Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/EEx8gyqtSfB8gt99_vRUJrX8_r8.roa
File: EEx8gyqtSfB8gt99_vRUJrX8_r8.roa (raw, json)
Hash identifier: V4zaUEwYaU8zdO+L7DxB7jg3HzcrG9Gc327foqk/v5I=
Subject key identifier: 10:4C:7C:83:2A:AD:49:F0:7C:82:DF:7D:FE:F4:54:26:B5:FC:FE:BF
Certificate issuer: /CN=aca77c708af0ba1f81549c9f87089559390167a5
Certificate serial: 36AA726A
Authority key identifier: AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/EEx8gyqtSfB8gt99_vRUJrX8_r8.roa
Signing time: Sat 01 Jan 2022 04:03:43 +0000
ROA not before: Sat 01 Jan 2022 04:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24990
IP address blocks: 88.84.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917140074 (0x36aa726a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca77c708af0ba1f81549c9f87089559390167a5
Validity
Not Before: Jan 1 04:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=104c7c832aad49f07c82df7dfef45426b5fcfebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:07:9e:3a:e3:20:27:64:fa:30:8d:4a:01:b4:
88:cc:99:b7:9b:62:63:e0:68:72:1c:fb:e8:99:b2:
24:71:a1:9c:cd:9f:02:37:03:bc:13:fb:ff:13:cf:
e1:ec:a0:28:d8:a8:57:af:be:6c:9e:ff:49:f6:fc:
f7:c0:eb:5b:ee:12:bb:0b:26:9e:57:f4:6d:e3:24:
af:17:79:0b:86:5c:14:43:05:ba:28:cc:a1:c6:39:
13:17:0d:e8:3f:49:0b:19:26:a3:d5:bc:e3:05:27:
e3:1b:0a:c8:f3:bb:dd:63:6c:c4:02:41:9a:83:34:
8c:6f:27:0d:19:cf:cb:50:64:64:7b:9f:62:6c:36:
b3:86:6b:6d:9a:ac:ad:d0:ef:3f:0c:c4:2e:7a:4e:
ce:e2:91:c7:4e:07:a6:1f:ed:56:8a:20:99:03:a0:
74:34:65:68:6a:47:a5:28:47:9b:75:6a:a5:0f:15:
6d:a0:ee:a2:14:69:cb:15:8d:7f:be:c8:df:a4:84:
00:23:26:b1:fb:af:5b:42:e7:8c:5d:53:fd:c7:67:
61:e0:60:94:3f:85:68:30:2c:29:46:53:65:54:96:
41:27:31:88:d3:54:80:d1:4d:5a:d6:9b:2a:15:05:
1c:f0:86:0e:5a:a5:42:11:70:bb:09:cd:1a:c5:f4:
e0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4C:7C:83:2A:AD:49:F0:7C:82:DF:7D:FE:F4:54:26:B5:FC:FE:BF
X509v3 Authority Key Identifier:
keyid:AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/EEx8gyqtSfB8gt99_vRUJrX8_r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.84.144.0/21
Signature Algorithm: sha256WithRSAEncryption
57:30:a0:e1:48:75:a6:14:1f:95:21:09:2b:70:53:1e:5d:29:
06:fc:fe:19:03:1a:c5:16:d9:e9:59:e7:18:58:73:43:b2:2b:
bf:5d:b0:25:9c:03:04:80:24:3c:e7:b7:a5:62:d4:f7:18:d6:
7b:73:e2:65:94:b0:1b:ea:9b:0b:71:f6:f3:33:62:e1:91:83:
88:34:57:c4:5e:74:d7:7a:3b:51:03:31:10:39:d8:1b:8a:dd:
93:c0:3b:21:41:32:eb:f6:17:99:bb:4f:31:43:6e:fb:88:1d:
69:6e:cc:8e:09:c2:4c:7c:4b:4d:89:89:11:48:29:7b:ef:24:
c8:6a:f2:7b:0f:28:c3:71:5e:70:c3:34:14:57:54:78:ec:d5:
0b:3e:7d:3c:9a:c3:3b:cf:5a:37:e9:4b:5f:af:df:41:09:a5:
f8:b0:6b:4c:34:f0:da:d4:cf:ef:8c:29:03:5d:cd:cd:78:c0:
40:10:f1:34:95:8b:a0:9e:4a:ec:8b:27:c0:1e:d9:78:4f:68:
6e:91:77:46:02:6c:f0:13:5b:ec:dd:76:7b:be:cc:28:9b:b5:
0f:f4:eb:50:ec:0f:9b:b5:d2:89:b1:2f:77:0f:a6:85:0d:1c:
4e:ad:ad:22:b1:0b:73:36:22:59:16:0c:07:88:6d:b3:4a:a7:
a9:ed:1c:74
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENqpyajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Y2E3N2M3MDhhZjBiYTFmODE1NDljOWY4NzA4OTU1OTM5MDE2N2E1MB4XDTIyMDEw
MTA0MDM0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTA0YzdjODMyYWFk
NDlmMDdjODJkZjdkZmVmNDU0MjZiNWZjZmViZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOIHnjrjICdk+jCNSgG0iMyZt5tiY+Bochz76JmyJHGhnM2f
AjcDvBP7/xPP4eygKNioV6++bJ7/Sfb898DrW+4Suwsmnlf0beMkrxd5C4ZcFEMF
uijMocY5ExcN6D9JCxkmo9W84wUn4xsKyPO73WNsxAJBmoM0jG8nDRnPy1BkZHuf
Ymw2s4ZrbZqsrdDvPwzELnpOzuKRx04Hph/tVoogmQOgdDRlaGpHpShHm3VqpQ8V
baDuohRpyxWNf77I36SEACMmsfuvW0LnjF1T/cdnYeBglD+FaDAsKUZTZVSWQScx
iNNUgNFNWtabKhUFHPCGDlqlQhFwuwnNGsX04IsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQQTHyDKq1J8HyC333+9FQmtfz+vzAfBgNVHSMEGDAWgBSsp3xwivC6H4FU
nJ+HCJVZOQFnpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JLZDhjSXJ3dWgtQlZKeWZod2lWV1RrQlo2VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDUvOGZlN2Q4LTAxN2ItNDFhYS1hOTFmLTI4YjE5ZTNmZDRhNi8x
L0VFeDhneXF0U2ZCOGd0OTlfdlJVSnJYOF9yOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUv
OGZlN2Q4LTAxN2ItNDFhYS1hOTFmLTI4YjE5ZTNmZDRhNi8xL3JLZDhjSXJ3dWgt
QlZKeWZod2lWV1RrQlo2VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1hUkDANBgkqhkiG9w0BAQsFAAOC
AQEAVzCg4Uh1phQflSEJK3BTHl0pBvz+GQMaxRbZ6VnnGFhzQ7Irv12wJZwDBIAk
POe3pWLU9xjWe3PiZZSwG+qbC3H28zNi4ZGDiDRXxF5013o7UQMxEDnYG4rdk8A7
IUEy6/YXmbtPMUNu+4gdaW7MjgnCTHxLTYmJEUgpe+8kyGryew8ow3FecMM0FFdU
eOzVCz59PJrDO89aN+lLX6/fQQml+LBrTDTw2tTP74wpA13NzXjAQBDxNJWLoJ5K
7IsnwB7ZeE9obpF3RgJs8BNb7N12e77MKJu1D/TrUOwPm7XSibEvdw+mhQ0cTq2t
IrELczYiWRYMB4hts0qnqe0cdA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:27 2024 by rpki-client on console-fra.rpki-client.org