Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uen8EDb53kgM9Kd2r0oBWKwioa4.roa
File: uen8EDb53kgM9Kd2r0oBWKwioa4.roa (raw, json)
Hash identifier: Zzza4toGR7BbuImrvMUOLOhfI7xtgiW1IF7EcvlLDgo=
Subject key identifier: B9:E9:FC:10:36:F9:DE:48:0C:F4:A7:76:AF:4A:01:58:AC:22:A1:AE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182818B8A81ED5FA6452E03FF28C768E959
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uen8EDb53kgM9Kd2r0oBWKwioa4.roa
Signing time: Tue 09 Aug 2022 07:39:41 +0000
ROA not before: Tue 09 Aug 2022 07:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 92.52.214.0/24 maxlen: 24
88.209.252.0/24 maxlen: 24
88.209.255.0/24 maxlen: 24
88.151.63.0/24 maxlen: 24
88.209.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:8b:8a:81:ed:5f:a6:45:2e:03:ff:28:c7:68:e9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Aug 9 07:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9e9fc1036f9de480cf4a776af4a0158ac22a1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:21:a6:27:c7:f8:0a:ac:54:34:4c:5c:42:
16:56:c9:13:d6:4f:71:26:2f:11:dc:d9:fb:d3:ce:
4b:7b:a4:36:99:b8:4e:66:2c:f8:1c:ab:af:32:f1:
65:c6:ef:78:93:92:d5:92:3a:f5:47:1b:5b:8c:ba:
85:b2:77:7d:ce:88:ef:13:e9:9b:bc:43:87:d6:79:
62:d9:9e:d3:7b:fe:bd:cb:ef:4f:7c:75:46:56:56:
df:62:1f:62:5b:1f:e4:23:b6:20:31:e3:4b:29:d7:
24:a3:68:d9:d8:1f:74:dc:9a:58:27:d2:c9:f4:90:
ef:0d:16:64:ca:a9:7f:06:fa:08:f6:90:da:09:26:
94:e2:37:ad:5e:b9:03:15:a3:bd:af:5e:a9:aa:75:
b5:38:de:20:00:d5:50:9c:c2:05:d1:56:89:b2:99:
5a:95:90:fa:aa:28:b7:fb:40:b3:31:60:b2:71:40:
16:1f:79:bc:cc:f8:79:4a:3f:b6:d1:06:c4:f1:e4:
b9:e2:7a:4f:f9:29:17:36:22:cc:88:52:d7:58:90:
cb:d0:5e:bb:c4:d3:6b:97:dd:25:fc:ad:22:09:30:
94:26:fb:43:c1:c3:60:3d:3a:cb:25:b1:63:56:0e:
0e:79:75:31:92:9f:16:5f:92:cf:26:44:c2:d2:31:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E9:FC:10:36:F9:DE:48:0C:F4:A7:76:AF:4A:01:58:AC:22:A1:AE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uen8EDb53kgM9Kd2r0oBWKwioa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.63.0/24
88.209.201.0/24
88.209.252.0/24
88.209.255.0/24
92.52.214.0/24
Signature Algorithm: sha256WithRSAEncryption
be:40:a7:a2:68:68:ad:eb:5a:02:86:2a:3e:13:bc:49:51:40:
47:2d:42:d9:08:1d:85:a5:cf:71:6f:20:7a:b4:9e:b4:6a:5f:
c9:28:82:32:a4:53:bf:df:23:ee:b5:c9:9e:c8:5b:b5:69:25:
10:3b:ce:aa:db:97:7f:d3:a0:b7:c3:4a:c4:cb:b5:d8:73:24:
ea:a3:bb:7f:22:1e:f1:3e:c5:9b:51:3f:0a:37:5c:95:f3:0d:
eb:ff:50:24:ad:d7:9e:b1:5e:23:37:0f:69:dd:97:f8:cb:ec:
0d:d0:38:a7:c6:10:13:74:4e:20:48:81:f2:18:95:35:d5:54:
a1:54:6a:32:78:9a:7f:73:4c:b8:6b:f6:d5:eb:7f:6b:f2:97:
68:77:37:bc:c8:09:36:e6:79:97:29:ee:40:04:63:e8:48:65:
11:28:49:a7:78:37:bd:d9:c0:56:dd:50:b7:17:0f:88:4f:2a:
a1:44:24:a1:ba:db:89:4e:2f:81:dc:e2:3d:a8:06:26:e7:78:
0a:f2:24:5e:7f:6c:f6:cb:b8:96:1d:55:e0:ea:53:68:62:88:
9e:f7:8b:fd:5b:1d:b3:af:e3:99:8b:48:55:f4:6e:10:f6:bb:
e7:23:54:10:3c:a1:a3:71:7e:6f:ff:fb:28:7a:03:01:07:89:
79:6d:07:ea
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYKBi4qB7V+mRS4D/yjHaOlZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjIwODA5MDczOTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWU5ZmMxMDM2ZjlkZTQ4MGNmNGE3NzZhZjRhMDE1OGFjMjJhMWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuz4hpifH+AqsVDRMXEIWVskT1k9x
Ji8R3Nn7085Le6Q2mbhOZiz4HKuvMvFlxu94k5LVkjr1RxtbjLqFsnd9zojvE+mb
vEOH1nli2Z7Te/69y+9PfHVGVlbfYh9iWx/kI7YgMeNLKdcko2jZ2B903JpYJ9LJ
9JDvDRZkyql/BvoI9pDaCSaU4jetXrkDFaO9r16pqnW1ON4gANVQnMIF0VaJspla
lZD6qii3+0CzMWCycUAWH3m8zPh5Sj+20QbE8eS54npP+SkXNiLMiFLXWJDL0F67
xNNrl90l/K0iCTCUJvtDwcNgPTrLJbFjVg4OeXUxkp8WX5LPJkTC0jGpzwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFLnp/BA2+d5IDPSndq9KAVisIqGuMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvdWVuOEVEYjUza2dNOUtkMnIwb0JXS3dpb2E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAWJc/AwQA
WNHJAwQAWNH8AwQAWNH/AwQAXDTWMA0GCSqGSIb3DQEBCwUAA4IBAQC+QKeiaGit
61oChio+E7xJUUBHLULZCB2Fpc9xbyB6tJ60al/JKIIypFO/3yPutcmeyFu1aSUQ
O86q25d/06C3w0rEy7XYcyTqo7t/Ih7xPsWbUT8KN1yV8w3r/1AkrdeesV4jNw9p
3Zf4y+wN0DinxhATdE4gSIHyGJU11VShVGoyeJp/c0y4a/bV639r8pdodze8yAk2
5nmXKe5ABGPoSGURKEmneDe92cBW3VC3Fw+ITyqhRCShutuJTi+B3OI9qAYm53gK
8iRef2z2y7iWHVXg6lNoYoie94v9Wx2zr+OZi0hV9G4Q9rvnI1QQPKGjcX5v//so
egMBB4l5bQfq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:57 2024 by rpki-client on console-ams.rpki-client.org