Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-lkWB0RnBpYuJ2cHJ2vqvMsnwqI.roa
File: 1-lkWB0RnBpYuJ2cHJ2vqvMsnwqI.roa (raw, json)
Hash identifier: +tb7+CCbeddXGsK2+Kgel2kYEJB43b1CCswF/y7j+80=
Subject key identifier: FA:59:16:07:44:67:06:96:2E:27:67:07:27:6B:EA:BC:CB:27:C2:A2
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 418BFDE1
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-lkWB0RnBpYuJ2cHJ2vqvMsnwqI.roa
Signing time: Sat 01 Jan 2022 10:06:00 +0000
ROA not before: Sat 01 Jan 2022 10:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42756
IP address blocks: 89.44.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099693537 (0x418bfde1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 10:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa591607446706962e276707276beabccb27c2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:2a:b5:06:c2:f8:87:5c:b4:b2:3f:8d:0e:
d0:e2:15:da:7f:a2:fe:fe:35:e4:25:5e:db:14:f8:
fc:e4:0d:39:c4:01:74:01:cb:83:1a:28:67:36:fe:
12:d0:77:fd:5f:ba:4f:7a:3f:29:7f:c2:59:d4:b9:
6a:90:7a:29:47:60:a1:f0:c4:d4:37:ce:be:d9:f9:
c4:35:e4:ed:32:b6:3b:a2:f9:40:96:f3:b5:c1:53:
7c:6f:4a:5b:d4:48:b9:cb:db:bb:6a:44:57:ec:b8:
72:4c:e0:f8:60:05:17:eb:26:3f:4c:da:59:5d:a4:
c6:61:2a:c4:6f:ba:2f:a1:93:19:f2:ed:35:06:33:
78:e2:25:af:c3:14:1a:14:f6:03:7e:52:f1:29:8b:
1b:88:7d:f0:c2:22:e3:dd:68:55:e4:49:06:eb:bd:
11:e5:77:97:f2:c8:4b:42:fb:1f:c4:f7:27:97:92:
74:f4:8c:1a:f7:4c:e2:f2:23:d0:74:37:89:84:b8:
7f:9e:93:98:69:e1:4b:30:09:a8:79:c0:47:56:c2:
57:68:c6:ca:65:16:bc:48:a2:f8:01:9d:6c:45:bf:
32:f5:32:4b:83:97:10:11:f6:26:a0:18:37:64:3c:
a4:ea:5c:8c:9a:7f:2f:87:da:ce:be:aa:96:78:19:
0d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:59:16:07:44:67:06:96:2E:27:67:07:27:6B:EA:BC:CB:27:C2:A2
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-lkWB0RnBpYuJ2cHJ2vqvMsnwqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.144.0/24
Signature Algorithm: sha256WithRSAEncryption
06:a5:eb:f6:47:62:4f:00:37:01:1c:ee:db:04:a8:68:2b:4b:
80:a5:9f:d4:0b:7d:49:48:71:d0:ac:2b:14:0a:a9:df:21:c7:
2f:4b:94:0f:91:a4:df:a6:b7:89:41:7a:4d:bd:6d:0c:55:cd:
8c:6b:c0:dd:e0:ff:96:cb:18:49:0e:d0:aa:2a:10:62:c1:df:
d7:f8:5f:7e:43:57:27:7c:3e:c7:66:dd:22:d2:bd:dd:db:59:
1c:16:76:cc:a1:3f:e8:0a:33:fc:ea:ab:77:a1:5a:74:c5:6c:
30:c3:0d:83:27:d1:31:32:98:64:bb:43:d2:71:20:e7:ce:70:
42:86:8c:a1:3e:31:28:7b:7a:2d:d1:d7:bb:9d:b2:29:0a:b5:
1a:37:8f:76:28:30:0c:12:2b:40:b5:1b:89:17:d2:f4:87:5f:
0e:43:ee:d4:8b:45:40:b2:4f:66:6d:02:f2:c2:98:35:7b:8f:
6a:dd:97:99:a8:d8:4d:53:79:b0:f2:a8:c9:d9:56:a9:be:84:
69:19:f4:aa:00:e7:32:82:34:dc:5d:7a:cd:e1:ef:1f:51:05:
73:e5:5a:d2:a2:e3:81:fb:f2:8e:25:02:37:68:00:ca:e6:38:
9c:b7:1e:9b:b5:b9:11:af:81:48:bd:22:4a:41:a9:cb:db:9e:
d3:5a:1a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org