Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/88WpMvYEe0JJJLVb91v3ojoi5Fk.roa
File: 88WpMvYEe0JJJLVb91v3ojoi5Fk.roa (raw, json)
Hash identifier: ma0sEABjAp5yTM9HZCN9d/El1BlWahtRuWoW3LMYUro=
Subject key identifier: F3:C5:A9:32:F6:04:7B:42:49:24:B5:5B:F7:5B:F7:A2:3A:22:E4:59
Certificate issuer: /CN=41fe6d0102998c386f8d856fa5f91d7ad3ab4d77
Certificate serial: 018258DB4C7F8ECC7A1F42DD420706CC58F0
Authority key identifier: 41:FE:6D:01:02:99:8C:38:6F:8D:85:6F:A5:F9:1D:7A:D3:AB:4D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qf5tAQKZjDhvjYVvpfkdetOrTXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/88WpMvYEe0JJJLVb91v3ojoi5Fk.roa
Signing time: Mon 01 Aug 2022 10:02:23 +0000
ROA not before: Mon 01 Aug 2022 10:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200060
IP address blocks: 161.54.0.0/16 maxlen: 16
2001:67c:2780::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:db:4c:7f:8e:cc:7a:1f:42:dd:42:07:06:cc:58:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fe6d0102998c386f8d856fa5f91d7ad3ab4d77
Validity
Not Before: Aug 1 10:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3c5a932f6047b424924b55bf75bf7a23a22e459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f6:21:0a:fb:36:bd:e7:5c:a2:cd:ec:f7:8e:
b5:25:8d:fe:92:db:05:38:df:e7:64:d0:c5:30:73:
7b:9b:83:a7:db:c5:d3:ee:35:c9:c0:cf:d1:3c:0a:
c6:83:a3:a6:58:df:c0:8a:a3:56:d6:22:17:49:93:
ce:58:fa:ee:27:4c:5e:2f:87:05:19:b8:55:9f:c4:
fc:28:ba:08:59:11:c3:c9:8a:b8:9e:92:8c:16:f0:
7a:98:ce:97:19:57:d8:1e:f8:b9:57:cd:e1:f2:b5:
47:11:93:c3:48:f9:c8:54:1e:c9:a8:61:d0:38:a9:
59:39:d6:b3:9e:89:da:9f:f4:f3:7b:4c:1e:62:be:
41:70:3a:77:a3:ff:2e:9b:14:aa:5c:ab:ad:43:24:
1f:79:04:57:7f:e5:0a:93:e7:4d:72:82:f9:1c:db:
3f:59:38:21:63:74:cc:2f:a5:70:0c:fd:f7:0f:22:
41:e6:94:dc:6f:02:4e:3b:03:6c:1d:4f:97:76:3c:
3a:12:68:9f:07:9c:f5:d1:45:da:cc:00:37:65:46:
4e:51:a8:98:f9:54:56:94:73:10:09:47:ba:31:91:
21:a0:49:e4:28:9e:41:6c:62:c4:d9:91:07:8f:d1:
3a:a4:f2:90:20:93:25:25:ce:c6:60:b4:95:94:6e:
ea:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C5:A9:32:F6:04:7B:42:49:24:B5:5B:F7:5B:F7:A2:3A:22:E4:59
X509v3 Authority Key Identifier:
keyid:41:FE:6D:01:02:99:8C:38:6F:8D:85:6F:A5:F9:1D:7A:D3:AB:4D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qf5tAQKZjDhvjYVvpfkdetOrTXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/88WpMvYEe0JJJLVb91v3ojoi5Fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/12fe03-a2d4-4ab4-94ba-8cb6d0e5cce2/1/Qf5tAQKZjDhvjYVvpfkdetOrTXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.54.0.0/16
IPv6:
2001:67c:2780::/48
Signature Algorithm: sha256WithRSAEncryption
41:d9:5b:4c:33:ae:b4:85:04:51:f7:79:db:cd:69:d1:09:1c:
d5:c4:55:01:2b:83:62:d0:6f:a6:ef:a9:38:3a:07:2a:02:12:
93:58:5f:2c:24:73:69:69:81:78:9b:8b:07:f2:8f:18:72:21:
d3:ae:24:20:d2:d4:09:f9:94:9c:6f:ce:d0:9f:72:e9:ec:d1:
9b:af:0a:ee:2d:64:1a:d9:9a:d9:27:9b:66:0f:98:c3:8d:80:
7e:c4:7d:73:ac:48:85:bb:da:74:57:4f:cd:db:de:de:e8:18:
05:7b:61:fc:14:17:09:77:c9:9b:bf:56:87:fa:9f:38:38:b6:
75:54:13:ab:83:7c:68:f4:8f:4e:87:d9:73:bc:6a:63:0c:c7:
12:b5:c3:3a:cb:45:d0:32:7b:0e:cd:4c:51:9c:7c:09:dc:73:
d3:87:a3:63:c3:ba:4d:9e:86:d9:23:a6:57:dd:d0:47:28:5f:
13:f5:d3:8d:e8:9e:a8:eb:db:c1:ab:db:0c:29:83:22:01:27:
c3:10:49:36:45:a3:88:1b:7d:b4:59:60:54:20:d5:ce:9e:7d:
53:b6:7d:1d:2b:88:fa:77:c8:fa:4f:63:8d:ae:a4:a1:9b:10:
89:73:6c:ea:c9:69:2a:a3:ec:c4:fc:a6:34:ed:6d:05:db:8c:
21:63:e6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-fra.rpki-client.org