Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/7f1f29-1242-41f4-a090-0d8fce3ebfbb/1/D2E3Fr7aBXJkmIhk8Ixj99168eI.roa
File: D2E3Fr7aBXJkmIhk8Ixj99168eI.roa (raw, json)
Hash identifier: n0eTBsMx3nIjWG/bnqQFPV/2ajFj3Xk455HFPkGWW9o=
Subject key identifier: 0F:61:37:16:BE:DA:05:72:64:98:88:64:F0:8C:63:F7:DD:7A:F1:E2
Certificate issuer: /CN=8e1feb6b044bbf6111775bca038d65e6d2230f14
Certificate serial: 0181D3EF0F3AEF9563E426EA399CAA2F880D
Authority key identifier: 8E:1F:EB:6B:04:4B:BF:61:11:77:5B:CA:03:8D:65:E6:D2:23:0F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jh_rawRLv2ERd1vKA41l5tIjDxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/7f1f29-1242-41f4-a090-0d8fce3ebfbb/1/D2E3Fr7aBXJkmIhk8Ixj99168eI.roa
Signing time: Wed 06 Jul 2022 14:34:28 +0000
ROA not before: Wed 06 Jul 2022 14:34:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204076
IP address blocks: 88.210.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:ef:0f:3a:ef:95:63:e4:26:ea:39:9c:aa:2f:88:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1feb6b044bbf6111775bca038d65e6d2230f14
Validity
Not Before: Jul 6 14:34:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f613716beda057264988864f08c63f7dd7af1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ed:59:77:d1:f4:49:73:1e:f8:2b:2d:c4:e7:
77:17:9d:88:0c:fb:65:a2:f6:52:0a:df:ea:ed:6d:
52:c9:de:41:fd:de:48:95:c9:15:bf:93:fe:4a:44:
0f:38:8f:80:ea:96:51:83:df:66:6a:4b:8b:8a:87:
eb:73:37:c0:57:ea:81:9d:06:c8:a7:af:6a:27:84:
a9:0b:eb:2a:75:7f:cb:58:f1:4e:c6:f4:a2:30:af:
06:6c:1f:54:b7:ab:9d:4f:8d:1b:24:36:e3:96:37:
40:01:f8:4c:18:fd:f6:c9:fe:f8:75:b6:06:a1:b4:
82:fb:13:16:6f:d0:78:8f:ee:d2:3e:1f:2b:01:d9:
0b:27:cc:a2:86:a1:77:a7:50:d4:6e:f1:60:ec:7e:
e0:c6:48:c9:80:72:ce:8d:b1:16:10:8b:0a:0b:fc:
67:d2:f5:7c:14:7c:12:ab:9c:6c:6f:62:af:77:42:
86:0e:98:53:bc:48:48:c4:0b:69:d6:46:96:48:39:
d1:e2:93:b4:03:ee:88:20:30:20:ab:cb:ff:cc:3f:
41:10:6a:62:00:e6:a4:88:8e:a7:bf:70:b7:84:6a:
c9:bd:0f:31:87:bc:b8:21:7e:0b:94:ac:e9:c5:5d:
b2:f8:fd:9c:79:06:a4:c2:3c:2b:33:c1:9e:3f:45:
10:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:61:37:16:BE:DA:05:72:64:98:88:64:F0:8C:63:F7:DD:7A:F1:E2
X509v3 Authority Key Identifier:
keyid:8E:1F:EB:6B:04:4B:BF:61:11:77:5B:CA:03:8D:65:E6:D2:23:0F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jh_rawRLv2ERd1vKA41l5tIjDxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7f1f29-1242-41f4-a090-0d8fce3ebfbb/1/D2E3Fr7aBXJkmIhk8Ixj99168eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7f1f29-1242-41f4-a090-0d8fce3ebfbb/1/jh_rawRLv2ERd1vKA41l5tIjDxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.210.42.0/24
Signature Algorithm: sha256WithRSAEncryption
53:68:0b:76:38:04:8c:ba:34:ca:b9:37:c8:15:60:87:cf:af:
44:1a:e4:8f:d5:cc:69:bd:c6:17:2d:5b:d8:a1:14:e4:00:f4:
c8:67:20:09:79:b9:54:f2:e7:29:d0:13:43:3d:65:82:0f:5e:
15:be:00:7a:4c:eb:5a:63:fc:2d:cb:2a:7c:a3:fa:fe:27:7e:
32:8e:57:1a:bf:f6:d7:10:3a:c6:bd:72:5d:b5:28:b1:5b:20:
68:68:5f:e9:37:1e:a0:82:6b:9f:29:2b:e3:5a:71:e2:14:1a:
df:c7:45:24:0f:44:97:ac:0a:86:81:89:fa:b2:20:8f:26:34:
18:6a:48:86:b6:90:9e:5b:12:64:d9:63:bc:ff:5c:58:c4:9d:
0f:78:10:89:4a:92:b7:16:de:92:23:c5:b1:24:4b:df:13:a7:
33:41:d0:c4:2a:2f:73:f0:07:b3:a8:5e:fa:6b:2e:6b:79:99:
d2:46:95:c5:90:03:bd:98:da:c1:f2:53:98:73:52:09:b6:99:
cf:f6:33:35:12:81:01:09:80:b0:cb:4a:92:28:45:a3:01:3c:
a2:8b:2e:38:70:a9:11:9c:07:c6:88:2e:79:b4:ba:25:e1:cf:
c8:cd:c4:8a:bb:9e:c6:8d:96:32:fe:7c:28:26:92:2e:d8:7d:
a9:cc:a5:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHT7w8675Vj5CbqOZyqL4gNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMWZlYjZiMDQ0YmJmNjExMTc3NWJjYTAzOGQ2NWU2ZDIy
MzBmMTQwHhcNMjIwNzA2MTQzNDI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjYxMzcxNmJlZGEwNTcyNjQ5ODg4NjRmMDhjNjNmN2RkN2FmMWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlu1Zd9H0SXMe+CstxOd3F52IDPtl
ovZSCt/q7W1Syd5B/d5IlckVv5P+SkQPOI+A6pZRg99makuLiofrczfAV+qBnQbI
p69qJ4SpC+sqdX/LWPFOxvSiMK8GbB9Ut6udT40bJDbjljdAAfhMGP32yf74dbYG
obSC+xMWb9B4j+7SPh8rAdkLJ8yihqF3p1DUbvFg7H7gxkjJgHLOjbEWEIsKC/xn
0vV8FHwSq5xsb2Kvd0KGDphTvEhIxAtp1kaWSDnR4pO0A+6IIDAgq8v/zD9BEGpi
AOakiI6nv3C3hGrJvQ8xh7y4IX4LlKzpxV2y+P2ceQakwjwrM8GeP0UQcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA9hNxa+2gVyZJiIZPCMY/fdevHiMB8GA1UdIwQY
MBaAFI4f62sES79hEXdbygONZebSIw8UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamhfcmF3Ukx2MkVSZDF2S0E0MWw1dElqRHhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi83ZjFmMjktMTI0Mi00MWY0LWEwOTAt
MGQ4ZmNlM2ViZmJiLzEvRDJFM0ZyN2FCWEprbUloazhJeGo5OTE2OGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi83ZjFmMjktMTI0Mi00MWY0LWEwOTAtMGQ4ZmNlM2ViZmJi
LzEvamhfcmF3Ukx2MkVSZDF2S0E0MWw1dElqRHhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNIqMA0G
CSqGSIb3DQEBCwUAA4IBAQBTaAt2OASMujTKuTfIFWCHz69EGuSP1cxpvcYXLVvY
oRTkAPTIZyAJeblU8ucp0BNDPWWCD14VvgB6TOtaY/wtyyp8o/r+J34yjlcav/bX
EDrGvXJdtSixWyBoaF/pNx6ggmufKSvjWnHiFBrfx0UkD0SXrAqGgYn6siCPJjQY
akiGtpCeWxJk2WO8/1xYxJ0PeBCJSpK3Ft6SI8WxJEvfE6czQdDEKi9z8AezqF76
ay5reZnSRpXFkAO9mNrB8lOYc1IJtpnP9jM1EoEBCYCwy0qSKEWjATyiiy44cKkR
nAfGiC55tLol4c/IzcSKu57GjZYy/nwoJpIu2H2pzKWE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:01 2024 by rpki-client on console-ams.rpki-client.org