Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ewv1lybbLMFqzAy_hkPZsv7ge4.roa
File: 4ewv1lybbLMFqzAy_hkPZsv7ge4.roa (raw, json)
Hash identifier: EPCpeGxvtLh9AyRaBSfFME1EKsgOEYdDEsAzfwsevlU=
Subject key identifier: E1:EC:2F:D6:5C:9B:6C:B3:05:AB:30:32:FE:19:0F:66:CB:FB:81:EE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0183CCA8794E31E7490610882FBAC3900F6B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ewv1lybbLMFqzAy_hkPZsv7ge4.roa
Signing time: Wed 12 Oct 2022 14:45:36 +0000
ROA not before: Wed 12 Oct 2022 14:45:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 88.209.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:a8:79:4e:31:e7:49:06:10:88:2f:ba:c3:90:0f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Oct 12 14:45:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1ec2fd65c9b6cb305ab3032fe190f66cbfb81ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:53:9d:55:39:61:38:52:72:09:ae:be:e6:e4:
1a:e4:d7:3a:cf:cd:66:47:f7:4e:98:18:70:d7:02:
2f:03:8f:d3:1b:b7:f2:3f:e7:9f:b9:7d:a1:c5:02:
6b:6c:37:f1:e3:77:01:d8:60:53:e1:9a:e1:5e:5e:
46:f0:2f:a7:8a:ef:c3:d7:30:17:10:d5:9b:03:ab:
64:33:73:f0:00:d0:5b:79:f6:b7:13:be:a0:80:6f:
ac:b6:ef:6f:71:e2:9d:2b:e2:a9:ae:09:42:0a:b2:
80:69:bb:27:8d:86:89:ea:35:ac:87:96:d8:a0:6c:
4f:6b:c4:57:68:b7:3a:8b:28:dc:1a:cc:49:c9:3f:
93:ca:98:fb:b5:e7:b6:7f:0d:40:61:1a:3f:e5:ba:
31:a0:4b:61:62:38:a6:d2:d8:89:ab:fa:8a:f3:32:
d1:08:19:05:8a:6e:0c:b2:13:a1:d8:42:b9:9c:27:
c5:9a:a3:7a:de:cf:73:24:be:ba:7a:d2:d9:2f:33:
0a:10:47:4e:c8:16:d0:19:96:39:73:a4:56:4c:86:
38:d8:bc:11:c5:8d:b1:5f:67:97:8f:0f:e8:5e:fa:
85:be:61:ac:d3:2e:ba:f5:a8:a1:12:09:90:3b:31:
1d:8b:1e:77:ca:7a:77:61:6e:98:bf:f1:a3:e4:5f:
3a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EC:2F:D6:5C:9B:6C:B3:05:AB:30:32:FE:19:0F:66:CB:FB:81:EE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4ewv1lybbLMFqzAy_hkPZsv7ge4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.253.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e5:3c:cd:05:ef:f2:4e:03:77:1d:15:d5:25:0f:04:c4:1f:
b9:92:4d:8b:62:33:71:53:57:2e:02:24:f5:8d:8d:9f:22:00:
21:c6:83:7a:81:ba:3d:d4:78:be:8c:84:45:c8:01:3c:e8:60:
50:6b:96:8c:02:de:e7:81:ad:fa:79:e7:0e:e5:da:88:9b:38:
64:2f:55:99:c6:c8:3c:b0:fc:f7:36:64:d8:29:97:f1:35:cf:
eb:42:5c:3b:79:27:c0:9f:eb:a5:6e:e1:45:17:e3:d6:72:f6:
ba:5e:16:e3:a3:bc:51:ee:92:63:54:fe:d1:32:ff:c5:33:42:
75:5d:e4:b4:c8:dd:72:d2:04:c0:98:e6:5e:d5:a2:2a:d1:47:
ac:3f:7e:c9:e4:81:c8:96:ad:2b:55:f0:34:66:04:df:f5:a7:
2c:b6:eb:e6:32:8c:77:5b:07:35:7f:83:d0:3a:92:83:50:27:
26:36:cc:47:84:c8:fe:a9:ed:9a:bb:0e:12:c6:f6:90:a8:01:
10:06:05:35:4c:97:e0:39:27:6e:ed:e3:9d:06:c6:ff:55:20:
b1:ee:fb:ef:76:9e:ee:be:9c:a1:aa:26:3c:a9:3e:02:f7:41:
e0:71:c3:db:42:80:f8:73:77:b2:e3:f8:d8:66:27:c2:15:aa:
35:85:8b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:50 2023 by rpki-client on console-ams.rpki-client.org