Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/RoqYsYP5eyU_0fk3a8FjT9cCZag.roa
File: RoqYsYP5eyU_0fk3a8FjT9cCZag.roa (raw, json)
Hash identifier: u632wHhw6ufbYB4bMj1RQekH9r82R8gs29RDLYrh3LE=
Subject key identifier: 46:8A:98:B1:83:F9:7B:25:3F:D1:F9:37:6B:C1:63:4F:D7:02:65:A8
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01847B3B7280DA3CB52B27AD2227122662FC
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/RoqYsYP5eyU_0fk3a8FjT9cCZag.roa
Signing time: Tue 15 Nov 2022 12:20:04 +0000
ROA not before: Tue 15 Nov 2022 12:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211440
IP address blocks: 88.209.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:3b:72:80:da:3c:b5:2b:27:ad:22:27:12:26:62:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 15 12:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=468a98b183f97b253fd1f9376bc1634fd70265a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:50:45:ff:d6:c7:05:16:f1:b6:c4:34:5f:98:
54:ac:a8:69:6b:6d:91:01:04:35:15:9b:b6:0b:0f:
7e:40:ab:16:76:ab:09:6f:de:af:ea:e5:88:70:3b:
9e:fd:b7:d7:0c:5c:f4:25:88:15:94:1b:e2:c5:4b:
0b:96:1b:3c:d2:0d:64:91:95:97:cb:5c:83:80:3c:
39:98:77:dd:dc:04:2e:90:eb:64:2b:a3:12:c7:b1:
85:84:38:9d:1b:96:25:9c:90:82:d3:27:67:68:39:
4a:de:3d:1f:fc:50:5d:71:4b:78:de:c3:1e:cc:60:
c5:56:83:35:e6:a9:32:16:cb:b0:26:64:6c:dd:84:
6f:21:bb:de:6c:af:f4:2e:b4:13:1c:12:31:48:41:
a2:19:d7:68:0f:8b:f8:43:a0:18:0d:de:c1:a9:2d:
ba:08:df:2c:24:18:5f:d2:c5:04:6a:39:ce:81:6e:
7a:57:ba:d7:c2:f2:f3:cf:b2:eb:3b:5a:43:ea:0c:
c5:14:c1:da:f5:fa:81:e5:af:41:ff:d2:0e:bc:6d:
c4:14:84:de:92:9f:b9:3f:14:36:c8:fb:81:f1:fc:
6d:72:67:ae:70:33:d2:9a:8a:ff:fd:cd:ab:18:e3:
c6:4a:c3:7f:22:17:29:e8:38:cf:87:e9:45:df:43:
db:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8A:98:B1:83:F9:7B:25:3F:D1:F9:37:6B:C1:63:4F:D7:02:65:A8
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/RoqYsYP5eyU_0fk3a8FjT9cCZag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.252.0/24
Signature Algorithm: sha256WithRSAEncryption
61:26:bd:6b:25:05:d5:ab:a6:66:95:55:74:f6:1a:d3:81:62:
26:d9:c0:64:38:5a:4c:a2:9a:18:00:7a:c4:20:5b:63:c8:a2:
2b:8a:52:82:74:2c:3b:b3:59:4b:15:4d:96:c7:62:89:37:83:
64:8b:4a:11:54:44:b3:b2:b1:26:4f:64:0c:fc:23:56:46:de:
24:9b:fc:48:46:b4:ee:57:78:f9:71:02:86:77:59:af:75:0e:
57:27:00:8e:72:08:e1:4a:17:9a:96:5c:3f:93:8b:a4:33:e1:
1e:d0:80:d3:fb:df:9a:cd:60:cb:49:70:92:4b:4f:0f:ae:7b:
31:11:a9:5d:9c:94:06:88:83:eb:12:eb:57:69:36:38:74:fe:
49:32:70:e3:77:89:d6:b7:f1:5f:5c:f2:68:bd:3d:bb:56:43:
66:a4:db:25:24:35:06:ab:74:b2:97:4f:ca:e7:41:8c:81:b0:
cc:49:24:c3:12:c1:b6:3a:8c:1e:06:56:85:96:cb:0a:6e:b3:
a2:d5:e8:d5:68:4e:22:dc:bf:cb:d9:ac:50:05:6d:5a:32:7f:
82:26:a3:9e:d5:87:3a:34:33:45:35:cb:ed:a4:95:83:54:77:
ce:f4:01:22:18:84:d4:71:b0:7a:4e:13:a9:42:14:d9:12:f5:
51:d6:66:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org