Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/D-L-JeUEd1_mm_FR1cHgU0Nd-gs.roa
File: D-L-JeUEd1_mm_FR1cHgU0Nd-gs.roa (raw, json)
Hash identifier: IpKfs1uy6NErmSEKxUYSPfKFEzNVrJa9ydPQfEsOW7A=
Subject key identifier: 0F:E2:FE:25:E5:04:77:5F:E6:9B:F1:51:D5:C1:E0:53:43:5D:FA:0B
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42A9FDD5
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/D-L-JeUEd1_mm_FR1cHgU0Nd-gs.roa
Signing time: Tue 26 Apr 2022 06:31:28 +0000
ROA not before: Tue 26 Apr 2022 06:31:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62322
IP address blocks: 89.33.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118436821 (0x42a9fdd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 26 06:31:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fe2fe25e504775fe69bf151d5c1e053435dfa0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2f:a5:ba:3c:a1:7c:43:a5:86:8b:a5:25:c3:
36:4b:93:e2:36:5c:1a:dd:bd:37:5d:ad:5a:97:58:
0a:e3:36:a6:1f:b5:37:c7:dc:14:48:71:d2:ea:14:
0d:9d:48:37:5f:c0:72:2c:6d:6e:81:38:39:1a:12:
27:c6:2d:b6:09:d8:a4:7a:91:2d:3d:19:ff:62:f8:
b0:b2:43:2f:1d:dc:54:ad:2d:eb:7e:e5:af:72:b0:
92:3d:4e:a3:61:4c:e5:64:04:09:6d:bf:e8:3b:f4:
3b:36:87:39:93:e0:41:02:b7:bb:23:bb:e1:2f:08:
d8:34:59:21:f4:a4:51:3b:be:95:5a:22:f7:74:88:
b8:93:0f:eb:f0:a4:3b:6e:74:7f:45:01:b9:01:f7:
a9:91:49:2e:cc:53:64:32:b3:97:38:0a:cd:f5:3a:
37:ad:9e:6b:73:2d:46:54:f2:ce:5b:18:a5:fd:67:
8a:1d:4b:22:6f:ab:9b:3a:57:76:6f:8e:dd:1d:67:
f2:c2:92:24:a1:5f:0f:d5:dd:e5:01:ad:ab:c8:12:
27:e6:1f:ec:6b:2b:e3:ba:22:7e:fe:90:87:48:07:
f3:94:4b:52:7a:80:da:90:5c:fa:d2:ea:98:9b:84:
00:d9:7c:2e:8e:b0:cd:cd:b2:08:45:3c:7a:ce:31:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E2:FE:25:E5:04:77:5F:E6:9B:F1:51:D5:C1:E0:53:43:5D:FA:0B
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/D-L-JeUEd1_mm_FR1cHgU0Nd-gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.132.0/24
Signature Algorithm: sha256WithRSAEncryption
f0:79:7c:8e:4e:44:a0:99:c0:92:95:0a:32:a3:d7:16:bd:6c:
56:fc:0e:ea:2d:97:3e:24:50:90:02:1e:aa:4d:d9:2d:23:c0:
77:77:e4:f5:43:40:25:a3:97:4d:c4:8c:1d:24:84:af:b5:26:
d9:a8:90:65:80:28:1a:21:57:b3:bb:2f:ba:9c:bc:44:08:f5:
f7:8d:19:f9:ab:07:eb:d9:4a:3b:10:74:3d:04:53:6b:99:f0:
a9:e8:eb:d0:05:7c:60:e7:da:bc:5c:7c:a8:00:5c:0c:7f:9a:
c8:0b:5f:1f:b1:42:1e:a6:d3:a5:d6:f2:8b:ab:d1:8f:84:67:
8d:c8:ef:2b:83:aa:ae:a0:09:bd:9f:17:18:74:17:fd:fc:ba:
cd:dd:df:a8:71:c6:45:0d:9a:63:63:ab:22:0a:54:6a:2f:a0:
24:30:41:5a:00:8b:f1:24:9f:20:f1:6b:e7:bc:22:c2:6d:8b:
3b:be:a9:f1:d1:60:83:4d:80:fe:7c:2c:c5:32:b6:8c:98:c0:
f7:c0:1e:df:52:ac:ae:0d:de:d1:aa:20:df:c7:b7:7a:cf:59:
b8:ba:9c:9b:16:e7:67:12:07:95:a5:0f:7b:bd:dd:fd:28:20:
45:e9:b8:06:33:85:2e:62:01:5a:bb:0c:f7:83:2c:35:be:b2:
01:6b:71:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org