Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/358be9-192d-4ae9-b4bd-eed556af2c7f/1/apAy-HRcolPQJspovBJz6uV7zlI.roa
File: apAy-HRcolPQJspovBJz6uV7zlI.roa (raw, json)
Hash identifier: so+ZKJY7v2ze2c/jfYUdSbOJzL0d0UiLt+bcVGb/It0=
Subject key identifier: 6A:90:32:F8:74:5C:A2:53:D0:26:CA:68:BC:12:73:EA:E5:7B:CE:52
Certificate issuer: /CN=e1bdccb2450a1a053c89cc213e4ae9b864782de3
Certificate serial: 7D3787
Authority key identifier: E1:BD:CC:B2:45:0A:1A:05:3C:89:CC:21:3E:4A:E9:B8:64:78:2D:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4b3MskUKGgU8icwhPkrpuGR4LeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/358be9-192d-4ae9-b4bd-eed556af2c7f/1/apAy-HRcolPQJspovBJz6uV7zlI.roa
Signing time: Sat 01 Jan 2022 01:53:54 +0000
ROA not before: Sat 01 Jan 2022 01:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209685
IP address blocks: 88.218.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8206215 (0x7d3787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1bdccb2450a1a053c89cc213e4ae9b864782de3
Validity
Not Before: Jan 1 01:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a9032f8745ca253d026ca68bc1273eae57bce52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ae:6e:48:13:e8:a2:f0:b6:18:60:97:6c:c8:
08:f7:9a:cb:4a:b5:f8:91:71:f1:a5:46:da:0b:d6:
0b:e7:58:be:2f:e2:ba:28:75:8e:94:f5:7b:e4:72:
c8:52:7b:c1:d1:32:68:5f:70:ee:83:17:a8:cc:49:
88:dd:12:ee:4c:8b:30:5b:ab:76:10:37:df:ff:79:
12:2c:7e:b1:95:f5:89:ff:ae:7d:45:9f:7b:be:5b:
77:d8:d6:24:86:6b:ea:ed:77:ba:80:65:28:07:7d:
6b:04:a9:85:61:a4:d5:73:49:8d:10:5d:e0:6c:a5:
b2:c1:1b:15:80:a7:d0:6a:d9:c4:93:8b:1b:91:56:
d1:24:b7:c1:aa:d6:b2:66:24:be:57:f5:7f:df:77:
e2:d6:a7:68:1e:dc:ff:68:9d:f5:1f:10:33:eb:91:
f4:95:e4:04:0f:45:86:3c:ea:cb:94:f3:3e:f8:eb:
da:ae:74:2b:34:e3:07:0a:04:3e:5f:0b:c2:84:ae:
f2:77:17:a3:e4:e4:cb:80:96:6c:dc:d9:6f:68:de:
4a:fc:23:db:49:9e:b8:bf:90:8f:91:0c:d7:e6:d6:
03:45:db:75:43:b2:1c:42:eb:08:5e:22:d5:b3:f7:
56:e4:26:6b:45:6c:98:2f:9a:33:ba:8a:76:e9:b6:
d3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:90:32:F8:74:5C:A2:53:D0:26:CA:68:BC:12:73:EA:E5:7B:CE:52
X509v3 Authority Key Identifier:
keyid:E1:BD:CC:B2:45:0A:1A:05:3C:89:CC:21:3E:4A:E9:B8:64:78:2D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b3MskUKGgU8icwhPkrpuGR4LeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/358be9-192d-4ae9-b4bd-eed556af2c7f/1/apAy-HRcolPQJspovBJz6uV7zlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/358be9-192d-4ae9-b4bd-eed556af2c7f/1/4b3MskUKGgU8icwhPkrpuGR4LeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.140.0/22
Signature Algorithm: sha256WithRSAEncryption
03:d7:7f:7b:ff:c2:1c:1b:fd:60:98:31:66:21:52:22:8c:6f:
dc:97:09:47:05:6b:ae:aa:1a:be:bd:f9:f3:8c:a4:44:4d:41:
04:06:f7:46:17:e5:8b:4f:3b:80:9b:3c:66:29:6f:09:1f:a9:
0a:ba:ce:2a:d3:ba:b0:09:f3:3a:e8:5d:7a:7e:78:ae:70:5d:
b2:41:c8:72:d4:89:24:b5:12:92:07:d4:91:dd:5a:3a:0a:68:
54:88:f5:8f:9c:3c:49:cd:92:cb:7d:b2:80:c0:8b:8f:c9:14:
5f:c3:d6:50:fa:ee:9f:4d:d2:08:70:51:58:26:21:7b:99:11:
fd:64:14:b9:bc:8a:a5:89:ca:0f:69:aa:44:a5:e6:c7:47:c5:
53:e8:7b:cd:d4:11:d2:19:97:54:b8:b4:62:60:04:82:41:39:
a8:45:01:e2:d7:f4:3d:4d:09:26:5e:34:99:ac:27:ba:64:0e:
96:b0:ee:e2:e8:2c:12:5c:8e:34:23:c4:44:0e:a9:61:6a:e4:
ee:58:f8:c1:c1:82:45:1f:f6:a9:72:b9:06:ed:ca:b3:94:0f:
8f:cf:b5:d0:b7:7f:83:e2:36:5c:76:76:05:62:44:b0:7b:37:
cd:28:0b:aa:d8:f9:fc:d1:96:91:2e:84:9d:5c:48:f5:a1:ba:
b9:a1:7a:9b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDfTeHMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUx
YmRjY2IyNDUwYTFhMDUzYzg5Y2MyMTNlNGFlOWI4NjQ3ODJkZTMwHhcNMjIwMTAx
MDE1MzU0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2YTkwMzJmODc0NWNh
MjUzZDAyNmNhNjhiYzEyNzNlYWU1N2JjZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApq5uSBPoovC2GGCXbMgI95rLSrX4kXHxpUbaC9YL51i+L+K6
KHWOlPV75HLIUnvB0TJoX3DugxeozEmI3RLuTIswW6t2EDff/3kSLH6xlfWJ/659
RZ97vlt32NYkhmvq7Xe6gGUoB31rBKmFYaTVc0mNEF3gbKWywRsVgKfQatnEk4sb
kVbRJLfBqtayZiS+V/V/33fi1qdoHtz/aJ31HxAz65H0leQED0WGPOrLlPM++Ova
rnQrNOMHCgQ+XwvChK7ydxej5OTLgJZs3NlvaN5K/CPbSZ64v5CPkQzX5tYDRdt1
Q7IcQusIXiLVs/dW5CZrRWyYL5ozuop26bbTBQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGqQMvh0XKJT0CbKaLwSc+rle85SMB8GA1UdIwQYMBaAFOG9zLJFChoFPInM
IT5K6bhkeC3jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NGIzTXNrVUtHZ1U4aWN3aFBrcnB1R1I0TGVNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83Yi8zNThiZTktMTkyZC00YWU5LWI0YmQtZWVkNTU2YWYyYzdmLzEv
YXBBeS1IUmNvbFBRSnNwb3ZCSno2dVY3emxJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8z
NThiZTktMTkyZC00YWU5LWI0YmQtZWVkNTU2YWYyYzdmLzEvNGIzTXNrVUtHZ1U4
aWN3aFBrcnB1R1I0TGVNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWNqMMA0GCSqGSIb3DQEBCwUAA4IB
AQAD1397/8IcG/1gmDFmIVIijG/clwlHBWuuqhq+vfnzjKRETUEEBvdGF+WLTzuA
mzxmKW8JH6kKus4q07qwCfM66F16fniucF2yQchy1IkktRKSB9SR3Vo6CmhUiPWP
nDxJzZLLfbKAwIuPyRRfw9ZQ+u6fTdIIcFFYJiF7mRH9ZBS5vIqlicoPaapEpebH
R8VT6HvN1BHSGZdUuLRiYASCQTmoRQHi1/Q9TQkmXjSZrCe6ZA6WsO7i6CwSXI40
I8REDqlhauTuWPjBwYJFH/apcrkG7cqzlA+Pz7XQt3+D4jZcdnYFYkSwezfNKAuq
2Pn80ZaRLoSdXEj1obq5oXqb
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:20 2023 by rpki-client on console-fra.rpki-client.org