Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/AaQ4P5FJT_YopabPnTtwY5a6kKE.roa
File: AaQ4P5FJT_YopabPnTtwY5a6kKE.roa (raw, json)
Hash identifier: R6S4SmZXmlu1zSw3Y2thSkP1U4uKPM6t0CVjeXfo+ew=
Subject key identifier: 01:A4:38:3F:91:49:4F:F6:28:A5:A6:CF:9D:3B:70:63:96:BA:90:A1
Certificate issuer: /CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Certificate serial: 11A2461F
Authority key identifier: DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/AaQ4P5FJT_YopabPnTtwY5a6kKE.roa
Signing time: Sat 01 Jan 2022 12:06:01 +0000
ROA not before: Sat 01 Jan 2022 12:06:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21159
IP address blocks: 80.89.236.0/23 maxlen: 23
89.105.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295847455 (0x11a2461f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Validity
Not Before: Jan 1 12:06:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01a4383f91494ff628a5a6cf9d3b706396ba90a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b1:9c:c4:e5:d7:55:db:73:5d:3b:a8:71:06:
53:4b:ac:56:68:59:a2:17:40:a5:b6:53:a8:ff:20:
fb:ed:5d:ce:a9:3c:d2:87:67:c7:1e:5e:ac:80:4d:
d3:93:78:e0:4a:7a:77:2e:4e:d5:ed:78:e6:e4:d1:
1d:41:3a:9a:7f:fd:98:5d:23:0b:68:e3:41:6d:d6:
f0:8c:bc:f1:2c:ff:0a:e0:75:6c:01:95:ca:ad:e2:
a5:cf:34:06:7e:ac:79:9e:51:60:13:9d:bb:8d:e9:
bf:e0:22:fd:a6:25:1e:50:1a:86:f0:01:3a:d1:04:
f4:2a:8d:2c:cd:bc:68:f6:d0:1e:52:45:09:51:d6:
75:57:d5:a6:c4:6a:1c:58:31:f6:af:98:df:45:ee:
be:a7:3b:d7:35:8f:9e:9a:40:e1:47:76:0f:b3:d8:
5e:1c:b5:0b:ff:83:f0:37:24:5c:f6:3d:de:49:c8:
4a:ad:7a:13:f1:6d:26:5d:74:f3:18:09:b4:a3:1c:
28:08:21:a3:28:f5:1e:49:f2:e3:3d:4e:5a:6e:23:
75:32:f2:a3:ee:38:9d:6e:26:fd:29:53:c6:fb:c1:
2e:4d:f7:7b:71:a9:9d:3e:cb:f3:17:b1:a0:b1:e2:
90:90:ce:eb:fc:72:4c:92:28:24:ab:27:90:21:9b:
fa:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A4:38:3F:91:49:4F:F6:28:A5:A6:CF:9D:3B:70:63:96:BA:90:A1
X509v3 Authority Key Identifier:
keyid:DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/AaQ4P5FJT_YopabPnTtwY5a6kKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.236.0/23
89.105.216.0/23
Signature Algorithm: sha256WithRSAEncryption
78:8d:ec:c9:15:ff:f2:c5:f0:26:00:6d:c0:f3:b0:a7:da:55:
67:23:d2:bb:95:f3:32:fb:6f:87:87:31:c3:79:cc:f1:3f:73:
a0:9a:70:07:d4:dc:0d:be:01:22:86:ff:0c:7d:ad:cf:ea:c5:
76:05:c4:20:37:68:a6:f1:f3:6c:fa:ac:df:37:b3:cf:50:bf:
c4:e6:90:b7:7b:89:06:d5:b3:dc:0d:cd:f7:b4:f7:f3:52:bd:
66:c4:11:37:53:5c:5a:85:7d:b6:8b:cc:08:15:b9:13:10:c6:
1c:76:72:62:e5:27:f0:93:8c:01:19:69:0e:57:2b:32:a4:2e:
da:e7:0b:a9:6d:43:41:d4:7d:f8:e4:76:05:74:15:de:15:6c:
50:5d:3b:a0:ca:b0:40:5a:42:19:10:09:f8:91:8e:83:6a:e9:
80:70:d0:db:72:92:09:40:19:5b:fd:ac:c6:83:b3:ee:73:4c:
6e:35:ca:57:00:b0:2a:f9:a5:f2:5d:12:49:16:b9:67:d9:ef:
d0:b3:73:ba:f6:45:0a:be:0b:bc:a9:d3:de:09:18:52:d5:49:
ea:34:ea:50:3d:4a:2b:9f:6d:3f:85:c0:be:29:43:7b:24:00:
b0:d7:83:bf:37:44:32:77:26:b6:01:2e:b2:dd:f6:9c:88:82:
5a:7a:ba:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:34 2024 by rpki-client on console-fra.rpki-client.org