Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xxaoeKfGZ6Z3cx-V-Z8xZ83FxzA.roa
File: xxaoeKfGZ6Z3cx-V-Z8xZ83FxzA.roa (raw, json)
Hash identifier: vpsFFG5sPwNfFDTzol5WLXBLia/nfMnlPeMfQ1n55H4=
Subject key identifier: C7:16:A8:78:A7:C6:67:A6:77:73:1F:95:F9:9F:31:67:CD:C5:C7:30
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03BA55DD
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xxaoeKfGZ6Z3cx-V-Z8xZ83FxzA.roa
Signing time: Mon 23 May 2022 07:26:28 +0000
ROA not before: Mon 23 May 2022 07:26:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 88.151.198.0/24 maxlen: 24
88.151.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62543325 (0x3ba55dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 23 07:26:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c716a878a7c667a677731f95f99f3167cdc5c730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:f1:78:b5:4f:c7:35:0c:b8:3b:cd:60:85:
ca:6c:d7:75:ab:69:7a:28:c5:dd:58:99:56:ce:91:
01:c4:0d:06:47:43:65:84:b2:bf:f7:e8:22:fd:58:
98:d7:1c:35:28:68:78:b5:85:a6:77:9d:d1:b9:7e:
25:fa:5b:97:4d:cb:0c:f8:82:c9:20:22:51:d9:ae:
aa:2b:ee:6f:85:35:37:7b:25:96:62:9a:c9:ed:b2:
58:03:5f:91:4d:2b:6c:27:77:d3:5e:cd:b8:66:a5:
4a:63:06:c2:be:32:78:26:63:1a:14:da:a1:23:d5:
51:e1:6c:28:24:e8:05:de:bb:8a:70:4b:89:d3:fe:
77:20:e3:e0:e8:b3:6a:65:0b:ef:28:8c:c4:c2:c1:
8f:cf:b7:7b:72:2d:c2:b7:cd:16:a9:40:cd:83:3a:
f5:87:1f:77:36:f2:67:21:a4:07:bc:a8:c7:0f:81:
7c:a7:dd:32:dd:98:9b:fd:a1:0f:7b:07:82:b3:19:
d0:7c:01:84:72:cf:90:9f:60:e0:c1:51:d3:41:0c:
fe:30:ef:5d:fa:b8:3d:c8:c4:9e:3c:f7:77:71:4d:
35:03:17:67:b2:51:48:ff:3d:15:a3:91:8b:9b:df:
1c:8f:d1:05:17:ae:0f:ea:a4:0c:0f:32:50:98:c0:
14:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:16:A8:78:A7:C6:67:A6:77:73:1F:95:F9:9F:31:67:CD:C5:C7:30
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xxaoeKfGZ6Z3cx-V-Z8xZ83FxzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.195.0/24
88.151.198.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:61:c0:9b:9a:83:f3:82:33:74:4f:c0:2b:4c:23:d3:21:b4:
3d:8e:79:75:d1:f6:a8:c6:47:00:9e:b9:08:70:11:11:f0:1b:
f6:f2:8f:88:87:e3:c4:9e:1d:6d:9b:0c:ca:11:52:66:86:20:
a4:30:7d:28:41:5b:46:2b:94:b4:15:fd:8d:65:f0:db:05:ac:
c7:3a:e4:1a:e2:96:86:ab:aa:47:c5:a1:46:89:4b:f5:fa:48:
1f:91:56:9b:0c:37:8b:73:48:1a:d8:a5:c1:f8:00:86:b7:48:
7a:e4:df:03:e7:78:1b:71:f7:dd:02:f2:47:55:6c:58:ff:e5:
4c:61:86:9f:25:78:b1:8a:2f:23:32:10:e9:93:97:96:5f:46:
a7:f4:ed:64:2e:fc:79:14:ee:0e:39:5a:ba:cb:04:25:bb:4d:
a7:90:64:f1:40:aa:82:4f:ba:58:b5:51:1d:fc:2d:e6:88:3b:
0b:3f:ef:6e:aa:11:e5:5f:2e:d3:f6:25:26:e9:56:48:20:17:
29:56:99:0b:30:61:16:71:9b:d7:08:78:9a:21:a2:58:f5:f7:
99:0b:78:fb:a5:ff:f2:80:ce:20:ca:2a:7b:27:4d:f7:7b:6a:
04:7d:eb:3f:1e:d7:bc:cb:da:ca:0b:e6:92:f8:33:96:f8:68:
9d:f7:41:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org