Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/f-4F1nWuKCT2oyWQm13_9zSKxpo.roa
File: f-4F1nWuKCT2oyWQm13_9zSKxpo.roa (raw, json)
Hash identifier: REyIH0Cj9Qi3nnSjtQC10CgyuFobzGokfaxy0hdO7HI=
Subject key identifier: 7F:EE:05:D6:75:AE:28:24:F6:A3:25:90:9B:5D:FF:F7:34:8A:C6:9A
Certificate issuer: /CN=2e43dac8ea55693439dd1b8b4812ba71834f1031
Certificate serial: 0417C07D
Authority key identifier: 2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/f-4F1nWuKCT2oyWQm13_9zSKxpo.roa
Signing time: Tue 12 Apr 2022 07:39:07 +0000
ROA not before: Tue 12 Apr 2022 07:39:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209275
IP address blocks: 88.214.40.0/24 maxlen: 24
88.214.42.0/24 maxlen: 24
185.225.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68665469 (0x417c07d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e43dac8ea55693439dd1b8b4812ba71834f1031
Validity
Not Before: Apr 12 07:39:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fee05d675ae2824f6a325909b5dfff7348ac69a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:89:b2:32:26:c8:e6:58:67:ae:f4:92:bd:95:
c6:18:db:ed:77:02:d0:f6:e3:f2:f1:eb:40:e0:34:
00:97:ca:7c:c3:a9:61:c1:e8:5c:38:bc:b2:45:b3:
13:0f:72:ee:fb:6e:1e:7e:0a:95:27:fc:19:21:36:
9f:19:f0:e6:ad:c0:77:64:da:d2:f5:73:e5:7f:af:
58:dd:e2:c4:df:2a:b6:6b:5e:60:e2:a8:42:1a:f5:
07:19:ed:5d:e2:e0:8c:bb:2c:de:67:d6:22:69:d3:
df:a2:7a:ba:63:6f:77:d5:1b:d1:fa:5b:78:a6:63:
10:4f:46:25:f1:95:3c:c8:46:f8:32:c1:ae:c8:f1:
f7:f1:24:ed:89:71:74:98:e9:82:fa:5d:ef:3b:2f:
64:93:5a:17:1b:88:41:7b:ec:1f:a0:c7:78:4d:2b:
e9:f1:84:c3:58:ca:06:45:a3:cd:bc:b4:61:38:fb:
1f:6e:ea:1d:df:0d:20:4b:5d:8f:c0:38:ba:d5:37:
ae:db:df:6b:d9:84:54:45:8e:ae:a2:47:bf:9a:04:
41:44:98:9e:a7:56:8e:6f:18:8a:c0:b8:07:95:08:
9e:50:2b:51:e7:38:fe:9d:1a:fb:71:bb:a6:ed:2c:
98:3f:e4:ad:96:58:4a:e7:e9:84:16:9a:eb:ee:ff:
a5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EE:05:D6:75:AE:28:24:F6:A3:25:90:9B:5D:FF:F7:34:8A:C6:9A
X509v3 Authority Key Identifier:
keyid:2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/f-4F1nWuKCT2oyWQm13_9zSKxpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/LkPayOpVaTQ53RuLSBK6cYNPEDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.40.0/24
88.214.42.0/24
185.225.198.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ee:34:1b:ff:91:68:d1:11:25:13:0a:aa:d1:a5:9b:eb:25:
7b:0b:b8:39:80:6d:11:72:35:63:84:52:96:48:36:13:29:45:
36:4e:26:61:7e:bb:3f:e5:5d:84:ae:a3:db:1b:94:ce:d4:a8:
0b:dc:48:43:b0:4d:d6:d0:6d:df:9c:9f:bd:e5:20:32:39:ce:
fb:02:3d:4d:32:ca:78:92:79:50:18:76:cf:b7:8f:d8:4b:d0:
6c:c8:c7:34:1e:61:63:24:3d:0a:a7:25:56:a7:31:dc:0f:97:
d1:fb:a6:54:a4:6e:c7:4c:7e:d6:f7:98:91:8d:84:0f:74:82:
87:22:cc:36:13:f3:fc:e0:68:3e:83:be:c4:74:4f:ab:3e:a3:
87:37:c1:2a:22:fa:75:25:0b:bc:c3:d5:a1:07:61:24:44:d8:
5a:17:b3:b6:02:7e:c5:2b:29:3d:d2:24:ab:29:2a:d3:00:68:
65:31:b2:c4:17:ed:68:6f:3c:5a:98:66:66:03:46:cc:ae:2a:
5e:55:c6:44:27:25:1f:5e:9e:7a:5a:1b:69:45:46:5d:25:95:
c2:87:c7:e3:82:ed:fb:bb:9b:70:d8:04:c0:60:18:77:86:d5:
04:b5:72:9a:be:b0:11:57:79:4a:27:a3:53:0f:4d:48:11:b3:
75:64:89:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org