Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/8xs2GQjY_6RbjXTVtauT_zKvKcQ.roa
File: 8xs2GQjY_6RbjXTVtauT_zKvKcQ.roa (raw, json)
Hash identifier: OnxholkeXX5y/XM9kxZ5hPcv5PPmagMsXXZ8w1XTK5o=
Subject key identifier: F3:1B:36:19:08:D8:FF:A4:5B:8D:74:D5:B5:AB:93:FF:32:AF:29:C4
Certificate issuer: /CN=4732d0fce83fb67382ceace3756c8b13c0a95c98
Certificate serial: 3F38
Authority key identifier: 47:32:D0:FC:E8:3F:B6:73:82:CE:AC:E3:75:6C:8B:13:C0:A9:5C:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/8xs2GQjY_6RbjXTVtauT_zKvKcQ.roa
Signing time: Thu 23 Jun 2022 08:55:24 +0000
ROA not before: Thu 23 Jun 2022 08:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213193
IP address blocks: 88.218.157.0/24 maxlen: 24
88.218.158.0/24 maxlen: 24
88.218.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16184 (0x3f38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4732d0fce83fb67382ceace3756c8b13c0a95c98
Validity
Not Before: Jun 23 08:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f31b361908d8ffa45b8d74d5b5ab93ff32af29c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9b:33:e8:90:e7:6d:45:24:98:ca:cb:22:73:
d0:ed:ab:0f:fd:01:ef:d2:9e:0e:a4:01:a5:df:d2:
f1:af:7c:95:f1:65:5e:26:09:4e:1b:0f:8b:13:1e:
ff:b4:91:24:e8:ad:99:00:47:bf:1f:3b:bc:51:9e:
91:59:80:1a:7e:a1:1f:26:05:b2:e6:b0:22:e0:6b:
cd:6a:c6:12:60:39:8a:3b:b9:cb:59:1d:bb:c2:ba:
28:16:c8:85:20:a7:62:17:43:0b:e8:08:39:10:9c:
7f:b7:cf:28:f2:7c:bb:f0:8a:0b:c4:26:18:ea:a3:
85:30:63:3a:30:a6:cc:5f:0a:6f:5e:88:9b:f5:70:
23:92:bb:40:0e:94:8c:5c:52:2f:04:c6:d5:20:b2:
14:e5:e8:94:fb:2c:bb:e5:62:b9:c9:da:28:18:8f:
dc:4b:f5:2e:f3:df:57:22:99:6c:de:28:c3:9d:b7:
54:58:6a:99:50:bb:63:1c:ef:fb:98:c0:34:fb:41:
89:09:76:d3:ad:50:34:77:34:2f:9b:e9:9c:da:d8:
0e:83:1b:53:a3:25:70:5e:ac:58:8c:15:dc:08:89:
aa:b8:3a:89:59:6b:c0:37:51:e4:6c:c4:f9:50:bc:
ff:70:b0:37:bd:e8:da:dc:86:ce:a1:96:d1:29:a8:
93:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:1B:36:19:08:D8:FF:A4:5B:8D:74:D5:B5:AB:93:FF:32:AF:29:C4
X509v3 Authority Key Identifier:
keyid:47:32:D0:FC:E8:3F:B6:73:82:CE:AC:E3:75:6C:8B:13:C0:A9:5C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/8xs2GQjY_6RbjXTVtauT_zKvKcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.156.0-88.218.158.255
Signature Algorithm: sha256WithRSAEncryption
27:68:f3:a5:94:39:b7:5a:e7:03:f0:64:dc:6b:e3:ba:7c:2c:
0e:4c:2d:99:67:7d:45:b7:c3:6a:c3:6b:6a:4e:87:9f:7e:2e:
2a:aa:93:d2:23:44:ec:7b:96:f3:80:39:68:93:1d:4d:cc:2a:
15:47:3a:24:ea:69:22:dd:a0:3e:a9:35:41:8e:32:99:6f:7c:
5e:a6:76:1c:d6:35:95:c2:ef:7f:b5:a8:27:ad:5f:f0:29:8a:
a2:67:00:86:cf:af:74:ce:2a:d4:c6:4c:fe:c7:55:17:68:6b:
d0:2f:cb:1f:30:16:81:21:d2:51:16:4a:25:48:24:85:ed:59:
94:4c:f4:1e:b8:87:a2:c4:e3:89:2f:a5:38:1b:9c:fa:a4:19:
82:03:be:11:85:81:14:26:90:17:2f:fa:5e:a2:fe:ee:de:53:
02:db:6e:6d:76:ac:7a:95:4c:46:65:33:f3:23:71:43:c0:de:
88:92:09:a4:f0:74:a7:85:78:4b:95:49:11:dc:96:ff:d2:cc:
21:fd:92:91:6a:2f:77:5f:26:dd:d3:b0:61:34:df:e2:40:fa:
81:b9:57:f2:7e:07:1c:59:ba:b5:00:59:d4:fc:9f:cd:73:c1:
31:35:36:9c:a1:70:c1:d7:b2:12:81:51:69:4c:82:ae:bf:b8:
7f:3c:e7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:03 2024 by rpki-client on console-ams.rpki-client.org