Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iBPOW0aavbO4NXTV6KzflI_-vkg.roa
File: iBPOW0aavbO4NXTV6KzflI_-vkg.roa (raw, json)
Hash identifier: ygkk9Wx7DC+VyWNNda0M2osLUJs3awukGFCjZnepmtY=
Subject key identifier: 88:13:CE:5B:46:9A:BD:B3:B8:35:74:D5:E8:AC:DF:94:8F:FE:BE:48
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083F0063
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iBPOW0aavbO4NXTV6KzflI_-vkg.roa
Signing time: Sat 01 Jan 2022 07:56:19 +0000
ROA not before: Sat 01 Jan 2022 07:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211712
IP address blocks: 212.22.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138346595 (0x83f0063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8813ce5b469abdb3b83574d5e8acdf948ffebe48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:14:c8:84:13:c7:0f:43:56:52:57:0a:c7:d7:
9c:74:d6:20:a6:97:38:22:d5:8d:1b:2f:28:f3:fd:
ca:95:75:fc:ed:4a:fd:e0:1e:c5:55:3d:a9:de:25:
83:b8:33:64:10:cb:c6:c0:ec:dc:8d:8f:ed:d2:37:
54:e0:7d:b3:95:7b:a6:29:fb:ff:98:08:02:43:1d:
34:ff:62:f1:ef:84:5f:8e:f5:80:74:5a:67:aa:1a:
64:20:d2:c7:f3:fd:45:ea:36:91:90:e9:15:5d:aa:
dc:ef:54:45:c4:94:64:e9:5d:a4:29:8c:d3:f2:b1:
60:a1:4c:38:b6:b6:be:90:df:eb:4b:9a:7c:cd:06:
fc:b6:2c:1b:c1:6c:be:71:48:53:06:68:78:0e:2d:
cf:86:3a:6d:32:eb:9c:19:a3:b4:17:b9:e2:00:fa:
7e:25:36:f6:59:bb:aa:78:9d:5f:1a:cc:e7:c8:96:
21:d6:d0:43:22:1d:79:a8:1c:fc:c8:4f:19:ef:54:
f3:95:a8:f1:67:e1:ca:09:a1:fd:f9:26:b1:22:0a:
71:2e:80:f5:db:b9:ac:a0:7f:93:79:88:a6:88:0e:
62:43:74:35:dd:00:2a:36:98:96:17:04:41:23:ee:
ef:56:31:14:78:e0:51:87:e8:fa:e8:f4:48:ed:75:
e9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:13:CE:5B:46:9A:BD:B3:B8:35:74:D5:E8:AC:DF:94:8F:FE:BE:48
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/iBPOW0aavbO4NXTV6KzflI_-vkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.89.0/24
Signature Algorithm: sha256WithRSAEncryption
82:94:54:17:cb:b4:3a:9d:0c:06:79:ff:c8:33:93:83:ec:ce:
a2:6d:fc:9e:25:52:9d:03:c2:eb:a5:1e:47:01:66:af:48:f5:
3e:87:bf:69:59:0d:7b:2d:c6:79:e2:8e:10:8a:4b:02:9f:cf:
07:83:64:d9:4f:a4:c2:e8:51:82:4f:63:ba:d4:7b:9d:97:d9:
f2:45:d2:b4:7c:e0:d5:fe:5f:4d:75:da:a7:63:6d:70:19:ff:
89:45:00:8d:b3:11:a6:83:f7:63:72:54:f4:37:af:df:64:ce:
cd:7b:df:a4:e2:0b:7a:c9:eb:ca:0c:2e:a2:14:fb:07:8f:d3:
3d:7c:72:8b:45:9f:20:d3:6f:ba:a5:ef:32:2b:b2:b7:c8:3a:
cc:0b:2c:43:fc:6a:01:15:fe:3a:4b:db:1b:b4:02:0d:86:95:
2e:7e:38:9a:9d:ad:df:8f:e9:de:c7:34:66:66:41:cb:87:61:
4b:36:18:45:d3:80:03:36:b1:9a:1e:1e:c5:84:74:12:ae:61:
c5:21:38:d1:07:a3:86:77:d9:da:c8:74:c1:2c:6b:0a:fa:59:
81:f2:75:38:2e:f4:c8:5e:05:94:0a:a7:5a:0d:63:0b:06:4b:
a4:5a:be:59:66:44:96:a1:7f:e9:5d:06:f6:ed:6b:b8:54:d8:
49:22:72:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org