPDb7PJ4b7ilM.roa
Signing time: Thu 05 May 2022 10:47:07 +0000
ROA not before: Thu 05 May 2022 10:47:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58001
IP address blocks: 88.218.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76294159 (0x48c280f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Validity
Not Before: May 5 10:47:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af0ea9798bce1c418bfaf84f0dbecf2786fb8a53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e1:a5:d3:d4:51:10:66:5e:27:bc:9d:19:fe:
b2:27:bb:d1:ae:a4:3e:a0:e0:3d:52:f9:1a:e2:ae:
cd:99:ec:97:83:16:0c:b0:00:c4:7a:dd:4a:46:d2:
9f:8c:37:0a:a8:75:4b:86:40:8c:f2:0b:62:31:d6:
19:c4:85:83:f7:f7:f4:24:0a:39:b8:bb:b3:11:93:
22:fc:f6:4f:83:90:af:ce:ae:c7:99:d9:1a:e8:af:
79:9e:f7:6a:ca:8d:d0:a8:13:8e:93:96:f1:e1:65:
9a:b5:d3:40:6c:a4:0a:98:c8:f3:c3:77:19:10:65:
fc:ca:47:89:a7:ea:96:79:45:6d:41:f0:00:ac:7e:
0f:d4:a0:00:2e:cf:f5:4e:d1:63:16:87:1f:0e:a0:
c8:94:e3:32:bf:2f:d7:4c:09:4c:40:35:7a:22:79:
1b:34:e4:f2:bc:a3:2f:29:d7:ad:1d:56:48:06:3a:
e1:3e:e8:27:3c:7f:69:e4:5c:46:3c:e5:66:eb:e6:
55:b8:f9:5e:9a:72:a8:6f:4e:3a:61:78:d1:df:e8:
7c:a4:ea:f5:e0:5e:5e:93:30:de:d3:f9:5f:a3:9c:
67:36:9e:99:93:6d:a8:0c:04:10:c8:37:be:f9:d0:
f5:1e:c4:3b:24:ec:3e:bd:85:a7:da:88:e3:70:cc:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0E:A9:79:8B:CE:1C:41:8B:FA:F8:4F:0D:BE:CF:27:86:FB:8A:53
X509v3 Authority Key Identifier:
keyid:AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/rw6peYvOHEGL-vhPDb7PJ4b7ilM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/q3qquyPNJFv6go-wJSHWRMbVtWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:77:92:f8:e1:94:c9:c6:f9:00:3d:75:4e:40:4d:3e:5b:63:
18:0b:49:8b:a1:d2:86:ad:ab:01:be:4d:4e:8d:25:29:77:e5:
8e:5f:83:8f:c5:a2:94:72:20:14:89:7b:37:cc:4b:7a:f8:a6:
20:a2:9e:23:da:79:e6:4a:0e:16:b1:be:23:14:ed:e5:05:9f:
a0:ef:e3:ef:4b:2e:d1:3a:fa:f2:ee:66:48:5c:2a:9f:fc:f6:
d3:d7:db:ed:c3:69:ef:b8:ec:82:69:f1:2d:33:c4:c8:7f:1a:
51:c2:90:9d:2c:24:1e:17:8e:c4:77:3c:63:0b:ea:60:c1:74:
37:9f:5c:ac:ed:de:25:32:fd:26:c9:41:f2:9e:a3:31:af:5a:
67:4d:bf:f2:44:b9:23:c3:41:3c:86:27:79:ae:dd:3a:32:b6:
6b:4d:a5:13:b2:e7:e8:73:81:66:9f:82:71:49:1b:4d:c9:37:
f7:4b:03:6e:51:19:0f:11:56:1f:09:6e:2c:f4:04:d2:f7:b9:
c7:77:6f:82:21:95:5f:42:cc:8e:71:c5:05:75:56:8e:8e:00:
2f:93:00:8d:fb:59:77:46:fc:a9:b7:58:7b:41:4c:18:8a:c0:
d1:dc:58:2a:71:5c:51:4d:62:a5:cf:fe:7d:38:a4:e5:71:2e:
5d:40:3f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:36 2023 by rpki-client on console-fra.rpki-client.org