Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Ij3Hiic8ruAVSxU4vC2w43tm_eI.roa
File: Ij3Hiic8ruAVSxU4vC2w43tm_eI.roa (raw, json)
Hash identifier: xEf9zMzkhBZPsCKGO80V1997RyXMdRDuwI1d07k4Kv0=
Subject key identifier: 22:3D:C7:8A:27:3C:AE:E0:15:4B:15:38:BC:2D:B0:E3:7B:66:FD:E2
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018249C4B0295582A86AAF5A3ED86C8539D1
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Ij3Hiic8ruAVSxU4vC2w43tm_eI.roa
Signing time: Fri 29 Jul 2022 11:43:23 +0000
ROA not before: Fri 29 Jul 2022 11:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 88.209.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:c4:b0:29:55:82:a8:6a:af:5a:3e:d8:6c:85:39:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 29 11:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=223dc78a273caee0154b1538bc2db0e37b66fde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:33:65:f0:6f:8c:f1:f7:f2:99:6a:90:e3:62:
52:bf:41:88:37:16:d3:06:61:5d:9d:7c:c7:1d:f6:
3d:5d:00:44:65:11:3f:cd:2b:0e:b6:05:78:30:26:
23:d1:1f:28:1c:98:cc:0d:3a:c4:ca:c0:b3:f1:20:
30:af:5a:c1:28:b2:07:3b:32:a4:29:db:ba:14:3d:
19:01:04:78:ba:c6:82:a3:de:42:a2:f6:bd:6d:f1:
c3:87:d3:08:57:94:27:b8:9a:13:a0:64:88:f8:37:
26:f0:e8:dd:50:b4:ba:25:12:56:26:42:5b:46:ee:
cc:ff:af:1e:34:88:0a:10:37:e0:8b:49:98:cc:27:
fb:e7:19:31:89:5f:98:d3:ee:f6:a6:7b:4a:b8:00:
ea:e9:b8:87:c6:bf:70:b3:c1:1b:b6:4f:bf:4a:0b:
08:f7:65:29:73:f1:8f:9d:0b:22:a9:2c:f6:d2:43:
a2:c3:60:fa:09:02:81:75:33:ad:07:63:e8:a6:16:
f2:18:c9:7c:1a:2e:f6:05:64:c4:7b:27:df:ce:d6:
a0:fc:30:c4:9e:41:39:ea:0f:92:eb:ca:44:28:bb:
d9:86:f3:83:f1:6b:f2:0f:fb:fe:6e:47:e2:5a:1d:
64:7f:ca:b3:52:e1:c7:17:f8:be:b1:57:9b:cc:9e:
ec:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3D:C7:8A:27:3C:AE:E0:15:4B:15:38:BC:2D:B0:E3:7B:66:FD:E2
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Ij3Hiic8ruAVSxU4vC2w43tm_eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3b:9a:d0:29:43:e2:1a:28:88:40:78:a4:60:b1:55:22:3a:
be:f0:41:95:1d:a8:d4:67:18:d5:fe:6d:40:b8:51:bf:48:78:
7f:c2:f1:af:d2:98:0e:12:71:38:17:de:6b:de:ec:3f:fb:fa:
ff:d0:9f:ab:32:89:ca:b0:2f:9c:5b:2c:66:df:02:e9:7e:81:
85:1c:c2:a0:1c:8a:db:45:44:b9:13:08:a2:2c:b9:81:88:6d:
03:99:9c:bc:18:0e:e2:8a:be:e7:84:6b:a3:4c:e1:52:90:d4:
67:32:79:16:40:52:cd:71:24:aa:87:7a:c1:cb:7c:a8:cf:9f:
0f:55:23:f7:b0:c4:2d:6b:13:a0:86:44:a1:da:b6:9d:7d:9d:
b9:7f:3b:d8:2f:75:26:a2:5c:cc:bf:95:27:6e:3c:9b:c0:81:
c9:c0:f7:30:46:bd:c9:26:78:2e:95:fe:bd:70:ca:88:01:c2:
d3:66:80:35:08:b5:d0:21:75:02:cc:bf:2b:4b:03:91:79:0d:
70:3c:4f:d4:04:21:9b:f7:10:b6:41:17:71:3d:8f:c1:37:1c:
7c:d1:bd:51:21:2b:2b:dd:61:d4:42:8c:27:c9:98:4c:77:bb:
66:87:bf:b9:a2:95:44:1e:1b:eb:e5:5c:25:70:50:d3:5c:9a:
28:08:ab:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org