Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/3L2YK27D_BMHhimqIo_KjVFXdQs.roa
File: 3L2YK27D_BMHhimqIo_KjVFXdQs.roa (raw, json)
Hash identifier: L+FAFGK0NSP2W56wSzD5h96JysXNVgWOGHi107glZ+w=
Subject key identifier: DC:BD:98:2B:6E:C3:FC:13:07:86:29:AA:22:8F:CA:8D:51:57:75:0B
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0185534D70025AAC76C95D2566569620F311
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/3L2YK27D_BMHhimqIo_KjVFXdQs.roa
Signing time: Tue 27 Dec 2022 11:17:41 +0000
ROA not before: Tue 27 Dec 2022 11:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26383
IP address blocks: 88.151.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:4d:70:02:5a:ac:76:c9:5d:25:66:56:96:20:f3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Dec 27 11:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcbd982b6ec3fc13078629aa228fca8d5157750b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4d:b4:f4:88:08:6d:3b:1d:e4:8c:12:f2:c2:
52:31:db:f1:53:ba:7d:80:df:2e:38:97:19:bb:b6:
ac:fb:fb:1b:23:1d:d9:05:72:66:2e:37:fc:c1:98:
38:8e:6f:6b:56:40:37:2b:85:bf:6b:68:25:1a:3f:
9d:a0:60:e9:94:80:8c:ec:80:19:e4:e6:16:52:0e:
97:8a:1b:c7:89:74:f2:30:00:fd:ef:26:77:02:f9:
5c:42:bf:54:35:ea:8b:20:c0:9f:8f:42:30:9b:05:
1a:33:3e:30:e8:75:95:a3:67:22:68:a9:03:ae:f1:
5d:09:2e:02:99:8c:50:50:bc:6f:7b:26:94:b5:db:
36:4c:04:66:8a:7d:6e:b1:e7:51:26:4e:95:a2:e4:
3d:ce:51:71:66:ff:ae:3b:74:76:02:02:bd:c4:3e:
63:f4:24:96:df:63:d8:8f:00:f5:62:fb:10:96:1d:
75:3e:50:5f:86:b7:31:f2:53:a8:45:90:26:fa:3f:
cd:2a:7c:08:99:30:0f:d8:a4:e1:17:62:17:11:b5:
b5:a5:09:15:4f:c3:65:f2:f8:52:03:3c:8f:7d:9a:
a6:47:6e:c9:10:07:f0:67:74:0f:0f:f3:68:54:d1:
82:50:7e:56:5e:9e:e3:32:6b:ca:28:c4:15:d4:7f:
93:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BD:98:2B:6E:C3:FC:13:07:86:29:AA:22:8F:CA:8D:51:57:75:0B
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/3L2YK27D_BMHhimqIo_KjVFXdQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.195.0/24
Signature Algorithm: sha256WithRSAEncryption
56:05:e5:b4:28:cc:05:c0:9e:91:f8:fc:0a:8e:2e:fd:3e:d9:
48:5d:e3:63:09:46:d7:af:0c:74:5f:4a:f3:d7:c3:f1:53:6a:
19:9d:37:99:3e:98:69:77:ef:7f:e4:1e:46:0b:4d:70:c5:8b:
2b:48:c4:b2:77:09:84:af:fa:e7:72:4e:c3:95:03:4a:ab:60:
e8:a6:97:55:cb:4f:9e:34:de:d4:27:70:c0:3a:b2:d7:a5:c6:
87:92:1b:6c:33:ba:9a:f4:2f:a5:03:79:26:2a:e0:66:52:8c:
15:f0:d5:4a:84:40:8c:22:01:81:aa:10:40:37:d4:fb:b2:59:
18:c7:62:c5:f2:c5:f9:d0:6b:ec:7b:46:89:eb:5d:66:6b:84:
f7:01:1b:48:a9:be:6d:1c:ba:0e:15:57:ba:23:9b:57:7a:a9:
af:ee:b7:3d:f4:1f:68:e7:92:9c:ff:cd:10:dc:3e:dd:a0:a6:
92:59:68:3f:2c:58:39:79:3f:b4:b3:73:cd:29:7d:3b:c6:31:
25:1c:f7:44:20:6e:db:d1:db:1a:78:99:a7:2f:3d:2f:c1:3d:
a9:59:32:99:85:d3:0e:3b:72:45:b2:7f:47:f0:41:12:dd:0d:
c4:70:91:84:2c:4e:ac:ae:6d:ab:84:ee:98:bb:56:8a:16:a3:
47:ab:92:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org