Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa
File: k3THCbtPF_KM58XPbHvfCk_AvF4.roa (raw, json)
Hash identifier: 7rL3T6ElyQj1l1cHBBP1NGfZUKy4W5AoeOlktkNgVNA=
Subject key identifier: 93:74:C7:09:BB:4F:17:F2:8C:E7:C5:CF:6C:7B:DF:0A:4F:C0:BC:5E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182818B89D6F47FCD2BE51390CC2938B6D7
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa
Signing time: Tue 09 Aug 2022 07:39:41 +0000
ROA not before: Tue 09 Aug 2022 07:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 88.209.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:8b:89:d6:f4:7f:cd:2b:e5:13:90:cc:29:38:b6:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Aug 9 07:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9374c709bb4f17f28ce7c5cf6c7bdf0a4fc0bc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e2:b0:5a:18:17:4a:88:9d:6f:85:1d:ac:bf:
b5:e5:22:3d:0d:53:bb:53:dc:3c:ee:a2:19:31:d4:
36:a8:91:42:f0:f8:34:b6:29:f5:8f:7e:cd:a4:09:
c2:94:85:ca:5b:e6:b9:c7:ba:22:a0:38:58:ef:7e:
a1:ed:31:02:fe:ad:2d:01:2d:45:bc:27:bf:ca:6b:
d7:61:ec:0c:44:d8:46:a2:ca:be:14:01:69:ca:d3:
04:0f:66:00:8c:4f:61:d7:c6:9d:63:ed:dd:e7:6e:
68:f8:36:f8:da:ec:47:8e:57:c3:34:47:2c:00:18:
d1:76:d5:b9:71:c2:18:77:f2:7c:f0:62:cc:41:48:
78:7e:a3:c3:2a:74:6e:fa:a8:b7:83:d3:9c:4f:b5:
77:22:15:04:9d:1d:15:13:43:70:ec:58:9c:46:1b:
18:df:91:4a:a4:47:2e:f5:47:46:b7:8d:89:30:00:
8a:88:72:37:0c:3e:24:5a:03:ba:d6:83:81:91:7f:
e7:81:2c:46:b9:de:ff:6c:3a:dd:b6:1d:18:ca:0a:
fe:88:f2:95:cc:7a:14:29:b1:15:71:c9:78:f0:f0:
f7:fe:08:fe:63:33:e2:f5:3b:de:99:45:30:20:0f:
37:9e:9b:bc:50:68:84:b4:51:4a:fa:a0:10:b0:f6:
e1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:74:C7:09:BB:4F:17:F2:8C:E7:C5:CF:6C:7B:DF:0A:4F:C0:BC:5E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f7:6d:d4:b9:c1:10:7f:96:bf:76:aa:e2:ca:55:30:9e:ca:
b9:ce:1d:6b:47:be:68:d1:5f:66:25:97:cd:09:aa:56:3c:8a:
48:4a:1a:36:2a:0e:19:c8:0a:41:2b:b1:c7:cc:09:fb:bc:b4:
b1:5e:dc:8a:46:ad:2d:74:23:d6:c2:e2:b2:f4:62:b0:9f:cf:
9e:13:56:60:6d:bc:aa:f6:74:b1:64:48:f3:9c:15:46:82:dd:
12:4a:d5:6a:3d:d2:a7:4b:54:5d:00:9f:bb:7b:a6:4f:14:9e:
3b:45:b5:1e:90:3a:63:b6:c5:41:41:0c:cd:d8:f6:41:ae:22:
f9:19:23:88:2a:09:d4:4d:b2:a7:2a:00:27:95:91:e2:7f:9d:
31:0a:24:63:c7:e0:0a:bc:06:b1:85:25:ab:81:94:40:5c:35:
97:3a:f5:e1:e8:ce:7c:ff:15:51:3d:51:4a:06:fc:81:2b:31:
d8:44:ba:7d:11:aa:db:09:ee:59:97:fd:ae:97:c6:5b:87:5b:
d6:91:f7:d4:46:f1:40:c5:7d:ad:00:8b:24:e8:53:04:18:73:
02:20:f8:c6:17:38:9f:6d:e5:0c:1f:5f:e5:33:ba:98:81:bd:
60:92:8d:ed:24:de:07:98:fe:5b:53:27:bd:c4:ac:9d:83:02:
6c:40:7e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-ams.rpki-client.org