Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/fRWH_03DsdfAyhMf0jC-YPlkO1o.roa
File: fRWH_03DsdfAyhMf0jC-YPlkO1o.roa (raw, json)
Hash identifier: mFBq4JuwwNIOd/tkzLeLK1XwOCFUaRE0iOIlDwdSWPE=
Subject key identifier: 7D:15:87:FF:4D:C3:B1:D7:C0:CA:13:1F:D2:30:BE:60:F9:64:3B:5A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182F7E4CABBCD0ED852FAFB2229F758946D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/fRWH_03DsdfAyhMf0jC-YPlkO1o.roa
Signing time: Thu 01 Sep 2022 07:12:22 +0000
ROA not before: Thu 01 Sep 2022 07:12:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 88.209.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f7:e4:ca:bb:cd:0e:d8:52:fa:fb:22:29:f7:58:94:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Sep 1 07:12:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d1587ff4dc3b1d7c0ca131fd230be60f9643b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:db:c0:8f:bd:cf:82:35:47:28:b9:8a:ed:d9:
05:cd:75:fa:06:b5:d2:a0:bf:4a:41:97:79:70:ce:
72:df:c3:8a:dd:4b:31:9e:17:28:30:90:72:d7:fe:
ad:29:bc:a4:a0:32:34:ec:c6:9c:16:f5:94:72:c0:
e9:22:27:bf:66:06:8f:6f:be:4e:76:9b:e5:66:97:
a4:30:22:b0:c7:68:54:76:5f:a0:e1:34:e0:6e:20:
d8:7c:b6:17:0c:5e:37:27:f7:88:4a:1d:b7:a3:34:
b0:18:9e:d7:ff:05:62:d8:1d:4e:53:a6:25:66:e0:
1e:ee:c3:e2:88:9a:9f:e4:f2:e8:f9:2e:54:ba:d3:
b0:9e:40:ac:6f:7f:65:cd:16:ff:e2:05:30:66:cd:
2d:77:6d:20:b9:83:5a:3e:61:90:51:94:0f:a9:54:
fb:70:61:c4:4e:55:8f:63:aa:9e:f4:46:50:14:fc:
d8:9c:35:9d:0e:08:ef:0f:88:ce:aa:07:62:6c:06:
3a:80:df:93:b9:52:9c:31:e4:ce:42:4b:1e:91:ee:
41:59:2e:1b:e5:6e:57:6a:d6:e6:85:95:0b:c9:e2:
2b:1e:23:75:b0:4f:fc:9b:04:7e:04:19:4f:be:fa:
51:7a:dc:19:87:3d:4f:c0:62:bf:c9:ca:26:a9:e3:
01:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:15:87:FF:4D:C3:B1:D7:C0:CA:13:1F:D2:30:BE:60:F9:64:3B:5A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/fRWH_03DsdfAyhMf0jC-YPlkO1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.249.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:01:30:e5:e3:6d:22:3c:27:26:8f:f5:30:c2:0e:fa:a5:b6:
82:7c:cc:bc:b9:6c:51:77:42:35:6f:7b:39:9f:f2:79:b4:a9:
1b:b5:18:08:4d:eb:5b:46:85:d7:b2:3d:37:79:57:72:b4:f0:
f8:44:d6:2a:4c:f0:99:05:bf:4b:e1:11:0e:64:e6:e3:a4:83:
d7:d6:7d:cd:c5:41:b4:93:e1:5c:01:95:65:60:6c:95:a7:1a:
4e:6c:10:0e:4f:6b:94:fb:4b:4b:3a:5d:cf:3a:67:8d:27:01:
76:d7:fa:d7:e3:7c:98:2f:08:bd:21:a1:d9:84:09:42:eb:5d:
9d:35:31:2e:4d:33:ff:8b:4d:85:41:e5:e5:d5:da:66:6f:4b:
84:e3:48:5d:7e:20:9e:a4:31:2b:a5:e1:0a:1d:7a:dc:f0:51:
e1:51:46:22:57:98:42:17:a3:8e:84:e8:bc:b3:95:ec:14:f6:
b3:bb:c6:1d:c0:04:1e:df:a3:46:ff:7a:82:98:8e:4d:2d:3d:
8a:05:b1:4f:86:a1:e5:ea:d0:3c:20:29:5a:8f:07:3f:97:f8:
71:53:6b:35:de:a5:bd:72:d1:46:7e:b9:31:8c:6b:55:9c:3c:
07:0b:a4:87:1c:4b:69:87:39:36:0c:c4:62:3d:e7:1e:3e:15:
4d:15:75:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org