Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4CWQ7UtcS83v--61UmGfqCLz0_Y.roa
File: 4CWQ7UtcS83v--61UmGfqCLz0_Y.roa (raw, json)
Hash identifier: sXFaZFJsNBlCQKss03fiNHSpuoBmCuMOGL39MsP37hQ=
Subject key identifier: E0:25:90:ED:4B:5C:4B:CD:EF:FB:EE:B5:52:61:9F:A8:22:F3:D3:F6
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0186036703A44CA18D12D46B818E7B3996F9
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4CWQ7UtcS83v--61UmGfqCLz0_Y.roa
Signing time: Mon 30 Jan 2023 15:58:48 +0000
ROA not before: Mon 30 Jan 2023 15:58:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 88.151.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:67:03:a4:4c:a1:8d:12:d4:6b:81:8e:7b:39:96:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 30 15:58:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e02590ed4b5c4bcdeffbeeb552619fa822f3d3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:40:5b:bb:ac:b2:48:d8:a9:d4:6c:45:dc:90:
e2:7a:75:77:c0:ac:34:89:3e:29:8c:d3:08:9a:20:
80:c6:9a:f3:39:24:e6:01:f1:18:5f:b2:fd:f0:6d:
3f:bc:ba:48:e1:2a:0e:33:9d:ab:82:34:1c:87:86:
a9:0f:8f:1b:00:f9:a3:73:44:55:a9:7a:c6:a6:a4:
7b:ef:e3:2c:2b:d8:bf:80:9d:e3:7a:0a:e3:5c:34:
d1:8b:d3:c1:38:9e:2c:fd:2c:3b:bf:35:90:41:f6:
53:05:64:48:12:f6:18:f2:49:bc:c5:09:5a:10:de:
6a:90:bd:2f:39:a4:e5:dc:b6:5c:30:51:b9:47:af:
27:ce:8a:a5:d7:c9:9c:59:8b:16:95:e6:5b:c3:0b:
0b:bb:36:e2:a5:53:d2:ee:21:e3:9e:74:cb:d9:80:
0a:5b:00:5b:9e:7b:c5:8b:65:d3:69:7b:69:c3:14:
b9:68:d1:c7:8b:c1:5b:97:52:bc:ab:e4:ac:cd:15:
c1:5d:d5:4f:8a:b1:ae:37:05:45:34:4d:fc:a6:83:
6d:b0:35:83:8f:77:ac:2e:ac:3e:0e:73:07:a9:d7:
86:7d:52:82:95:8d:14:1d:48:0b:e9:40:27:d5:12:
01:41:7c:5d:9e:e6:30:69:02:ca:2d:4a:df:f9:61:
8e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:25:90:ED:4B:5C:4B:CD:EF:FB:EE:B5:52:61:9F:A8:22:F3:D3:F6
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4CWQ7UtcS83v--61UmGfqCLz0_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.192.0/24
Signature Algorithm: sha256WithRSAEncryption
20:0c:1d:3e:ef:ee:30:5a:7a:9b:72:ce:43:4c:18:94:be:56:
4e:68:b0:12:4c:0e:4a:76:5d:87:57:ae:4a:40:1a:57:0b:52:
92:b7:53:11:53:d0:8c:23:7f:33:7b:ca:6d:2a:d7:81:95:c1:
88:e2:ec:14:02:e5:2c:15:90:2f:29:b3:0e:0f:f3:de:e6:e0:
f6:f0:1b:42:5d:49:aa:42:8d:85:eb:d4:4a:8d:e7:1e:9d:ed:
d1:2c:27:73:8a:b0:28:1e:8c:79:4e:f3:cd:94:c6:f4:ac:16:
13:4f:5c:6e:d9:a8:c7:98:9e:6a:eb:ef:29:f5:d7:64:92:47:
e2:ec:59:ee:f9:e7:6f:67:26:dd:0e:2e:88:8a:c6:73:bd:65:
fd:82:42:42:08:bc:92:21:13:19:02:5f:58:41:f1:f0:0e:97:
56:3d:b6:96:f3:ec:97:b3:8f:ae:15:00:32:4c:4c:25:36:cc:
3a:69:ca:ca:ee:0e:f7:b2:88:37:d5:a7:aa:63:5a:c8:7e:95:
3a:fc:9a:c6:ac:db:1a:10:9d:a0:be:88:af:58:72:b2:80:46:
4a:a7:bc:6f:2e:da:3b:81:c4:8a:d3:ef:d4:7f:57:66:04:37:
7f:9f:ed:4c:c0:4b:bc:b4:fb:96:62:95:cf:73:e0:fb:09:41:
aa:7a:f4:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYDZwOkTKGNEtRrgY57OZb5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjMwMTMwMTU1ODQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDI1OTBlZDRiNWM0YmNkZWZmYmVlYjU1MjYxOWZhODIyZjNkM2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEBbu6yySNip1GxF3JDienV3wKw0
iT4pjNMImiCAxprzOSTmAfEYX7L98G0/vLpI4SoOM52rgjQch4apD48bAPmjc0RV
qXrGpqR77+MsK9i/gJ3jegrjXDTRi9PBOJ4s/Sw7vzWQQfZTBWRIEvYY8km8xQla
EN5qkL0vOaTl3LZcMFG5R68nzoql18mcWYsWleZbwwsLuzbipVPS7iHjnnTL2YAK
WwBbnnvFi2XTaXtpwxS5aNHHi8Fbl1K8q+SszRXBXdVPirGuNwVFNE38poNtsDWD
j3esLqw+DnMHqdeGfVKClY0UHUgL6UAn1RIBQXxdnuYwaQLKLUrf+WGOdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOAlkO1LXEvN7/vutVJhn6gi89P2MB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvNENXUTdVdGNTODN2LS02MVVtR2ZxQ0x6MF9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWJfAMA0G
CSqGSIb3DQEBCwUAA4IBAQAgDB0+7+4wWnqbcs5DTBiUvlZOaLASTA5Kdl2HV65K
QBpXC1KSt1MRU9CMI38ze8ptKteBlcGI4uwUAuUsFZAvKbMOD/Pe5uD28BtCXUmq
Qo2F69RKjecene3RLCdzirAoHox5TvPNlMb0rBYTT1xu2ajHmJ5q6+8p9ddkkkfi
7Fnu+edvZybdDi6IisZzvWX9gkJCCLySIRMZAl9YQfHwDpdWPbaW8+yXs4+uFQAy
TEwlNsw6acrK7g73sog31aeqY1rIfpU6/JrGrNsaEJ2gvoivWHKygEZKp7xvLto7
gcSK0+/Uf1dmBDd/n+1MwEu8tPuWYpXPc+D7CUGqevR4
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:44 2025 by rpki-client