Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/li8NVhymH9JEmikHF5oZJuaCuXc.roa
File: li8NVhymH9JEmikHF5oZJuaCuXc.roa (raw, json)
Hash identifier: Cj8rgR79Ka6KB9qLSrYzRnEOIoPnoTS3xad0zZH2YK4=
Subject key identifier: 96:2F:0D:56:1C:A6:1F:D2:44:9A:29:07:17:9A:19:26:E6:82:B9:77
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01844844F67E0876EAAA427357C16A936E1F
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/li8NVhymH9JEmikHF5oZJuaCuXc.roa
Signing time: Sat 05 Nov 2022 14:49:49 +0000
ROA not before: Sat 05 Nov 2022 14:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 88.209.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:48:44:f6:7e:08:76:ea:aa:42:73:57:c1:6a:93:6e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 5 14:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=962f0d561ca61fd2449a2907179a1926e682b977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:e3:c0:3c:d7:22:85:8e:94:f7:12:34:4e:
db:c5:17:be:a5:2d:ab:9b:a2:eb:a3:8a:2d:90:23:
b9:36:52:a9:c6:6d:01:b3:0a:b9:33:af:fa:77:34:
97:34:91:01:b6:cf:5d:c9:78:27:48:3c:15:a8:c1:
63:39:04:58:7d:a3:52:32:45:d1:e4:57:6e:de:0c:
91:1c:6c:42:d3:e1:3a:f1:8d:9e:3c:72:1e:52:60:
41:d3:0d:d6:a5:34:55:38:00:79:3b:9f:e4:7f:19:
66:03:fd:59:2a:7b:c8:e3:5c:71:81:fb:6d:b8:71:
c9:a6:ca:a3:29:08:4c:e9:74:e4:cc:e3:83:3f:e1:
31:11:16:b7:30:0f:1b:d2:55:6e:c2:83:e5:bd:f7:
fe:1d:87:c0:f1:41:a1:23:5a:14:d0:91:cb:f5:03:
39:97:a2:47:f1:bd:f3:d3:2c:be:fc:e3:7f:b0:ad:
d5:4f:4c:db:0c:77:3c:20:d1:bc:b1:ab:55:87:4d:
83:f9:7e:30:c3:8a:1b:72:cf:36:9f:bb:53:31:94:
ad:ce:8f:e3:4b:c6:74:5c:22:bb:39:5b:89:a9:ce:
57:fe:4e:10:75:28:b6:3c:f1:f7:00:c2:76:83:be:
75:e4:68:72:1d:05:e3:30:d9:fb:b2:1d:a4:54:45:
e3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2F:0D:56:1C:A6:1F:D2:44:9A:29:07:17:9A:19:26:E6:82:B9:77
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/li8NVhymH9JEmikHF5oZJuaCuXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.226.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:b8:fe:91:e2:48:fa:f1:13:87:9e:22:b3:a3:c1:38:12:2a:
46:94:09:2f:9a:6b:d3:d6:d6:88:1c:64:97:e2:aa:b6:50:ca:
c2:57:bd:0e:81:fd:2d:ac:70:72:43:a4:74:50:49:09:41:3d:
ef:49:8f:37:09:68:e6:8b:55:89:d0:ba:d1:41:bb:38:be:60:
67:0d:ee:84:f7:1e:69:d8:20:01:b8:2d:87:2a:01:13:ce:eb:
a2:eb:0d:c6:ee:1f:f4:65:14:7a:3b:49:e5:85:dd:88:b9:0a:
74:75:54:ba:8c:19:bf:31:4f:58:50:4c:36:0e:80:6f:6e:6e:
c9:b8:5a:74:70:e6:b6:36:a0:02:c9:86:22:8c:4b:fa:1b:24:
ef:03:11:47:53:f6:be:41:02:07:37:8f:68:fa:38:da:6c:e2:
a5:30:5e:73:02:8b:24:fc:d8:79:de:17:34:31:db:2b:9c:94:
6e:e8:e2:d1:0d:5a:f5:29:bc:00:bb:9f:4b:0a:f1:44:0e:f4:
8f:77:d2:ae:e0:9d:84:cd:50:68:61:b8:74:49:4f:fe:89:b0:
ff:9d:0b:d5:ec:80:ed:ff:d5:ed:77:c8:29:9b:21:14:1a:b4:
06:12:d6:05:dd:6f:2a:fe:b1:6b:3e:ea:ef:b1:c9:51:e8:eb:
b1:8e:23:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org