Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/oq8sX2x6z1ikte9vmO6RoDoTLUE.roa
File: oq8sX2x6z1ikte9vmO6RoDoTLUE.roa (raw, json)
Hash identifier: NPeNQT8pegFE9qQvKKDW3kNaptW96XDM+QRrH03H150=
Subject key identifier: A2:AF:2C:5F:6C:7A:CF:58:A4:B5:EF:6F:98:EE:91:A0:3A:13:2D:41
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 09DFF8BA
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/oq8sX2x6z1ikte9vmO6RoDoTLUE.roa
Signing time: Sat 01 Jan 2022 06:54:34 +0000
ROA not before: Sat 01 Jan 2022 06:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41870
IP address blocks: 88.80.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165673146 (0x9dff8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Jan 1 06:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2af2c5f6c7acf58a4b5ef6f98ee91a03a132d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6a:fe:ea:48:de:b2:91:de:b2:47:5e:eb:97:
07:fc:7d:cb:2b:17:e0:aa:ae:8f:91:3f:c7:36:13:
73:e0:b8:82:4f:da:39:f6:a6:a5:4a:11:fe:7b:38:
75:53:0f:27:96:c7:6f:ea:0b:6d:62:3e:77:93:dd:
77:d4:06:28:82:1d:c3:bf:64:25:3f:63:4e:18:12:
03:fb:05:af:1f:c6:1d:96:1e:d4:d6:b9:f8:3a:27:
b8:0a:61:73:e6:51:6f:13:c5:e4:4e:38:59:67:31:
d7:33:81:73:68:7c:04:11:17:ae:90:19:a8:85:26:
15:60:5e:f4:72:3f:51:37:36:97:33:15:be:47:1a:
4d:c2:23:9f:86:34:7d:8c:45:cc:d2:5d:9f:5f:6c:
2c:b0:fd:38:55:1d:57:54:a4:c3:3f:5f:c2:3c:54:
c1:96:7a:7e:ec:35:0a:c5:46:83:83:43:09:fd:b6:
bc:e4:b7:38:c2:03:fa:36:31:09:e6:4d:b4:95:3e:
81:1e:13:49:bf:b0:cf:9d:e5:86:6d:73:e8:cd:be:
08:88:5b:6a:a3:f0:c8:62:e9:d7:b5:7a:09:41:dd:
9f:d2:45:e1:8b:c2:30:d1:7d:38:0a:f4:00:48:3e:
d7:26:ba:cb:31:81:1d:72:ef:ee:47:7d:8b:62:e7:
ee:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AF:2C:5F:6C:7A:CF:58:A4:B5:EF:6F:98:EE:91:A0:3A:13:2D:41
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/oq8sX2x6z1ikte9vmO6RoDoTLUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.150.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:c2:cd:62:ee:0a:c3:e4:20:4a:8f:1f:ff:00:26:b7:65:4f:
04:c7:00:fe:40:32:e5:2d:4a:e1:88:bb:e9:9e:6c:3b:f1:9b:
73:e2:6b:e8:01:82:71:03:94:1f:61:26:20:ba:52:2e:b9:86:
71:4d:a4:18:11:cb:18:10:6d:22:50:6c:74:4b:5c:55:1d:6a:
81:35:2c:d5:cd:7b:1b:1a:ab:61:2c:77:c9:99:6c:a3:ac:8f:
3e:09:4b:0d:d5:7c:fa:bb:56:8a:45:ad:a1:c4:bd:b0:4e:92:
06:14:17:4f:af:7a:0d:a4:0b:e1:3c:0e:6d:da:af:ac:a3:3e:
01:91:c1:9b:7f:de:ba:f7:08:fa:15:b5:16:e7:9d:a5:78:6d:
ee:54:7c:72:fe:49:d6:c5:11:21:be:57:02:c0:e3:68:50:00:
88:98:25:0b:f6:21:2e:2c:d6:91:10:86:20:71:46:b0:51:07:
d7:64:21:77:75:5c:1e:0a:d9:8d:a7:37:22:ed:b5:af:81:1f:
2b:08:7a:e9:73:19:52:59:3b:4d:01:c5:43:3d:53:25:ce:a8:
84:be:18:64:49:7d:8b:ba:da:89:14:67:7a:7c:ff:9c:1c:63:
64:f4:c2:79:86:dd:b3:72:20:a8:65:b9:3c:03:b1:8e:c9:82:
d7:eb:78:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:56 2024 by rpki-client on console-ams.rpki-client.org