Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Xvet7z2Zsef2Q-dBKBiCbJFBKv4.roa
File: Xvet7z2Zsef2Q-dBKBiCbJFBKv4.roa (raw, json)
Hash identifier: yw8tvQJLt+yMV5dZvMdt7NXut2egm7cTpsWuOGR6B2s=
Subject key identifier: 5E:F7:AD:EF:3D:99:B1:E7:F6:43:E7:41:28:18:82:6C:91:41:2A:FE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0181CE43EA7B29A97C845658225BC6F5246E
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Xvet7z2Zsef2Q-dBKBiCbJFBKv4.roa
Signing time: Tue 05 Jul 2022 12:09:26 +0000
ROA not before: Tue 05 Jul 2022 12:09:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.209.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:43:ea:7b:29:a9:7c:84:56:58:22:5b:c6:f5:24:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 5 12:09:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ef7adef3d99b1e7f643e7412818826c91412afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:1f:8b:55:b5:13:25:2a:7d:b6:63:b0:75:
33:67:ab:9f:dc:b4:84:2c:a2:4e:b9:c8:0d:fb:e5:
50:92:4a:13:cd:4e:aa:39:1c:cf:ef:3a:a1:70:6d:
9f:91:b1:d4:2a:f1:b8:f6:c0:ae:7e:b5:07:0e:49:
06:cd:fe:c4:a5:56:78:25:d6:7d:a7:02:10:11:92:
67:f3:7d:c8:55:35:ef:ed:1e:84:d9:88:dc:f4:bc:
92:10:da:e4:e7:f0:48:ac:85:a9:0d:e9:45:5a:04:
0c:ed:a9:d0:c1:52:d2:5d:3a:2e:39:2e:f3:d7:35:
2f:95:f2:b6:89:c6:d1:c0:9c:bb:de:71:da:db:ad:
7a:90:66:a8:9c:c9:f9:09:cc:ce:50:4d:14:01:b6:
7c:d2:0e:fb:2d:ee:fc:fa:14:b7:69:49:c3:72:f1:
d7:80:d5:51:e3:6f:bf:c0:1b:b1:8a:dc:11:54:41:
3c:8b:46:6f:df:6e:b9:4d:80:47:75:a6:68:1a:c6:
d5:05:cc:42:8c:c7:f7:6a:f2:06:b3:a5:05:e7:0e:
6b:82:53:45:15:ae:a9:ac:81:3b:81:c7:4e:46:52:
b5:5d:6b:9c:ad:1b:22:dc:11:f1:03:3d:ec:70:7d:
4b:61:e1:9b:f3:b2:9b:42:bd:f2:bb:a8:a6:2c:6b:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:AD:EF:3D:99:B1:E7:F6:43:E7:41:28:18:82:6C:91:41:2A:FE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Xvet7z2Zsef2Q-dBKBiCbJFBKv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.202.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f6:2f:52:58:e4:40:b4:15:cf:fc:4e:e9:7e:1f:5e:0c:61:
b9:77:a4:ee:a5:36:05:9d:39:71:5a:f8:3e:62:ee:77:1b:7c:
63:0b:d2:c8:d7:d0:83:d6:c3:bd:a2:71:65:c0:a7:85:6f:32:
01:7e:d8:2b:04:40:79:c4:91:c4:aa:99:9d:e5:8c:62:d4:c8:
ca:12:19:5f:a9:b1:01:d6:e6:e3:52:99:03:a0:db:ee:57:43:
bd:5f:f7:95:bd:3b:4e:69:13:b4:b9:dd:4a:1b:91:52:f0:b8:
c4:e0:49:29:0c:c0:e3:ee:44:9d:80:7f:6f:8f:51:2a:7c:e4:
2f:f6:10:fc:b1:a6:db:03:e7:2c:7b:c6:1c:7f:44:ea:c2:75:
9a:4b:68:6e:16:da:a6:63:ff:c9:d9:24:dd:d0:e9:ef:b1:20:
88:f2:1d:74:3a:06:c3:6b:2a:4c:4d:a7:ef:37:a4:36:7b:00:
f6:89:b4:b4:74:94:0c:74:5e:44:aa:15:e9:c2:ba:50:bc:f1:
d4:83:3d:d5:18:26:7d:b4:56:d1:29:1e:f1:a3:aa:69:f7:59:
c8:28:41:95:49:de:b0:b1:d3:a6:f1:7b:c9:82:28:46:b3:2a:
d2:d7:17:e7:24:8c:e9:05:f0:50:79:bc:f3:2f:da:ac:49:d6:
65:f1:77:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org