Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/P7Z5b_2nMNmXdrFnggD-OP5wAqs.roa
File: P7Z5b_2nMNmXdrFnggD-OP5wAqs.roa (raw, json)
Hash identifier: s5jfxhdYq4D4/eGfqDVVEc2KYVve9AhcBUYYS2s/tuA=
Subject key identifier: 3F:B6:79:6F:FD:A7:30:D9:97:76:B1:67:82:00:FE:38:FE:70:02:AB
Certificate issuer: /CN=2e43dac8ea55693439dd1b8b4812ba71834f1031
Certificate serial: 0411EF8C
Authority key identifier: 2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/P7Z5b_2nMNmXdrFnggD-OP5wAqs.roa
Signing time: Mon 11 Apr 2022 14:40:05 +0000
ROA not before: Mon 11 Apr 2022 14:40:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209275
IP address blocks: 88.214.40.0/24 maxlen: 24
88.214.42.0/24 maxlen: 24
185.225.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68284300 (0x411ef8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e43dac8ea55693439dd1b8b4812ba71834f1031
Validity
Not Before: Apr 11 14:40:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fb6796ffda730d99776b1678200fe38fe7002ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1d:c7:a3:0f:4c:00:1d:56:48:3e:a2:7d:ac:
d4:c0:30:fd:2f:5d:d8:ae:47:17:c8:5f:2c:44:4c:
cc:0f:f4:62:9f:f9:86:6f:a1:35:35:6a:f3:d4:cd:
c5:d0:d1:0f:b6:e8:bc:3f:cb:7e:05:a5:fa:c9:24:
c5:6a:eb:85:85:e7:df:55:d4:94:d7:72:15:a0:17:
f2:31:47:a8:b0:c6:5d:a2:ac:f8:1b:7a:5b:5d:16:
d9:0c:29:5c:f2:14:29:7c:12:f4:92:f9:be:b0:2f:
0d:e8:b8:1b:1b:91:04:c2:91:90:30:46:28:7e:f4:
a8:7f:b7:0a:1e:bb:25:9b:56:9d:bd:68:87:fd:7e:
ea:25:2b:1d:bc:a8:8d:d8:05:85:0d:05:0e:b3:88:
e3:f2:fc:a1:f5:52:8b:e7:94:f4:8c:c3:31:5f:fb:
81:83:b7:95:01:1d:84:51:c6:6f:07:2b:42:33:a6:
cd:99:f3:1c:f9:39:63:30:2b:be:bf:c8:48:f6:39:
be:f5:16:1d:c3:18:e8:28:03:ba:d4:20:e4:ed:64:
95:7f:70:03:53:fb:07:7d:16:07:4f:5c:12:5b:36:
c5:83:76:26:0a:54:49:70:be:7f:c1:13:96:f9:7c:
ca:c4:92:8c:59:8a:49:bd:b2:53:9a:5a:63:21:ac:
b8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B6:79:6F:FD:A7:30:D9:97:76:B1:67:82:00:FE:38:FE:70:02:AB
X509v3 Authority Key Identifier:
keyid:2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/P7Z5b_2nMNmXdrFnggD-OP5wAqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/LkPayOpVaTQ53RuLSBK6cYNPEDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.40.0/24
88.214.42.0/24
185.225.198.0/24
Signature Algorithm: sha256WithRSAEncryption
66:9e:d6:1c:62:46:d3:b6:00:ef:e9:9e:c9:c6:9c:d9:58:dc:
84:62:99:06:3e:48:b1:56:a8:72:cb:52:37:20:c3:de:18:f2:
80:c2:8c:88:dd:c8:75:ab:40:30:b9:46:33:7c:80:6d:fa:f6:
9f:04:46:5f:81:ef:9f:c5:22:e6:5e:d5:a2:99:ae:38:66:35:
05:0a:8a:77:d8:58:2c:dd:7f:8d:87:63:6f:6e:d2:36:99:60:
9f:14:de:f4:fc:e7:1d:0a:35:f1:2b:b3:19:25:fe:cc:34:37:
a6:9c:27:5b:7b:dd:f7:25:08:2f:fc:98:d8:56:5f:fc:0c:55:
9e:2e:39:cd:03:3c:1a:a3:d9:bb:9c:5e:ce:67:b7:61:0c:61:
94:f1:6f:6d:4c:40:d7:82:f4:69:67:53:5e:6d:60:63:0b:71:
b7:a9:27:d0:b0:24:0e:76:6c:c0:ca:53:f0:ff:26:6f:ae:92:
64:ce:96:22:40:af:d1:34:a4:27:25:fc:fd:2b:f3:73:1a:32:
51:ec:f9:d5:18:ff:c3:d2:77:ea:b8:9a:00:b5:ab:40:68:34:
1c:86:e1:0b:f0:49:f7:bc:bb:d3:8e:77:1a:f3:99:59:5f:24:
92:70:50:6c:9f:07:49:6a:c0:ad:f1:a9:23:97:7b:0f:a4:0d:
43:f4:f7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org