Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hJnqEp017wysxQXvpIJ7BwjI7ho.roa
File: hJnqEp017wysxQXvpIJ7BwjI7ho.roa (raw, json)
Hash identifier: sMyMnfWCJTv+qSXa7T2qpOufoySmV8GyQU0hfHYTAPk=
Subject key identifier: 84:99:EA:12:9D:35:EF:0C:AC:C5:05:EF:A4:82:7B:07:08:C8:EE:1A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182F284C6E21EBA0B720D407155FAEFF362
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hJnqEp017wysxQXvpIJ7BwjI7ho.roa
Signing time: Wed 31 Aug 2022 06:09:24 +0000
ROA not before: Wed 31 Aug 2022 06:09:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.209.244.0/24 maxlen: 24
88.151.61.0/24 maxlen: 24
88.209.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:84:c6:e2:1e:ba:0b:72:0d:40:71:55:fa:ef:f3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Aug 31 06:09:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8499ea129d35ef0cacc505efa4827b0708c8ee1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:55:74:e4:71:15:ad:fd:c9:44:7b:45:59:67:
04:dd:6d:7d:e4:2d:c3:2a:70:9a:66:16:79:88:9b:
49:86:f8:f8:52:43:a3:3a:a6:50:65:69:58:75:76:
7e:c1:b4:ac:bb:a0:29:9b:27:ce:df:eb:40:6a:59:
4d:ee:17:3f:22:57:28:e6:50:8d:4e:3d:08:37:c3:
ee:42:b6:bc:4a:03:84:2d:8d:84:7c:01:2a:f6:10:
02:14:3d:bd:dc:c1:3d:ae:a9:58:ab:a2:79:fd:97:
9d:85:b4:7d:b0:18:c5:69:7f:0b:30:8c:de:ae:dd:
c9:08:ec:c8:0f:48:66:44:aa:0e:36:92:0d:cf:5c:
77:39:bc:ae:ca:01:43:d8:8b:fb:ed:f9:a6:49:e8:
d3:7b:83:20:4d:cc:7d:0e:20:62:68:a3:b7:01:56:
8f:54:86:70:5a:c1:b7:2c:21:00:c8:5c:6f:94:3d:
af:9c:fe:6a:6c:ef:63:8f:bd:a3:73:9a:cc:0e:30:
e5:cf:18:b4:72:e8:d5:50:eb:80:1f:2a:83:22:21:
07:b9:3f:de:c9:e2:4e:19:7d:27:79:99:ad:7f:4f:
50:64:12:3d:f6:4a:82:e2:05:3c:e0:e7:bf:51:72:
e2:e0:dd:b7:38:74:be:f6:11:97:8b:78:8b:1b:1d:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:99:EA:12:9D:35:EF:0C:AC:C5:05:EF:A4:82:7B:07:08:C8:EE:1A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/hJnqEp017wysxQXvpIJ7BwjI7ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.61.0/24
88.209.202.0/24
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d8:a8:16:01:fc:be:a0:9b:17:8a:68:af:9b:ae:3f:a2:22:
ca:a6:14:1a:bf:5f:1e:b7:54:44:2a:ae:2f:0c:c3:30:e0:f5:
e3:ea:e7:48:fa:b9:f5:82:a1:f0:5c:a8:54:7c:27:a8:10:18:
bc:ee:bc:8f:cc:98:50:c8:63:0d:92:df:83:1e:68:ff:76:e9:
ff:12:eb:20:4c:fc:90:d8:dd:0d:fb:19:be:67:8f:d8:1d:49:
0e:6d:72:9a:b9:9b:75:c4:23:f2:2b:14:2c:12:ef:2e:cf:75:
35:3d:83:ee:92:09:c2:ed:7a:a4:8e:86:ed:fb:f4:01:4f:6a:
8c:90:cc:3a:4b:bf:a4:03:e3:e2:37:9d:2d:3a:91:44:1c:28:
7e:61:c7:c7:94:96:25:6a:3b:be:6e:f8:03:9d:22:5a:58:5a:
a0:85:3b:31:40:4c:13:9b:16:1a:c7:e2:ba:0c:f8:eb:a2:63:
de:a0:65:3d:25:e9:1d:2f:ad:2c:04:03:e0:27:cf:e7:d8:82:
dc:a2:f0:a2:9d:14:41:d2:d5:04:c1:f0:11:8f:d5:87:08:7e:
47:ff:e7:3e:f6:ad:15:c5:bb:bf:37:1e:cd:dd:1c:37:3f:db:
86:0f:6a:26:12:64:95:50:83:ca:f8:7d:59:39:66:30:65:f0:
f4:51:48:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org