Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/NS8bxCmLMTDJTJf6eOGRXOQtUyI.roa
File: NS8bxCmLMTDJTJf6eOGRXOQtUyI.roa (raw, json)
Hash identifier: 6qExUja57SqBbSem/R6mzCifpCnkIajtz9/c2+1XoQ4=
Subject key identifier: 35:2F:1B:C4:29:8B:31:30:C9:4C:97:FA:78:E1:91:5C:E4:2D:53:22
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 0183F1949BD5BE53D600324D5A3E5788DBF9
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/NS8bxCmLMTDJTJf6eOGRXOQtUyI.roa
Signing time: Wed 19 Oct 2022 18:49:51 +0000
ROA not before: Wed 19 Oct 2022 18:49:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60240
IP address blocks: 88.218.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f1:94:9b:d5:be:53:d6:00:32:4d:5a:3e:57:88:db:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Oct 19 18:49:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=352f1bc4298b3130c94c97fa78e1915ce42d5322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:05:e4:09:83:b7:07:3e:07:32:d5:29:c6:65:
31:df:61:4a:da:50:61:f5:d6:fa:ff:12:d8:c6:b7:
d1:44:96:2e:e7:d1:7e:21:60:9d:8e:d7:f3:d1:8e:
ba:06:f5:98:36:30:1c:1a:87:f1:ba:af:0a:64:40:
e2:31:5a:2c:8f:3f:80:af:a2:24:a3:0c:de:2a:ea:
57:22:e4:f7:6d:97:c8:7e:40:1b:85:6d:ea:17:c5:
e4:2c:dc:4a:e7:47:91:16:17:40:b5:da:a0:9a:60:
7c:d3:84:9a:fd:9c:3d:b0:b6:d5:09:4b:c1:18:cb:
76:f4:14:88:aa:b7:36:aa:aa:9f:cb:10:37:1d:6f:
0a:1f:1f:d4:8c:27:2a:11:07:d0:48:ee:98:a8:f1:
90:34:30:d6:59:0a:75:db:37:5a:ce:05:c4:33:a3:
67:9c:3b:06:3c:3d:5b:bc:be:26:6a:1f:0a:2f:df:
fd:4b:7b:c9:99:6b:4d:1f:ab:52:8f:f7:52:3e:60:
34:49:ed:2a:cd:cc:6e:31:e6:c3:a7:7a:b0:7d:de:
a4:b4:56:3f:3e:53:29:3c:f6:24:f7:f9:84:7b:9f:
7e:c4:81:f5:29:e1:8a:16:96:9c:2f:1b:5d:54:f3:
34:48:10:ed:5c:11:e8:81:f9:d6:d7:13:17:dc:49:
25:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2F:1B:C4:29:8B:31:30:C9:4C:97:FA:78:E1:91:5C:E4:2D:53:22
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/NS8bxCmLMTDJTJf6eOGRXOQtUyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.16.0/24
Signature Algorithm: sha256WithRSAEncryption
26:89:88:81:1b:d0:a9:4a:6b:10:31:e2:6f:02:4a:f6:2b:15:
cd:23:51:8b:e9:15:c6:2b:ae:41:7a:53:fb:4b:88:55:a7:f9:
1f:92:92:2e:37:bf:98:9a:08:d4:81:33:31:ab:56:98:62:9b:
95:bc:78:85:3a:55:28:ba:39:54:30:98:6e:73:fa:e7:9c:db:
70:63:f8:de:4e:dc:4e:41:e5:d3:04:53:49:18:8d:7f:26:6f:
3d:ad:cb:16:a0:6f:67:9e:8f:04:9f:cf:b1:34:fb:21:55:8b:
d7:59:3e:31:0f:a1:70:20:21:47:37:f0:90:15:e7:6f:c2:e2:
35:33:a1:50:ce:1f:a2:19:12:f3:6c:83:63:fb:a0:e3:02:42:
29:32:ac:1e:1e:0e:ce:1a:a7:d8:2f:78:e5:91:73:16:a7:ab:
2d:77:95:42:75:fb:c1:f9:ca:1e:46:37:00:08:8a:9c:54:c4:
15:9f:32:b4:25:15:b1:6e:64:0a:4d:60:c4:16:c3:15:75:9e:
e5:af:5c:b2:5c:1b:39:70:5f:42:ea:11:1c:71:8d:c7:20:f0:
1f:5a:26:37:0a:09:a9:15:0d:50:6f:0a:cc:f1:95:9e:d2:12:
dd:e2:4c:55:ca:84:2c:a5:26:4d:29:9f:52:8a:62:24:6b:30:
f7:55:4b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org