Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nilZ1mbfwcajkkSeE_Y289CkmTI.roa
File: nilZ1mbfwcajkkSeE_Y289CkmTI.roa (raw, json)
Hash identifier: IhAt16fs9XPh+jgXsINnwenxPKNHp7DPqYQapP2TQi0=
Subject key identifier: 9E:29:59:D6:66:DF:C1:C6:A3:92:44:9E:13:F6:36:F3:D0:A4:99:32
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01823A83F7B0345D2352BF6901A39B77FF52
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nilZ1mbfwcajkkSeE_Y289CkmTI.roa
Signing time: Tue 26 Jul 2022 12:38:23 +0000
ROA not before: Tue 26 Jul 2022 12:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20845
IP address blocks: 88.209.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:83:f7:b0:34:5d:23:52:bf:69:01:a3:9b:77:ff:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 26 12:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e2959d666dfc1c6a392449e13f636f3d0a49932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:be:49:c5:3f:57:86:77:43:b8:8d:c6:ad:d0:
67:76:07:7f:9a:d0:6f:fa:33:06:35:4e:e6:88:5b:
a7:24:ba:56:59:19:ff:45:13:51:cf:8b:40:7c:6d:
31:9c:83:c0:7a:88:69:a7:d4:00:59:e5:fe:90:a1:
f1:12:c7:3f:6f:b4:5a:80:23:40:45:ba:76:44:7c:
3a:f6:e1:a3:8f:b5:e8:43:91:c2:8b:eb:ce:25:fd:
da:17:b2:90:5d:76:05:8d:94:f7:0e:b4:7f:71:b6:
b2:fc:99:e7:c7:59:1f:a5:54:7d:80:fa:8f:6d:f9:
28:24:c3:66:65:fd:43:9d:37:10:d4:2d:65:c5:a2:
b8:18:13:b7:b9:df:d5:7a:d0:20:29:4e:a2:17:f9:
5a:9e:8d:20:1f:cc:d7:86:85:10:64:01:ec:47:f5:
2b:58:1b:e2:2a:4b:95:b3:a9:01:64:b7:ff:7a:7c:
5a:08:2a:18:56:16:04:07:c1:b9:2a:bc:46:64:ea:
ad:6d:06:5f:cc:da:27:87:5b:db:36:17:df:5f:50:
1c:94:94:de:00:eb:41:be:94:9c:60:24:e5:57:a3:
14:cd:3b:75:b2:ab:da:aa:dc:9f:ba:7d:51:af:f8:
d2:f2:38:db:a0:85:f9:7d:1f:21:6c:97:8f:6e:74:
d4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:29:59:D6:66:DF:C1:C6:A3:92:44:9E:13:F6:36:F3:D0:A4:99:32
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nilZ1mbfwcajkkSeE_Y289CkmTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.230.0/24
Signature Algorithm: sha256WithRSAEncryption
be:99:67:af:90:74:be:8b:8c:27:9a:bf:e8:ef:02:3c:46:2b:
bb:82:9c:e7:03:25:d4:62:f3:cc:99:1a:39:51:5e:a5:78:61:
af:b2:a9:4f:1a:24:78:a1:e1:90:78:21:58:e0:ac:88:c2:93:
df:1f:bd:e4:28:3c:8c:a9:fc:a1:2a:0b:c4:77:72:e5:8b:30:
34:82:d8:27:97:f0:dc:7c:de:6f:fc:d4:21:dd:f8:3e:5e:bf:
5d:df:a8:63:4d:c2:e4:c8:ef:39:fa:37:0a:a7:18:4c:4f:72:
63:cd:d9:8e:d1:b3:76:7e:6c:8e:3e:9d:c9:4e:34:01:9a:15:
59:c2:89:f8:57:2e:69:60:bd:23:09:70:9c:48:ab:43:53:1a:
45:66:fd:81:ea:0f:43:87:e5:43:96:05:1e:3c:3b:15:7a:51:
18:cc:68:bc:d1:94:47:e6:27:89:a0:7c:0b:77:c7:21:08:29:
8c:7b:69:fc:d1:bf:78:af:2f:9d:ba:93:7e:f3:d0:8a:46:99:
cd:b7:e0:9a:31:a7:17:c1:7b:81:63:b4:48:89:ac:9e:b2:15:
a5:ac:4e:b2:1c:d0:63:ee:ea:fb:af:cd:1f:5a:60:7e:42:b7:
e4:73:6c:0b:7d:3a:f8:43:72:2a:e1:57:ef:9f:e7:a0:6d:f3:
cf:fb:57:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI6g/ewNF0jUr9pAaObd/9SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjIwNzI2MTIzODIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTI5NTlkNjY2ZGZjMWM2YTM5MjQ0OWUxM2Y2MzZmM2QwYTQ5OTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApr5JxT9XhndDuI3GrdBndgd/mtBv
+jMGNU7miFunJLpWWRn/RRNRz4tAfG0xnIPAeohpp9QAWeX+kKHxEsc/b7RagCNA
Rbp2RHw69uGjj7XoQ5HCi+vOJf3aF7KQXXYFjZT3DrR/cbay/Jnnx1kfpVR9gPqP
bfkoJMNmZf1DnTcQ1C1lxaK4GBO3ud/VetAgKU6iF/lano0gH8zXhoUQZAHsR/Ur
WBviKkuVs6kBZLf/enxaCCoYVhYEB8G5KrxGZOqtbQZfzNonh1vbNhffX1AclJTe
AOtBvpScYCTlV6MUzTt1sqvaqtyfun1Rr/jS8jjboIX5fR8hbJePbnTUGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ4pWdZm38HGo5JEnhP2NvPQpJkyMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvbmlsWjFtYmZ3Y2Fqa2tTZUVfWTI4OUNrbVRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNHmMA0G
CSqGSIb3DQEBCwUAA4IBAQC+mWevkHS+i4wnmr/o7wI8Riu7gpznAyXUYvPMmRo5
UV6leGGvsqlPGiR4oeGQeCFY4KyIwpPfH73kKDyMqfyhKgvEd3LlizA0gtgnl/Dc
fN5v/NQh3fg+Xr9d36hjTcLkyO85+jcKpxhMT3JjzdmO0bN2fmyOPp3JTjQBmhVZ
won4Vy5pYL0jCXCcSKtDUxpFZv2B6g9Dh+VDlgUePDsVelEYzGi80ZRH5ieJoHwL
d8chCCmMe2n80b94ry+dupN+89CKRpnNt+CaMacXwXuBY7RIiayeshWlrE6yHNBj
7ur7r80fWmB+Qrfkc2wLfTr4Q3Iq4Vfvn+egbfPP+1ei
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:01 2023 by rpki-client on console-fra.rpki-client.org