Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/LUpWUhfrBIbCCKJY9utgrEjtnt4.roa
File: LUpWUhfrBIbCCKJY9utgrEjtnt4.roa (raw, json)
Hash identifier: wCW4RFekkbRsdHiMSXmBLiwB7UCOUvyOtsCheWekfBs=
Subject key identifier: 2D:4A:56:52:17:EB:04:86:C2:08:A2:58:F6:EB:60:AC:48:ED:9E:DE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01821A871D9613B953A6FC86E7761F09C7CA
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/LUpWUhfrBIbCCKJY9utgrEjtnt4.roa
Signing time: Wed 20 Jul 2022 07:33:58 +0000
ROA not before: Wed 20 Jul 2022 07:33:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 88.209.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:87:1d:96:13:b9:53:a6:fc:86:e7:76:1f:09:c7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 20 07:33:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d4a565217eb0486c208a258f6eb60ac48ed9ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e5:cf:b9:39:3b:f5:9a:f8:6f:6f:8f:b4:b1:
f8:ba:ca:f3:7f:e9:7b:78:42:1d:46:b5:21:97:59:
ed:98:42:d5:6a:0d:af:cb:01:95:47:3b:dc:34:a3:
01:e7:2a:31:e2:48:ea:ce:0b:5a:b4:b7:bf:25:cf:
5d:7f:8a:f0:c9:6c:fe:d4:be:ac:3e:04:97:57:41:
f8:da:c4:d8:ae:5b:95:ae:20:29:95:3d:fa:3b:4f:
43:cf:60:77:90:65:f7:44:48:e5:cc:7c:43:30:99:
0e:63:4f:24:bb:26:ef:56:a3:ca:6c:42:49:ee:f5:
a1:49:73:d9:3f:21:ff:14:b3:22:c2:79:d1:35:39:
8f:fe:2d:3f:12:36:c7:51:e3:1f:5f:84:92:b1:31:
d0:58:8b:ee:0a:38:81:e7:a6:bb:6a:0b:7b:d5:21:
5f:48:26:24:e0:77:81:21:d0:2c:36:ad:f8:42:df:
24:c7:59:f3:67:0c:dc:b4:f7:c4:af:8c:53:2f:b0:
06:e7:c7:6d:cf:b5:49:e3:b9:2c:de:0c:59:6e:ae:
91:c7:ef:9b:a2:44:41:92:98:21:8b:30:cd:27:80:
45:ed:90:13:c0:92:ec:ed:81:98:d8:6c:3c:31:ff:
df:c1:37:9e:53:be:72:41:04:b9:09:d2:c3:04:15:
1e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4A:56:52:17:EB:04:86:C2:08:A2:58:F6:EB:60:AC:48:ED:9E:DE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/LUpWUhfrBIbCCKJY9utgrEjtnt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.232.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:d1:39:76:35:10:d7:bd:10:5e:98:e2:a3:fa:6b:ad:a3:1d:
c3:9c:ed:61:fd:9c:91:ff:5a:c6:5b:43:4e:4f:f3:c8:51:52:
e9:2a:7c:34:c0:e5:3c:55:d5:70:a8:27:0f:27:67:99:39:3f:
e7:60:86:d0:6b:17:79:3c:f5:6f:df:23:9e:88:14:07:bd:80:
b1:57:00:70:c8:3a:69:58:56:b2:f4:d7:9c:9a:a2:0c:6c:2b:
1f:62:60:9b:06:a4:d6:13:e5:be:ad:2b:46:4d:e5:37:7a:a8:
26:77:b9:1c:a6:92:e8:9c:20:0b:98:e6:66:b6:ad:1d:16:84:
14:d2:ce:85:91:3c:d6:d4:61:46:58:98:f4:3d:08:ba:90:24:
05:21:2e:77:e4:0e:c2:dd:56:26:b8:aa:78:45:6c:d4:7f:dc:
e3:7d:ba:30:d5:09:28:b4:eb:13:2c:11:b5:04:7a:17:2f:fe:
a7:fa:55:1a:12:46:09:7e:0e:37:57:10:c9:0b:89:7e:99:9c:
a9:53:64:92:df:31:a1:36:60:47:d5:79:58:64:1e:69:38:48:
09:73:2a:9f:cb:89:d4:a8:1d:99:75:85:f2:bf:27:d9:78:1a:
bc:1b:59:ee:b5:e5:bf:57:57:ad:ed:82:84:0c:fa:b6:ef:50:
a7:18:9f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:55 2024 by rpki-client on console-ams.rpki-client.org