Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_83gmzTyT4b3_216U0KhiDKvmWs.roa
File: _83gmzTyT4b3_216U0KhiDKvmWs.roa (raw, json)
Hash identifier: xhjjHOW/ev+s5tlaDIb3CTRBQvrVW3tRMey9U6ciJq8=
Subject key identifier: FF:CD:E0:9B:34:F2:4F:86:F7:FF:6D:7A:53:42:A1:88:32:AF:99:6B
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0183AEB0C972F5CBDAE449F09911E1EAFCAB
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_83gmzTyT4b3_216U0KhiDKvmWs.roa
Signing time: Thu 06 Oct 2022 19:06:04 +0000
ROA not before: Thu 06 Oct 2022 19:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 149.126.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ae:b0:c9:72:f5:cb:da:e4:49:f0:99:11:e1:ea:fc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 6 19:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffcde09b34f24f86f7ff6d7a5342a18832af996b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:88:62:32:65:5d:cc:b1:94:cd:87:c0:4f:4d:
0b:d3:9a:86:72:d7:cf:59:38:62:8b:d1:20:48:f1:
95:33:a9:6a:a7:3a:88:94:03:58:f1:d5:79:e8:3b:
44:48:d8:5a:4a:72:d0:88:ca:49:03:fa:c5:fb:29:
ac:94:81:cd:06:3f:9b:8f:2e:bf:e5:14:e4:95:d2:
02:09:25:84:a4:a1:82:25:84:e4:3e:30:57:07:98:
dd:27:59:51:08:e6:91:0f:87:6e:6c:f8:0e:b1:31:
e3:fe:14:2d:b9:31:9a:62:8b:e9:f1:08:b3:aa:db:
db:d1:8c:fb:7c:e4:e2:a0:37:3d:91:4b:d7:ba:bd:
8f:83:c4:70:1c:24:e4:43:39:0b:87:d4:f4:ca:10:
47:b1:64:70:82:fe:1b:f5:3d:6c:6f:c6:77:10:7d:
53:37:ac:dd:4f:14:68:6c:14:f4:50:9b:96:03:41:
1f:fd:2b:1d:a5:da:7f:a0:fb:0e:c4:03:9b:fe:de:
69:8a:18:cd:0e:da:25:ea:2c:ac:74:e1:5d:66:86:
76:c3:15:8c:94:60:93:2f:f3:9b:59:5d:2e:68:06:
8d:0a:31:0e:1c:1d:05:80:ab:b0:ce:98:90:d4:12:
05:25:b3:ac:90:ec:87:f8:3c:50:48:74:37:60:b7:
4d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CD:E0:9B:34:F2:4F:86:F7:FF:6D:7A:53:42:A1:88:32:AF:99:6B
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_83gmzTyT4b3_216U0KhiDKvmWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.126.88.0/22
Signature Algorithm: sha256WithRSAEncryption
23:37:18:08:50:d7:a1:c4:85:8d:72:a4:0e:d5:85:c9:25:08:
97:99:da:c9:8c:82:80:c0:75:03:9f:8d:5b:06:da:e9:78:f3:
db:56:09:0c:70:5d:25:d2:98:2c:ad:e4:81:c9:a9:cb:c2:64:
66:bf:d1:2f:bf:db:45:37:dd:28:86:48:81:63:ef:91:2d:38:
56:ef:d8:0e:c0:ea:27:91:a1:e8:58:db:2d:9a:89:00:65:d0:
2e:d6:6d:11:4d:6a:ab:db:72:12:64:b6:63:59:e1:e5:f3:84:
47:68:00:e4:83:ad:63:d1:51:fd:0a:31:7e:07:90:c1:cf:8e:
6b:c3:b5:f0:ea:c1:cc:3e:da:dd:e0:96:52:ae:e2:2f:2c:51:
8b:58:12:99:20:07:7c:98:09:21:0a:f3:d9:4f:c4:c9:40:28:
bd:90:9c:f0:df:e1:a8:84:32:0d:0d:0c:aa:27:b9:27:30:89:
75:d8:67:37:fc:70:17:f8:58:6f:9a:e4:a1:a9:f9:e5:27:59:
e5:76:2a:12:0e:7f:bb:ca:5c:38:1b:9c:3e:8d:72:89:f5:30:
b3:be:26:d6:b5:6b:d2:80:17:49:5c:03:47:82:6d:f2:22:c2:
c5:d6:25:6e:e6:7f:71:5a:9b:1e:13:d2:84:27:78:30:db:7c:
1e:5b:ee:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org