Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa
File: 9WrTgnvS28uurBv4vVIg8z6JS0w.roa (raw, json)
Hash identifier: wXLPEKIlbD2rXbyril/dAF3UdZBKbRu8aNejuQaLzJc=
Subject key identifier: F5:6A:D3:82:7B:D2:DB:CB:AE:AC:1B:F8:BD:52:20:F3:3E:89:4B:4C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03ED9441
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa
Signing time: Sun 12 Jun 2022 09:22:02 +0000
ROA not before: Sun 12 Jun 2022 09:22:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208226
IP address blocks: 88.151.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65901633 (0x3ed9441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jun 12 09:22:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f56ad3827bd2dbcbaeac1bf8bd5220f33e894b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:6f:24:73:5d:d8:79:c9:71:6a:83:d4:81:
a3:5e:29:36:c5:9e:1e:22:94:69:2b:59:81:33:b3:
ab:db:ca:41:8b:e2:61:68:e4:b4:53:ce:7b:a4:da:
2c:4d:79:eb:f1:d8:2d:1b:d0:e7:48:1a:b8:5d:c8:
9e:25:78:e1:d5:f0:a8:ba:b8:9c:3e:56:66:5f:de:
2b:a0:c8:2c:9e:44:cd:b7:b7:b5:16:49:6b:45:c5:
67:91:3f:e3:67:98:85:fb:3f:91:6e:e1:2a:0c:26:
9d:e0:db:06:2f:45:c9:19:14:48:8b:31:e1:d9:58:
f4:46:5e:be:23:3a:07:9c:a6:64:2b:a1:27:03:c7:
6c:ce:24:97:6b:c5:56:cd:a2:12:38:fe:85:b1:f4:
b5:0e:92:e8:5c:30:26:e1:4f:da:50:fc:3a:9e:bd:
7c:22:3d:bc:7b:15:17:9f:4e:2c:3b:1c:37:33:fc:
25:69:02:b5:19:e1:f2:30:81:38:17:39:f5:c7:55:
da:61:6f:bb:c6:21:97:38:98:17:52:da:63:4d:2b:
8d:ba:0c:29:22:54:81:35:4e:15:09:63:a6:cf:dd:
4b:e2:ab:af:9c:81:e3:06:8a:e4:1c:d3:d1:42:fe:
3f:b5:87:69:e5:51:66:5b:d7:58:67:92:6f:db:a4:
16:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6A:D3:82:7B:D2:DB:CB:AE:AC:1B:F8:BD:52:20:F3:3E:89:4B:4C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.197.0/24
Signature Algorithm: sha256WithRSAEncryption
37:90:67:b5:67:ae:df:7c:fd:ce:7a:10:d5:80:88:27:86:3d:
2e:c1:f6:f1:ac:7b:f0:99:51:4d:c4:d1:15:03:cc:80:ad:7e:
43:46:6e:6f:a8:61:f1:31:32:fe:32:27:5c:be:f4:1a:46:c3:
8d:9c:40:26:b1:a1:7b:b5:ee:67:e1:ab:97:02:2d:dd:63:de:
cd:8c:53:66:da:4b:58:06:0b:39:45:4c:90:cd:ef:7b:21:c6:
e5:e9:a0:2e:e3:7e:37:09:79:d0:bd:a1:23:b7:1f:89:ed:03:
d6:55:ed:51:a8:0b:62:84:07:01:63:ed:25:0b:d2:2c:44:b5:
b7:6a:d7:a0:9d:8c:d7:df:26:ec:34:4c:06:b2:f2:f8:d9:93:
2c:1e:92:02:b5:c4:90:16:62:a8:34:68:35:3c:07:40:11:73:
0a:0f:d4:8b:49:8d:4e:c3:98:08:40:85:5a:3d:fd:a4:c1:9d:
79:d3:bc:91:2a:97:18:ee:48:ae:5c:a9:aa:41:c4:4f:d0:e3:
76:05:7c:40:95:d2:c1:a6:7e:ce:9d:42:28:ca:68:9e:5d:17:
e9:79:c4:15:92:71:e7:1b:bd:41:1f:91:98:8c:e1:e0:6c:23:
36:0f:f1:7f:f4:47:3e:9f:94:4b:13:b3:05:b6:53:8b:08:de:
4e:32:24:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org