Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/81e9aa-85ed-4850-b46b-6885aa87c4fd/1/dLLozSyiX5T6sJv-OJEgPp8Cqmk.roa
File: dLLozSyiX5T6sJv-OJEgPp8Cqmk.roa (raw, json)
Hash identifier: ENEBWBYZgJ6DA4EI0kZzkF0A42ZuA6vuz04k6hFEAs8=
Subject key identifier: 74:B2:E8:CD:2C:A2:5F:94:FA:B0:9B:FE:38:91:20:3E:9F:02:AA:69
Certificate issuer: /CN=b7695b98e08a378bf0dc944d2f1a60a1f6954981
Certificate serial: 0D719434
Authority key identifier: B7:69:5B:98:E0:8A:37:8B:F0:DC:94:4D:2F:1A:60:A1:F6:95:49:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t2lbmOCKN4vw3JRNLxpgofaVSYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/81e9aa-85ed-4850-b46b-6885aa87c4fd/1/dLLozSyiX5T6sJv-OJEgPp8Cqmk.roa
Signing time: Sat 01 Jan 2022 15:03:12 +0000
ROA not before: Sat 01 Jan 2022 15:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42841
IP address blocks: 88.212.0.0/19 maxlen: 19
88.212.0.0/20 maxlen: 20
88.212.0.0/18 maxlen: 18
88.212.16.0/20 maxlen: 20
88.212.32.0/20 maxlen: 20
88.212.32.0/19 maxlen: 19
88.212.48.0/20 maxlen: 20
185.61.16.0/22 maxlen: 22
2a02:130::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225547316 (0xd719434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7695b98e08a378bf0dc944d2f1a60a1f6954981
Validity
Not Before: Jan 1 15:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74b2e8cd2ca25f94fab09bfe3891203e9f02aa69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f0:20:14:6e:4c:44:c6:c7:03:ef:8a:59:cb:
31:13:02:06:b4:d0:f5:95:da:40:22:17:5c:06:ec:
f1:95:13:8a:0a:e6:a7:27:98:11:21:7e:da:f2:97:
71:16:98:d5:b9:93:8a:5d:3a:da:61:75:33:96:a8:
01:51:b7:47:f2:3c:54:7a:a6:7e:f2:4b:98:28:87:
fc:5d:7d:0d:d7:30:b2:16:d8:e2:d4:5f:e5:8f:d3:
7d:90:8e:36:50:bd:89:6b:56:38:b2:df:05:57:68:
a1:db:9b:73:87:88:8a:39:ca:b9:36:f2:82:a0:4e:
42:ac:56:3e:51:73:1f:7c:f3:8d:78:d0:7f:85:de:
41:30:49:4e:d8:4f:b7:d3:0d:7d:66:57:05:8b:a4:
2d:c6:e0:b0:a6:3d:d6:82:f7:88:36:7b:f1:aa:82:
d9:87:8d:50:d8:7f:a8:8e:23:59:31:1b:0a:1b:15:
60:fc:0f:f9:a9:2f:9a:54:c9:31:37:64:06:e4:62:
4a:a8:95:b4:21:75:90:2b:24:f4:89:2d:44:47:c9:
58:e4:08:7b:a2:35:d6:c7:6a:b3:27:93:92:ee:b0:
b3:65:5e:fe:8d:f0:b9:be:dc:65:28:73:a7:71:da:
67:7a:9f:c0:bc:93:bf:0e:3e:2e:18:8f:04:a5:3b:
87:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B2:E8:CD:2C:A2:5F:94:FA:B0:9B:FE:38:91:20:3E:9F:02:AA:69
X509v3 Authority Key Identifier:
keyid:B7:69:5B:98:E0:8A:37:8B:F0:DC:94:4D:2F:1A:60:A1:F6:95:49:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t2lbmOCKN4vw3JRNLxpgofaVSYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/81e9aa-85ed-4850-b46b-6885aa87c4fd/1/dLLozSyiX5T6sJv-OJEgPp8Cqmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/81e9aa-85ed-4850-b46b-6885aa87c4fd/1/t2lbmOCKN4vw3JRNLxpgofaVSYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.212.0.0/18
185.61.16.0/22
IPv6:
2a02:130::/32
Signature Algorithm: sha256WithRSAEncryption
0a:5a:b3:5a:2b:74:41:ac:9a:2d:8f:58:42:2a:22:a7:b5:95:
12:fa:cf:94:f5:bd:8d:70:e4:22:5d:d8:8d:4a:77:4f:c7:31:
dd:0f:3d:97:2f:63:31:33:37:25:97:28:08:87:10:d5:0c:53:
7b:91:98:dd:e9:a4:72:38:38:50:36:f5:e3:0e:ab:55:d3:11:
28:d0:bf:18:f1:56:d2:90:92:a8:9e:13:08:21:e2:79:58:f8:
27:18:23:1d:35:f4:17:af:78:27:32:4b:81:46:ca:b2:03:23:
ce:e9:5e:83:96:5d:f0:4d:6f:91:a7:ba:fe:29:07:af:f0:38:
39:50:9b:ee:f0:51:a9:63:7d:92:e3:75:15:37:f2:25:f5:9b:
c5:1c:b9:96:b8:56:95:91:27:a2:c9:bd:79:74:b0:b8:08:fd:
33:95:a9:95:b0:b3:d4:73:3e:cf:5f:fc:6e:d4:7b:af:38:bb:
c1:76:71:25:c4:ff:96:0f:06:8e:e5:7c:9e:14:ab:6a:63:89:
11:eb:81:eb:f3:9e:41:07:4d:e1:f9:00:5e:9c:4b:cb:d8:6d:
58:f3:53:8c:34:30:72:05:94:81:e1:7e:b0:98:b2:2f:fa:0a:
38:a2:e7:52:eb:c1:be:29:3e:b8:28:7c:a5:f3:b5:d9:17:4f:
52:69:9f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org