Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b6a1cd-65a0-49d3-9c5f-f06fc48c8e4c/1/LT6IiYhaRM-AN30fuWYjKkSsjCE.roa
File: LT6IiYhaRM-AN30fuWYjKkSsjCE.roa (raw, json)
Hash identifier: 38qwP7aqP/SJgcbUiF+pblUmq13+QLJCxTLpD61681o=
Subject key identifier: 2D:3E:88:89:88:5A:44:CF:80:37:7D:1F:B9:66:23:2A:44:AC:8C:21
Certificate issuer: /CN=6a211643187ef9258a1325cdfc1d1bf7383be85b
Certificate serial: 34B31212
Authority key identifier: 6A:21:16:43:18:7E:F9:25:8A:13:25:CD:FC:1D:1B:F7:38:3B:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aiEWQxh--SWKEyXN_B0b9zg76Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b6a1cd-65a0-49d3-9c5f-f06fc48c8e4c/1/LT6IiYhaRM-AN30fuWYjKkSsjCE.roa
Signing time: Sat 01 Jan 2022 04:57:04 +0000
ROA not before: Sat 01 Jan 2022 04:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15471
IP address blocks: 88.158.0.0/16 maxlen: 24
2a03:fa80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884150802 (0x34b31212)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a211643187ef9258a1325cdfc1d1bf7383be85b
Validity
Not Before: Jan 1 04:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d3e8889885a44cf80377d1fb966232a44ac8c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:85:45:71:87:d0:8d:c9:39:1d:cb:35:4b:
4f:17:26:f5:93:96:bc:b0:f1:08:e8:3a:c0:0f:1f:
a2:3c:b7:df:1e:b9:4c:44:64:92:66:2a:ea:49:e7:
29:8a:e4:7e:92:de:8c:19:3e:f2:d1:b6:c0:97:c5:
13:b4:45:fa:f3:8c:da:f7:ae:ee:29:fe:3c:1b:1e:
60:b7:3c:1e:48:9d:df:65:65:5a:d2:87:38:56:dd:
16:35:5d:08:10:43:1c:4f:ee:83:58:9c:60:d2:fe:
11:99:5d:5a:56:5e:97:d1:af:08:31:2c:dd:34:9a:
4a:63:50:34:df:50:87:ab:2b:da:1e:9a:3e:03:d1:
39:fd:c7:c0:8f:56:00:62:67:0d:22:9b:a7:a6:e2:
ff:97:a1:3d:52:c4:75:06:b5:37:f5:15:43:99:fc:
cb:dd:ca:30:15:96:e1:4c:e5:2a:48:85:1c:c1:fa:
2d:6f:eb:4e:ef:b3:b7:f2:9f:9b:97:02:e5:31:39:
2a:a5:db:b5:af:fc:95:2d:33:c0:e1:d6:43:14:97:
18:8c:69:0a:16:a4:65:93:ae:15:96:11:24:c4:f0:
ac:ff:a1:3e:86:ef:b7:29:9c:25:08:a8:d8:b6:2d:
42:ec:04:89:1e:5f:e5:dc:42:18:f2:f9:7a:3f:a5:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3E:88:89:88:5A:44:CF:80:37:7D:1F:B9:66:23:2A:44:AC:8C:21
X509v3 Authority Key Identifier:
keyid:6A:21:16:43:18:7E:F9:25:8A:13:25:CD:FC:1D:1B:F7:38:3B:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aiEWQxh--SWKEyXN_B0b9zg76Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b6a1cd-65a0-49d3-9c5f-f06fc48c8e4c/1/LT6IiYhaRM-AN30fuWYjKkSsjCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b6a1cd-65a0-49d3-9c5f-f06fc48c8e4c/1/aiEWQxh--SWKEyXN_B0b9zg76Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.158.0.0/16
IPv6:
2a03:fa80::/32
Signature Algorithm: sha256WithRSAEncryption
6b:64:61:2a:ce:e5:7d:c4:c9:79:f7:ac:5f:f5:72:d4:8c:dd:
3d:16:45:6b:55:58:58:ad:0b:17:32:41:97:18:cd:70:75:e6:
23:c0:71:9a:8d:18:c8:1c:49:aa:29:ca:32:5d:0e:8c:1a:55:
ea:6b:a6:8d:e4:f2:e7:57:a8:5f:34:74:19:d5:88:2b:54:55:
e7:c1:90:0a:4f:27:45:69:ab:38:b0:d4:19:5b:d3:c9:ca:ca:
09:39:bb:5e:c7:63:dd:ee:51:c3:8d:d2:c4:40:45:03:2c:d8:
ec:e4:f6:30:82:62:43:51:ac:b1:9c:d0:2d:ad:dc:74:bd:a0:
ca:88:b5:54:a6:96:68:dd:d8:e1:62:8e:d1:ff:4b:10:2e:81:
42:54:6a:b3:e6:4f:0e:f6:73:15:71:59:19:fc:2a:77:86:bc:
32:7e:28:79:ce:e1:7e:04:00:07:2e:84:43:08:c2:2c:60:2f:
61:5d:b0:8c:3f:8f:78:60:7b:15:2e:7f:9a:73:77:0f:d3:e4:
cf:4a:11:a7:c0:e0:c2:fb:c9:a0:11:d5:9b:73:ae:59:ea:27:
79:7c:e9:d4:84:38:ff:d4:35:58:a5:83:50:21:21:f2:89:ec:
94:ad:7b:b5:61:47:e9:6c:16:90:13:90:88:09:5f:6a:19:1b:
64:15:36:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org