Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/pi-kgeDG4r5k5xVNMf5xE2Dquc0.roa
File: pi-kgeDG4r5k5xVNMf5xE2Dquc0.roa (raw, json)
Hash identifier: OqRWUGY6vOEWxM3+sODFaG7k/jIuCqZwIrY5h85C5Kg=
Subject key identifier: A6:2F:A4:81:E0:C6:E2:BE:64:E7:15:4D:31:FE:71:13:60:EA:B9:CD
Certificate issuer: /CN=7dbacb1fc2c2063042781631b517ce475233a2bd
Certificate serial: 131AB60C
Authority key identifier: 7D:BA:CB:1F:C2:C2:06:30:42:78:16:31:B5:17:CE:47:52:33:A2:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbrLH8LCBjBCeBYxtRfOR1Izor0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/pi-kgeDG4r5k5xVNMf5xE2Dquc0.roa
Signing time: Sat 01 Jan 2022 07:52:56 +0000
ROA not before: Sat 01 Jan 2022 07:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209288
IP address blocks: 185.88.64.0/22 maxlen: 22
185.88.67.0/24 maxlen: 24
185.88.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320517644 (0x131ab60c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbacb1fc2c2063042781631b517ce475233a2bd
Validity
Not Before: Jan 1 07:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a62fa481e0c6e2be64e7154d31fe711360eab9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4b:71:55:2e:6a:94:0f:11:3c:3e:56:eb:81:
e8:2e:25:4e:9f:cf:c3:f1:99:24:7b:d5:a2:76:22:
43:aa:db:24:b3:aa:60:69:64:49:5c:ed:50:54:ac:
ed:ba:50:e5:ad:fe:29:c2:a7:8c:d9:ea:5c:62:5a:
b4:4e:8a:4a:73:94:41:b5:d4:d8:75:ff:a2:04:c7:
19:a1:f0:67:38:2a:02:7b:1e:a5:93:0a:32:ca:8e:
a8:01:62:8f:b5:25:46:de:61:86:2a:1d:e8:41:d5:
9e:43:67:3e:b5:74:34:f7:ce:bf:92:f1:01:20:7f:
0a:3d:0d:14:8c:db:d6:0a:9f:5f:85:53:26:d6:ee:
ea:ac:38:04:f7:df:3c:62:19:f0:a8:6b:13:40:96:
91:af:25:76:98:06:de:55:03:7e:0c:ff:db:3e:48:
54:36:7e:42:8e:02:66:96:d8:ab:d4:07:73:2d:f6:
06:c3:6c:b6:bd:bb:79:fa:30:6d:c8:43:c6:ed:95:
a0:15:a1:ac:86:a8:0e:25:ad:6f:3c:91:43:94:e9:
41:ec:a6:a9:a2:a1:c5:b4:6f:62:0e:ff:c1:bc:66:
b7:96:8b:36:ee:8f:97:87:08:5b:65:e5:ae:98:94:
9c:d5:24:93:e9:d6:85:70:84:85:45:b1:89:74:ea:
41:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2F:A4:81:E0:C6:E2:BE:64:E7:15:4D:31:FE:71:13:60:EA:B9:CD
X509v3 Authority Key Identifier:
keyid:7D:BA:CB:1F:C2:C2:06:30:42:78:16:31:B5:17:CE:47:52:33:A2:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbrLH8LCBjBCeBYxtRfOR1Izor0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/pi-kgeDG4r5k5xVNMf5xE2Dquc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3d2d7b-2c5c-498f-85bf-285ec8fe8ec6/1/fbrLH8LCBjBCeBYxtRfOR1Izor0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.64.0/22
Signature Algorithm: sha256WithRSAEncryption
88:95:f8:b1:c0:37:38:26:1d:75:e5:32:6d:d6:a2:49:a5:79:
55:48:ad:77:a6:c2:e9:04:56:f1:b8:fe:0a:cd:d8:42:07:0a:
b1:7b:fc:10:1d:33:02:55:e9:52:81:d3:b0:b0:a3:1f:6b:eb:
34:c3:67:25:6d:a1:5f:12:b5:b1:d0:59:01:2e:64:87:40:72:
70:d8:44:b5:0f:26:75:0f:c4:ed:1a:08:01:28:4f:ba:2a:ac:
12:56:47:d1:37:0b:ed:73:88:a2:49:23:db:af:fa:6e:e6:36:
06:d3:0d:80:65:b8:9e:6c:c4:14:35:db:13:e3:40:bd:4e:58:
f1:33:cc:2b:df:f7:d8:df:38:67:24:37:f4:e4:25:36:5d:7d:
ef:9a:fd:b2:c6:38:ea:1c:89:fd:3e:75:cc:ee:59:e8:87:f7:
12:28:ae:85:00:e2:7c:66:7f:54:73:e6:08:a4:9a:3c:50:50:
51:52:89:d3:fa:71:c9:9c:9a:db:f7:47:f0:e3:1e:8c:24:0f:
41:80:f6:16:b4:93:7f:f2:2d:ff:27:24:4a:0d:ef:2a:67:97:
14:2c:ef:ae:a2:1f:e9:9a:ad:4a:66:4e:4c:2d:12:ec:de:17:
df:c3:6d:44:f6:f1:ef:ca:b0:a7:24:d8:1f:32:31:f8:5e:45:
d2:f2:43:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:57 2024 by rpki-client on console-ams.rpki-client.org