Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xIM0U4xEj68f0Pnn3yxH00jSc2U.roa
File: xIM0U4xEj68f0Pnn3yxH00jSc2U.roa (raw, json)
Hash identifier: RskKAcPYCIi/BPCPeJgcscNSVEIqE0qQ+eIZJ74jMh4=
Subject key identifier: C4:83:34:53:8C:44:8F:AF:1F:D0:F9:E7:DF:2C:47:D3:48:D2:73:65
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0183D7CD43322F3C05E09908638144BACEA8
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xIM0U4xEj68f0Pnn3yxH00jSc2U.roa
Signing time: Fri 14 Oct 2022 18:41:37 +0000
ROA not before: Fri 14 Oct 2022 18:41:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d7:cd:43:32:2f:3c:05:e0:99:08:63:81:44:ba:ce:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Oct 14 18:41:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c48334538c448faf1fd0f9e7df2c47d348d27365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b6:77:60:12:13:40:c1:c5:e5:f4:67:d3:8c:
eb:e8:c4:ae:48:a1:29:70:a9:00:fc:c4:4e:54:5a:
42:ed:c4:11:5f:c6:7a:64:74:ef:c2:9b:91:7f:e7:
e7:10:20:97:f9:0a:db:02:93:00:75:3a:3f:df:05:
2b:77:e7:30:47:bd:54:14:2f:09:a1:f9:aa:60:2d:
c2:8d:00:f1:dd:9b:9e:66:fc:dc:13:e5:81:79:85:
52:22:ff:06:c0:4b:f6:5f:00:48:82:6c:34:14:3b:
b4:0d:f2:e7:83:b4:60:2b:a7:2e:2e:28:56:c5:64:
c4:a7:1a:ae:2d:8e:74:6c:b2:2d:2a:8f:8f:2a:b9:
88:08:98:4a:a4:19:cf:15:48:3c:4e:78:11:74:d3:
3b:a4:57:b5:bd:36:88:51:ea:74:96:f7:a1:c0:28:
d2:e3:3c:c5:86:eb:d3:f0:ab:e4:c2:c2:f5:cd:35:
0e:4a:0a:f2:40:17:92:11:5b:fe:ae:80:93:22:3a:
77:9b:0c:59:97:12:0e:b4:76:32:c9:79:c8:7a:b8:
7e:fa:95:91:69:34:28:62:24:82:5d:b8:2c:88:13:
4e:57:2f:a1:c4:2f:8d:3b:e6:18:b4:df:9d:0f:81:
83:7b:4b:70:71:7b:29:24:19:b1:43:ee:1e:ed:c6:
c4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:83:34:53:8C:44:8F:AF:1F:D0:F9:E7:DF:2C:47:D3:48:D2:73:65
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/xIM0U4xEj68f0Pnn3yxH00jSc2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
44:9e:e3:f1:7d:46:f4:b3:f7:9c:80:d2:0e:5e:f9:86:6d:9a:
3c:6d:e8:02:11:10:d6:c6:53:b1:65:5a:d0:2c:fb:52:61:25:
4b:23:51:b5:62:03:52:e4:d8:dd:92:73:96:b5:87:0a:98:8d:
c0:cc:12:55:a6:d9:74:02:c7:f5:bb:1e:41:cf:99:29:85:b3:
c0:ce:44:bc:f2:17:a5:1c:aa:41:14:73:64:fb:68:2d:e4:cb:
66:8b:5a:5a:85:e2:ae:d8:68:60:39:2f:fc:02:b2:80:53:c2:
ca:a0:e2:1e:4c:a9:f0:82:07:21:f7:13:28:46:44:a4:3a:7e:
28:78:fe:67:57:4b:5a:66:15:73:f1:4c:c0:4e:eb:63:76:48:
b5:ba:65:e1:1c:70:bf:88:1d:1a:d1:9c:74:f1:74:bc:37:9e:
8a:b3:7b:e1:3c:78:f4:a4:e8:87:de:7d:36:ff:69:35:67:36:
fa:6e:43:71:1d:38:74:e5:73:07:4e:30:b7:30:40:8f:df:1a:
1c:69:7c:21:22:09:80:79:0b:f8:6d:10:bf:6c:93:6c:c3:08:
ee:96:0e:11:54:2b:44:a4:88:ed:cb:2a:4b:92:d1:ac:9b:f6:
7d:7b:da:ee:15:0b:04:e2:f1:54:28:71:6d:86:a2:b3:9f:0d:
e7:10:42:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org