Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PE4dy_NLGlB83edzwRu2Ow45aMM.roa
File: PE4dy_NLGlB83edzwRu2Ow45aMM.roa (raw, json)
Hash identifier: YhSG9t2T86i0mWMAR1jBHTrr4QjRu+uJeM3xH5AeyLM=
Subject key identifier: 3C:4E:1D:CB:F3:4B:1A:50:7C:DD:E7:73:C1:1B:B6:3B:0E:39:68:C3
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0184CCC7DCCACA10DFF7072B8CD4F46A0519
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PE4dy_NLGlB83edzwRu2Ow45aMM.roa
Signing time: Thu 01 Dec 2022 08:22:40 +0000
ROA not before: Thu 01 Dec 2022 08:22:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 88.209.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:c7:dc:ca:ca:10:df:f7:07:2b:8c:d4:f4:6a:05:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Dec 1 08:22:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c4e1dcbf34b1a507cdde773c11bb63b0e3968c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:dd:80:38:34:9e:ab:63:c5:28:cf:6d:3e:ae:
d7:8f:ca:9b:c8:8e:9e:ce:dc:34:16:7e:db:36:72:
d8:df:8e:82:6d:1d:61:8d:b0:44:bc:91:90:ff:24:
62:99:07:48:a0:98:39:ca:ca:fa:6d:db:68:20:19:
a2:d0:58:c8:7e:2b:5f:8f:0f:5d:77:9e:86:67:9f:
5f:c8:17:a2:5b:9e:ce:09:8c:7b:62:cd:4c:70:4f:
47:f0:e4:c4:d7:86:00:7f:15:c1:46:40:2c:43:02:
a9:73:42:64:18:c1:b1:b7:e4:b2:6e:41:61:19:f3:
30:bc:cc:56:4d:5b:82:26:0b:45:8f:df:22:e8:db:
1a:f5:49:26:f6:6c:3e:a1:1c:db:33:f8:a4:8e:57:
30:de:ce:0b:c3:e7:29:1b:ec:fc:1c:26:da:02:94:
7a:3e:a5:7f:59:07:22:9a:18:1f:85:47:3c:eb:a3:
93:05:c0:85:da:1d:d8:23:00:59:2f:e6:75:ed:4e:
b1:28:20:e6:28:78:52:23:2f:95:1e:6f:93:5a:b0:
ed:a0:85:25:c6:53:48:7f:fe:b5:f4:40:6c:69:80:
a9:6f:d3:13:b0:17:f3:e6:27:47:f9:db:67:25:09:
ad:d0:05:a9:90:f1:e0:60:61:e5:f5:35:5e:63:d7:
46:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:4E:1D:CB:F3:4B:1A:50:7C:DD:E7:73:C1:1B:B6:3B:0E:39:68:C3
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PE4dy_NLGlB83edzwRu2Ow45aMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.229.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b4:1c:f2:ff:1b:b7:3c:bc:65:1a:cd:da:cd:b1:01:72:08:
ce:be:06:3d:83:c0:05:b8:52:85:22:47:fc:82:27:52:05:0c:
88:e8:9d:87:94:b3:e6:0f:cc:4b:d7:e2:c6:16:16:f2:da:a9:
d3:30:e7:f9:2a:b7:45:86:e1:02:21:96:84:c6:81:39:23:ab:
bc:92:97:7b:ce:75:4d:95:ae:ee:31:00:2f:ad:91:89:c0:f7:
16:bc:17:8d:38:33:7a:61:c4:3e:d1:b1:1d:a7:04:dd:f6:5f:
d1:3d:1b:9e:27:2f:3b:f9:f8:43:c4:04:5c:e3:27:ea:2d:a6:
72:46:86:a6:c1:5d:34:66:9d:5f:32:38:d3:fc:9b:15:5e:f2:
ea:a2:46:8b:15:75:eb:9e:ea:e5:01:44:70:f1:ef:55:f9:89:
16:d9:9a:2c:80:6c:34:ff:fd:d8:af:57:d7:29:c3:69:ac:f6:
ad:0b:ed:60:47:80:6c:74:63:a4:bd:37:a9:30:9a:a5:14:99:
8d:c8:ed:22:d0:a8:6a:e4:11:7c:09:73:4e:ae:70:33:bc:b8:
e9:68:3e:1f:b8:4f:83:75:52:20:28:7c:0c:3d:80:ed:4c:56:
f3:c3:6d:2b:a0:a1:b2:cb:7b:a9:9d:f5:df:bd:5d:a6:df:0d:
b7:91:94:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org