Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/owh6Dqg2h2HrX07Ae8vtt_L4_UY.roa
File: owh6Dqg2h2HrX07Ae8vtt_L4_UY.roa (raw, json)
Hash identifier: tI+AyKMFwBDjkvleDpUyEqc0+L063OtMcE04kHdfmuQ=
Subject key identifier: A3:08:7A:0E:A8:36:87:61:EB:5F:4E:C0:7B:CB:ED:B7:F2:F8:FD:46
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01835F65802B669E7EB1908E0175945DD83E
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/owh6Dqg2h2HrX07Ae8vtt_L4_UY.roa
Signing time: Wed 21 Sep 2022 09:33:50 +0000
ROA not before: Wed 21 Sep 2022 09:33:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 88.151.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:65:80:2b:66:9e:7e:b1:90:8e:01:75:94:5d:d8:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Sep 21 09:33:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3087a0ea8368761eb5f4ec07bcbedb7f2f8fd46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ce:0c:f7:c8:f9:28:40:29:55:f0:2f:9e:5e:
0c:ba:b7:4e:da:d7:f7:7b:83:fe:76:55:fc:74:88:
79:3e:94:d9:95:f3:75:64:01:62:5b:0d:8a:50:43:
dc:0e:39:4b:b4:1b:d5:f6:ce:6d:a1:24:7b:01:de:
97:1d:5c:b6:67:fa:63:89:69:48:28:1e:7e:7d:36:
8c:b4:ad:2c:a5:a5:a1:b2:14:27:cb:8b:cd:9f:c8:
f1:48:25:cf:e3:20:35:4f:ea:4c:02:d0:5e:14:47:
1f:fd:e8:9e:1c:e7:e1:b9:60:2e:1b:0e:e0:84:2c:
16:be:00:0a:2c:64:74:0a:7e:75:23:fa:d5:e2:8f:
1a:f8:21:e9:21:bf:5d:38:f1:33:88:d7:3b:d8:2c:
2f:7a:ca:6f:02:75:1a:04:d3:b7:eb:c4:d5:98:cc:
ae:5f:00:b7:fa:a0:fd:d2:10:36:52:bb:2a:b6:a0:
76:b9:26:35:39:47:60:93:5a:f8:b3:d4:76:df:53:
0b:8d:8a:57:fc:a7:d2:2d:b0:91:8a:d7:d4:e7:e2:
a9:84:4c:71:d1:c9:b6:87:a5:e7:c0:61:d9:8f:39:
75:0c:35:75:52:7d:85:82:5c:40:39:43:98:7a:fa:
b1:4a:36:ec:a8:89:00:d9:b8:bf:17:d6:7f:48:ce:
e7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:08:7A:0E:A8:36:87:61:EB:5F:4E:C0:7B:CB:ED:B7:F2:F8:FD:46
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/owh6Dqg2h2HrX07Ae8vtt_L4_UY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:61:bb:b5:6b:f9:d9:a2:b6:08:2b:84:31:f2:4f:69:6c:80:
c5:92:4f:61:5a:b3:85:0c:ed:6d:46:da:65:95:fb:ed:64:25:
83:b1:fc:0f:b9:c4:74:26:e2:a4:c2:db:59:69:90:61:e3:a0:
f7:9a:72:83:a1:ab:73:10:6b:4b:86:9e:da:de:30:d4:f0:4f:
9e:a5:e6:9a:8d:33:cf:1b:19:87:35:7c:93:2d:e8:cc:7f:fd:
41:83:8b:88:66:9c:ce:b2:8c:c5:96:d9:06:3f:1a:90:bc:11:
9f:b8:e1:5e:50:7f:4a:46:23:87:b9:ce:90:e2:88:b4:79:80:
67:44:29:c8:b8:6b:27:3c:60:37:1a:2d:11:a8:34:0a:25:da:
27:75:73:cf:f8:39:a9:eb:7b:95:85:00:65:b9:7d:90:8c:33:
56:64:5c:14:9f:0e:30:b4:5a:ed:a1:5d:1e:b6:a6:6c:3c:d3:
30:02:9c:ff:01:d7:39:bf:d7:23:eb:0b:94:9e:53:50:95:aa:
99:d7:ce:4b:00:6a:8d:f0:e5:64:a0:8b:3c:b4:5e:fa:45:1d:
3b:65:8f:4a:87:1a:73:af:46:62:39:93:3e:a9:16:4d:19:3b:
bd:20:fd:d5:8c:09:93:ce:52:3f:c9:cd:78:a1:a5:76:52:26:
9b:48:0a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:01 2023 by rpki-client on console-fra.rpki-client.org